HIGH LEVEL DESIGN

Name Location Date

Project Title

Effective security in Hybrid Cloud Computing

Team members

Pooja.P V.Vijayalakshmi R.Pavithra

Chennai

Project Guide

Mr. N. R. Rejin Paul

Chennai

Distribution List

Unisys

Version No.

Table of Contents
Project description .................................................................................................................................. 2 System Architecture .................................................................................................................................. 3 Environment Specification ......................................................................................................................... 3 Module breakdown ..................................................................................................................................... 3 Design description....................................................................................................................................... 3

Project description
An Hybrid Cloud Deployment powered by OpenNebula is fully transparent to infrastructure users. Users continue using the same private and public Cloud interfaces, so the federation is not performed at service or application level but at infrastructure level by OpenNebula. It is the infrastructure administrator who takes decisions about the scale out of the infrastructure according to infrastructure or business policies. There is no modification in the operation of
OpenNebula to integrate Cloud services. A Cloud service is managed as any other OpenNebula host that may provide infinite capacity for the execution of VMs.

System Architecture

Environment Specification
Hardware Requirements :
OpenNebula Frontend [OneHost] VM Host [nodekvm] A VT enabled hardware with Ubuntu 12.04 A VT enabled hardware with Ubuntu 12.04

Network setup A router with ONE OR TWO Ethernet ports and internet connectivity

Software Requirement:
O p e r a t i n g S ys t e m : U b u n t u 1 2 . 0 4 6 4 B i t S e r v e r Private Cloud Back End Documentation : OpenNebula : : SQLite/MSSQL Ms-Office

Module breakdown

The basic components of an OpenNebula system are: Front-end, executes the OpenNebula services. Hosts, hypervisor-enabled hosts that provide the resources needed by the VMs. Datastores hold the base images of the VMs. Service Network, physical network used to support basic services: interconnection of the storage servers and OpenNebula control operations VM Networks physical network that will support VLAN for the Vms. OpenNebula services include: Management daemon (oned) and scheduler (mm_sched) Monitoring and accounting daemon (onecctd) Web interface server (sunstone)

OpenNebula Components
OpenNebula comprises the execution of three type of processes:

The OpenNebula daemon (oned), to orchestrate the operation of all the modules and control the VM's life-cycle The drivers to access specific cluster systems (e.g. storage or hypervisors) The scheduler to take VM placement decisions

Design description
Debian and Ubuntu platform notes

These are the packages available for these distributions:

Installation Layout (Front-End)

Ruby Libraries Requirements (Front-End)

Some OpenNebula components need ruby libraries. OpenNebula provides a script that installs the required gems as well as some development libraries packages needed. As root execute: # /usr/share/one/install_gems

 The previous script is prepared to detect common linux distributions and install the required libraries. If it fails to find the packages needed in your system, manually install these packages: sqlite3 development library mysql client development library curl development library libxml2 and libxslt development libraries ruby development library gcc and g++ make The OpenNebula package installation creates a new user and group named oneadmin in the front-end. This account will be used to run the OpenNebula services and to do regular administration and maintenance tasks. That means that you eventually need to login as that user or to use the sudo -u oneadmin method. The hosts need also this user created and configured. Make sure you change the uid and gid by the ones you have in the frontend.
Secure Shell Access (Front-End)

You need to create ssh keys for the oneadmin user and configure the host machines so it can connect to them using ssh without need for a password.
Starting OpenNebula (Front-End)
Log in as the oneadmin user follow these steps:

Set oneadmin's OpenNebula credentials (username and password) adding the following to ~/.one/one_auth (change password for the desired password):
$ mkdir ~/.one $ echo "oneadmin:password" > ~/.one/one_auth $ chmod 600 ~/.one/one_auth

You are ready to start the OpenNebula daemons:

$ one start

Hybrid cloud DEPLOYMENT steps: Front end: Configure the network in Ubuntu linux with a Static IP address Configure password for user Install NFS Kernel server in NFS, make folder /var/lib/one shareable with Node machine

create a SSH key for oneadmin and disable host key checking else make all hostkeys known on the OpenNebula node. Install dependency Packages for OpenNebula Install MSSQL server Configue MSSQL with database and tables

Install OpenNebula server Create enviornment variables and password file Configure OpenNebula configuration file Start OpenNebula
Node: Configure the network in Ubuntu linux with a Static IP address Create a network bridge in the node Setup users in Froent end. Default user : oneadmin Configure password for user oneadmin Install NFS client mount local /var/lib/one folder with frontend folder /var/lib/one using NFS