OpenStack Architecture
Foreword
This course describes the origin, version evolution, and functions of
OpenStack, the overall architecture of OpenStack, its core components,
and the differences between OpenStack and virtualization and cloud
computing.
3 Huawei Confidential
� Objectives
Upon completion of this course, you will understand:
The origin, version evolution, and functions of OpenStack.
OpenStack architecture and its components.
Differences between virtualization and cloud computing.
4 Huawei Confidential
� Contents
1. OpenStack Overview
2. OpenStack Architecture
3. OpenStack Core Services
4. Interactions Between OpenStack Projects
5 Huawei Confidential
�Origin of OpenStack
Develop
Follow the
independenc
leader
e
Enhance
compatibility
• In 2006, Amazon launched Amazon Web Services (AWS), which opened a new chapter in the history of
cloud computing.
• National Aeronautics and Space Administration (NASA) and Rackspace together launched OpenStack
as an open source cloud software project in July 2010.
• OpenStack has been learning from AWS since its birth and provides open interfaces compatible with
various AWS services.
6 Huawei Confidential
�What Is OpenStack?
Deploy third party services such as Or use built in tools
It provides a cloud infrastructure
CloudFoundr OpenStack
Kubernetes Terraform Horizon Web UI
y SDK
for virtual machines (VMs), bare
metal, and containers.
It controls large pools of
compute, storage, and network
resources.
It manages all resources through
Bare Metal Virtual Machines Containers
APIs or a dashboard.
Shared networking and storage resources
OpenStack
7 Huawei Confidential
�What Can OpenStack Do?
Deploy third party services such as Or use built in tools
OpenStack provides an
CloudFoundr OpenStack
Kubernetes Terraform Horizon Web UI
y SDK Infrastructure as a Service (IaaS)
solution through a variety of
complementary services. Each
service offers an Application
Programming Interface (API) to
facilitate integration.
The OpenStack project is an open
Bare Metal Virtual Machines Containers
source cloud computing platform
Shared networking and storage resources that supports all types of cloud
environments. The project aims for
OpenStack simple implementation, massive
scalability, and a robust feature set.
8 Huawei Confidential
�How Does OpenStack Work?
OpenStack is essentially a series of commands
compiled into scripts. Those scripts are bundled
into packages called projects that relay tasks that
create cloud environments.
In order to create those environments, OpenStack
OpenStack
relies on two other types of software:
Virtualization software creates a layer of virtual
Virtualizatio resources abstracted from hardware.
Base OS
n
A base operating system (OS) carries out commands
given by OpenStack scripts.
Use OpenStack itself does not virtualize resources, but
rather uses them to build a cloud.
r
All the three technologies — OpenStack,
virtualization, and the base OS — must work
together.
9 Huawei Confidential
�Open-Source OpenStack Version Evolution
OpenStack releases two major versions each year, generally in April and mid-
October.
The
2010 versions
2011 are named
2012 2013
from
2014A to2015
Z. 2016 2017 2018 2019 2021 2022
2020
Austin Cactus Essex Grizzly Icehouse Kilo Mitaka Ocata Queens Stein Ussuri Wallab Yoga
y
Bexar Diablo Folsom Havana Juno Liberty Newton Pike Rocky Train Victoria Xena
2011 2011 2012 2013 2014 2015 2016 2017 2018 2019 2020 2021
10 Huawei Confidential
�OpenStack Design Principles
Open Flexible Scalabl
• Make everything • Use tailorable
• e
Include multiple
independent projects.
open-source. architecture. • Use multiple independent
• Reuse existing • Design and
components in each
open-source implement
project.
projects. functions using • Use a decentralized
plug-ins.
architecture.
• Use a stateless
architecture.
11 Huawei Confidential
�OpenStack and Virtualization
OpenStack only functions as a control plane. It does not contain the components of
a system data plane, like hypervisors and storage and network devices.
Virtualization is one of the underlying technologies of OpenStack, but is not a core
concern of OpenStack.
Key differences between OpenStack and virtualization:
OpenStack Virtualization
• Does not provide virtualization
technologies.
• Uses multiple technologies to
VS • Supports environmental
isolation and resource reuse.
