<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-text-html" lang="x-western"> Thanks Doug! PSB my
comments within.<br>
<br>
<div class="moz-cite-prefix">On 05/20/15 22:49, Doug Wiegley
wrote:<br>
</div>
<blockquote
cite="mid:BC4B34B5-F1B1-41E3-9F83-89ECF7FD27C6@parksidesoftware.com"
type="cite">Hi Maish,
<div class=""><br class="">
</div>
<div class="">Thanks for the feedback, some answers below.
Please also be aware of the lbaas use cases session tomorrow
at 9am (yuck, I know), <a moz-do-not-send="true"
href="https://etherpad.openstack.org/p/YVR-neutron-lbaas-use-cases"
class="">https://etherpad.openstack.org/p/YVR-neutron-lbaas-use-cases</a></div>
<div class=""><br class="">
</div>
</blockquote>
Sorry but I will not be able to attend - I will be on a plane. I
will look monitor the etherpad and pass my comments on.<br>
<blockquote
cite="mid:BC4B34B5-F1B1-41E3-9F83-89ECF7FD27C6@parksidesoftware.com"
type="cite">
<div class=""><br class="">
<div>
<blockquote type="cite" class="">
<div class="">On May 19, 2015, at 12:05 AM, Maish
Saidel-Keesing <<a moz-do-not-send="true"
href="mailto:maishsk@maishsk.com" class="">maishsk@maishsk.com</a>>
wrote:</div>
<br class="Apple-interchange-newline">
<div class="">
<div text="#000000" bgcolor="#FFFFFF" class=""> Hello
all,<br class="">
<br class="">
Going over today's presentation "Load Balancing as a
Service, Kilo and Beyond"[1] (great presentation!!) -
there are a few questions I have regarding the future
release:<br class="">
<br class="">
For Octavia 1.0:<br class="">
<br class="">
1. Can someone explain to me how the flow would work
for spinning up a new Amphora with regards to
interaction between Neutron, LBaaS and Barbican?<br
class="">
Same question as well regarding how the standby is
created and its relationship with Barbican.<br
class="">
</div>
</div>
</blockquote>
<div><br class="">
</div>
<div>The lbaas API runs inside neutron-server. The general
flow is:</div>
<div><br class="">
</div>
<div>- User interacts with neutron CLI/API or horizon (in
liberty), and creates an LB.</div>
<div>- Lbaas plugin in neutron creates logical models,
fetches cert data from barbican, and calls the backend
lbaas driver.</div>
</div>
</div>
</blockquote>
From this I gather that there is a dependency on Barbican. From
what I found - this thread looks like the HA modelling for
barbican [1]. Seems to me to be quite solid.<br>
<br>
There was one detail that aroused my attention. Barbican is using
PostgreSQL as the backend database [2]. <br>
Is there any specific reason why PostgreSQL and not MySQL like the
rest of OpenStack? Is there any tehnical limitation that
specifically requires PostgreSQL? <br>
<br>
*From an operators perspective inducing a new database technology
(yet again) this will is not ideal to say the least.*<br>
<blockquote
cite="mid:BC4B34B5-F1B1-41E3-9F83-89ECF7FD27C6@parksidesoftware.com"
type="cite">
<div class="">
<div>
<div>- The backend driver does what it needs to to
instantiate the LB. Today this is a synchronous call that
waits for the nova boot, but by Liberty, it will likely be
an async call to the octavia controller to finish the job.</div>
<div><br class="">
</div>
<div>Once Octavia has control, it is doing:</div>
<div><br class="">
</div>
<div>- Get REST calls for objects,</div>
<div>- Talk to nova, spin up an amphora image,</div>
<div>- Talk to neutron, plumb in the networks,</div>
<div>- Send the amphora its config.</div>
<br class="">
<blockquote type="cite" class="">
<div class="">
<div text="#000000" bgcolor="#FFFFFF" class=""> <br
class="">
2. Will the orchestration (Heat) also be implemented
when Octavia 1.0 is released or only further down the
line?<br class="">
If not what would you suggest be the way to
orchestrate LBaaS until this is ready?<br class="">
</div>
</div>
</blockquote>
<div><br class="">
</div>
<div>We need to talk to the Heat folks and coordinate this,
which we are planning to do soon.</div>
</div>
</div>
</blockquote>
Great! It would be ideal that this is available from Day 1,
otherwise there will be no real to utilize this in production use
cases.<br>
<blockquote
cite="mid:BC4B34B5-F1B1-41E3-9F83-89ECF7FD27C6@parksidesoftware.com"
type="cite">
<div class="">
<div><br class="">
<blockquote type="cite" class="">
<div class="">
<div text="#000000" bgcolor="#FFFFFF" class=""> <br
class="">
3. Is there some kind of hook into Security groups
also planned for the Amphora to also protect the Load
Balancer?<br class="">
</div>
</div>
</blockquote>
<div><br class="">
</div>
<div>Not at present, but I recorded this in the feature list
on the etherpad above.</div>
</div>
</div>
</blockquote>
Much obliged - this is a basic security requirement that should be
in place to protect/shield the load balancers from unwanted
traffic. <br>
<br>
[1] <a class="moz-txt-link-freetext"
href="http://lists.openstack.org/pipermail/openstack/2014-March/006102.html">http://lists.openstack.org/pipermail/openstack/2014-March/006102.html</a><br>
[2] <a class="moz-txt-link-freetext"
href="https://github.com/cloudkeep/barbican/wiki/Architecture">https://github.com/cloudkeep/barbican/wiki/Architecture</a><br>
<br>
<div class="moz-signature">-- <br>
Best Regards,<br>
Maish Saidel-Keesing</div>
</div>
</body>
</html>