• Reduces isolation loss and
manage resource pools.
improves efficiency.
• Provides unified management
• Provides advanced
APIs for external
virtualization features.
communications.
12 Huawei Confidential
�OpenStack and Cloud Computing
OpenStack is only a key component of cloud computing:
Kernel, backbone, framework, and bus
To build cloud computing using OpenStack, we need:
Cloud Console
Cloud Services Cloud BSS
Cloud Platform Cloud
OSS
OpenStack
Resource Pool 1 Resource Pool 2 ... Resource Pool n
Hardware and DC infrastructure
13 Huawei Confidential
� Contents
1. OpenStack Overview
2. OpenStack Architecture
3. OpenStack Core Services
4. Interactions Between OpenStack Projects
14 Huawei Confidential
�OpenStack Architecture
15 Huawei Confidential
�Logical Architecture of OpenStack
To design, deploy, and configure OpenStack, administrators must understand its logical
architecture.
Internally, OpenStack services are composed of several processes. All services (except
Keystone) have at least one API process, which listens for API requests, preprocesses them
and passes them on to other parts of the service.
For communication between the processes of one service, an AMQP message broker is used.
The service's state is stored in a database. When deploying and configuring your OpenStack
cloud, you can choose among several message broker and database solutions, such as
RabbitMQ, MySQL, MariaDB, and SQLite.
Users can access OpenStack via the web-based user interface implemented by the Horizon
Dashboard, via command-line clients and by issuing API requests through tools like browser
plug-ins or curl.
16 Huawei Confidential
�OpenStack Production Environment Deployment Architecture
Deployment Host Infrastructure Control Plane Host Compute Host Storage Host
Infrastructure Control Plane Host Compute Host Storage Host
Ansible Infrastructure Control Plane Host Block
Compute Host
Compute Storage Host
MariaDB RabbitMQ Storage
Block
MariaDB RabbitMQ Hypervisor
Compute Volumes
Storage
Block
OpenStack- Hypervisor
Compute
MariaDB RabbitMQ Network Volumes
Storage
Ansible Memcached Dashboard Hypervisor
L2/L3
Network Volumes
Repository Memcached Dashboard
Memcached Dashboard Agents
L2/L3
Network
Identity Image Agents
L2/L3
Identity Image Agents
Identity Image
Compute Bare Metal
Management
Compute Management
Bare Metal
Management
Compute Management
Bare Metal
Management
Block Management
Orchestratio
Storage
Block
n
Orchestratio
Management
Storage
Block
n
Orchestratio
Management
Storage
n
Management
Network Network
Management
Network L2/L3 Agents
Network Infrastructure Service
Management
Network L2/L3 Agents
Network
Management L2/L3 Agents
OpenStack Service
17 Huawei Confidential
� Contents
1. OpenStack Overview
2. OpenStack Architecture
3. OpenStack Core Services
4. Interactions Between OpenStack Projects
18 Huawei Confidential
�Dashboard Service: Horizon
• Provides a web-
• First appeared in the
based interface for
OpenStack Essex
cloud administrators
and users to Horizon release.
• Depends on the
manage OpenStack
OpenStack Identity
resources and
service Keystone.
services.
19 Huawei Confidential
�Identity Service: Keystone
• Provides identity
authentication,
service discovery, • First appeared in the
and distributed multi- OpenStack Essex
tenant authorization.
• Supports LDAP,
Keystone release.
• Provides identity
OAuth, OpenID authentication for other
Connect, SAML, and OpenStack services.
SQL.
20 Huawei Confidential
�Image Service: Glance
• Enables users to
discover, register, and • First appeared in the
retrieve VM images. OpenStack Bexar
• Stores VM instance release.
images in different
locations, such as local
Glance • Depends on the
file systems, Swift object OpenStack Identity
storage systems, and service Keystone.
Cinder block storage
systems.
21 Huawei Confidential
�Compute Service: Nova
• Provides massively • First appeared in the
scalable, on-demand, OpenStack Austin release.
• Depends on Keystone
and self-service access
to compute resources.
• Manages bare metal
Nova (OpenStack Identity
service), Neutron
(OpenStack Network
servers, VMs, and service), and Glance
containers. (OpenStack Image service).
22 Huawei Confidential
�Block Storage Service: Cinder
• Provides persistent
storage for VM
instances.
• Invokes different • First appeared in the
storage interface OpenStack Folsom
drivers to convert release.
storage devices into
block storage pools, Cinder • Depends on the
OpenStack Identity
allowing users to
request and consume service Keystone.
those resources
without knowing the
storage locations or
types.
23 Huawei Confidential
�Object Storage Service: Swift
• Is a highly available,
distributed, and
eventually consistent • First appeared in the
object storage service. OpenStack Austin
• Stores a large amount of release.
data efficiently, safely, Swift • Provides object storage
and cost-effectively.
services for other
• Is ideal for storing highly
scalable unstructured OpenStack services.
data.
24 Huawei Confidential
�Networking Service: Neutron
• Manages virtual • First appeared in the
network components OpenStack Folsom
and focuses on release.
delivering networking- Neutron • Depends on the
as-a-service (NaaS) for OpenStack Identity
OpenStack. service Keystone.
25 Huawei Confidential
�Orchestration Service: Heat
• Orchestrates the
OpenStack • First appeared in the
infrastructure OpenStack Havana
resources for cloud release.
applications.
• Provides both Heat • Depends on the
OpenStack Identity
OpenStack-native service Keystone.
RESTful APIs and
CloudFormation-
compatible APIs.
26 Huawei Confidential
�Telemetry Service: Ceilometer
• The Ceilometer project is a
data collection service that
provides data normalization
and transformation across all • First appeared in the
current OpenStack core
components. Ceilometer OpenStack Havana
• Its data can be used for release.
customer billing, resource
tracking, and resource alarms
across all OpenStack core
components.
27 Huawei Confidential
� Contents
1. OpenStack Overview
2. OpenStack Architecture
3. OpenStack Core Services
4. Interactions Between OpenStack Projects
28 Huawei Confidential
�Question: What Resources Are Required for Creating a
VM?
Comput
e
Storage
Network
VM
Image
29 Huawei Confidential
�Service Interactions for Creating a VM in OpenStack
Heat
Orchestrates Cloud
Horizon Provides UI
Provides
network
Neutron
VM
Provides Provides images
volumes
Provisions
Stores
Cinder Nova Glance images
Swift
Provides Auth
Keystone
Backups volumes in
30 Huawei Confidential
� Quiz
1. Why is OpenStack called a cloud operating system?
31 Huawei Confidential
� Summary
This course described the origin, version evolution, definition,
architecture, and core components of OpenStack, as well as the
differences between open-source OpenStack and cloud computing
or virtualization.
32 Huawei Confidential
� More Information
OpenStack Community
https://www.openstack.org/
33 Huawei Confidential
�Acronyms
AWS: Amazon Web Services (AWS) is a web services system developed by
Amazon. It allows users to rent applications to run their own VMs.
API: Application Programming Interface (API) is a particular set of rules and
specifications that are used for communication between software programs.
BSS: is short for Business Support System.
EC2: Elastic Compute Cloud (EC2) is a web service system developed by
Amazon. It allows users to rent applications to run their own VMs.
IaaS: Infrastructure as a Service (IaaS) is a service model in which IT
infrastructure resources are provided as services over the Internet and billed
on a pay-per-use basis.
34 Huawei Confidential
�Acronyms
NASA: National Aeronautics and Space Administration (NASA) is an
independent agency of the US federal government responsible for the civil
space program, aeronautics research, and space research.
OSS: Operation Support System
35 Huawei Confidential
�Thank you. 把数字世界带入每个人、每个家庭、
每个组织,构建万物互联的智能世界。
Bring digital to every person, home, and
organization for a fully connected,
intelligent world.
Copyright©2022 Huawei Technologies Co., Ltd.
All Rights Reserved.
The information in this document may contain predictive
statements including, without limitation, statements
regarding
the future financial and operating results, future product
portfolio, new technology, etc. There are a number of
factors that could cause actual results and developments
to differ materially from those expressed or implied in the
predictive statements. Therefore, such information is
provided for reference purpose only and constitutes
neither an offer nor an acceptance. Huawei may change
the information at any time without notice.
