Deploying and Managing a Cloud

Infrastructure

Zafar Gilani

Abdul Salam

Salman UI Haq

Deploying and Managing a Cloud

InfrastructureReal World Skills for the CompTIA Cloud+™ Certification and Beyond

Acquisitions Editor: Kenyon BrownDevelopment Editor: Tom CirtinTechnical Editor: Kunal MittalProduction Editor: Christine O’ConnorCopy Editor: Judy FlynnEditorial Manager: Pete GaughanProduction Manager: Kathleen WisorAssociate Publisher: Jim MinatelMedia Supervising Producer: Rich GravesBook Designers: Judy Fung and Bill GibsonCompositor: Craig Woods, Happenstance Type-O-RamaProofreader: Kim WimpsettIndexer: Nancy GuentherProject Coordinator, Cover: Patrick RedmondCover Image: Wiley

Copyright © 2015 by John Wiley & Sons, Inc., Indianapolis, Indiana

Published simultaneously in Canada

ISBN: 978-1-118-87510-0

ISBN: 978-1-118-87529-2 (ebk.)

ISBN: 978-1-118-87558-2 (ebk.)

No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without either the prior written permis-sion of the Publisher, or authorization through payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 646-8600. Requests to the Publisher for permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ 07030, (201) 748-6011, fax (201) 748-6008, or online at http://www.wiley .com/go/permissions.

Limit of Liability/Disclaimer of Warranty: The publisher and the author make no representations or warranties with respect to the accuracy or completeness of the contents of this work and specifically dis-claim all warranties, including without limitation warranties of fitness for a particular purpose. No war-ranty may be created or extended by sales or promotional materials. The advice and strategies contained herein may not be suitable for every situation. This work is sold with the understanding that the publisher is not engaged in rendering legal, accounting, or other professional services. If professional assistance is required, the services of a competent professional person should be sought. Neither the publisher nor the author shall be liable for damages arising herefrom. The fact that an organization or Web site is referred to in this work as a citation and/or a potential source of further information does not mean that the author or the publisher endorses the information the organization or Web site may provide or recommendations it may make. Further, readers should be aware that Internet Web sites listed in this work may have changed or disappeared between when this work was written and when it is read.

For general information on our other products and services or to obtain technical support, please contact our Customer Care Department within the U.S. at (877) 762-2974, outside the U.S. at (317) 572-3993 or fax (317) 572-4002.

Wiley publishes in a variety of print and electronic formats and by print-on-demand. Some material included with standard print versions of this book may not be included in e-books or in print-on-demand. If this book refers to media such as a CD or DVD that is not included in the version you purchased, you may download this material at http://booksupport.wiley.com. For more information about Wiley products, visit www.wiley.com.

Library of Congress Control Number: 2014951019

TRADEMARKS: Wiley, the Wiley logo, and the Sybex logo are trademarks or registered trademarks of John Wiley & Sons, Inc. and/or its affiliates, in the United States and other countries, and may not be used without written permission. Cloud+ is a trademark of CompTIA Properties LLC. All other trademarks are the property of their respective owners. John Wiley & Sons, Inc. is not associated with any product or vendor mentioned in this book.

10 9 8 7 6 5 4 3 2 1

I dedicate this book to my family and my alma maters: NUST, UPC,

and KTH.

—Zafar Gilani

This book is dedicated to my father and mother, for their kindness and

devotion and for their endless support when I was busy writing this book.

Without their prayers and support, it would not have been possible for me

to complete this book.

—Abdul Salam

I dedicate this book to my father. May he live a long and happy life.

—Salman Ul Haq

AcknowledgmentsI thank Thomas Cirtin, Kenyon Brown, Christine O’Connor and the rest of Wiley’s editorial team for their important comments and suggestions.

—Zafar Gilani

I would like to express my gratitude to Ms. Asifa Akram, for her support, patience, and encouragement throughout the project. It is not often that one finds an advisor and friend who always finds the time to listen to the little problems and roadblocks that unavoidably crop up in the course of performing research. Her technical advice was essential to the completion of this book and has taught me innumerable lessons and insights on the writing of this technical ebook.

—Abdul Salam

I would like to thank my family for giving me the time and space required to complete chapters of this book. The awesome team at Wiley has perfectly managed the execution of this book, especially Thomas Cirtin for reviewing the manuscripts and Jeff Kellum, who initially started with the project but is no longer with Wiley. Finally, I would like to thank Zafar for keeping everyone engaged.

—Salman Ul Haq

About the AuthorsZafar Gilani is a full-time researcher and a PhD candidate at the University of Cambridge Computer Laboratory. Prior to starting his doctoral degree program in 2014, he successfully completed his master of science degree in the field of distributed computing. During that time, he was an Erasmus Mundus scholar at Universitat Politècnica de Catalunya (UPC) and Kungliga Tekniska högskolan (KTH) from 2011 to 2013. For his master’s thesis research, he worked on spatio-temporal characterization of mobile web content at Telefonica Research, Barcelona. One of the technological use cases of his research became the basis for developing mobile web content pre-staging for cellular networks.

Prior to starting master’s studies, he worked at SLAC National Accelerator Laboratory as a visiting scientist from 2009 to 2011. At SLAC he was involved in the research and develop-ment of Internet performance monitoring techniques and applications for geo-location of IP hosts. He graduated from NUST School of Electrical Engineering and Computer Science with a bachelor of science in computer science in 2009. He worked on providing InfiniBand support to MPJ Express (a Java-based MPI-like library) as his bachelor of science thesis research work. He can be reached on LinkedIn and at zafar.gilani@cl.cam.ac.uk.

Abdul Salam is a senior consultant with Energy Services. He has more than seven years of broad experience in cloud computing, including virtualization and network infrastruc-ture. Abdul’s previous experience includes engineering positions at multinational firms. Abdul has authored numerous blogs, technical books and papers, and tutorials as well as web content on IT. He earned a bachelor degree in information technology followed by a master of business administration in information technology and technical certifications from Cisco and Juniper Networks. You can contact him at LinkedIn.

Salman Ul Haq is a techpreneur and chief hacker at TunaCode. His interest in cloud com-puting grew when Amazon launched Amazon Web Services (AWS), which ushered in the modern cloud. His core expertise is in building computer vision systems and APIs for the cloud. He is co-inventor of CUVI and gKrypt SDKs. His other interests include big data, especially when combined with advanced AI in the cloud, and data security in the cloud. He can be reached at salman@programmerfish.com.

Contents at a Glance

Introduction xxiii

Chapter 1 Understanding Cloud Characteristics 1

Chapter 2 To Grasp the Cloud—Fundamental Concepts 27

Chapter 3 Within the Cloud: Technical Concepts of Cloud Computing 53

Chapter 4 Cloud Management 87

Chapter 5 Diagnosis and Performance Monitoring 121

Chapter 6 Cloud Delivery and Hosting Models 157

Chapter 7 Practical Cloud Knowledge: Install, Configure, and Manage 181

Chapter 8 Hardware Management 221

Chapter 9 Storage Provisioning and Networking 245

Chapter 10 Testing and Deployment: Quality Is King 287

Chapter 11 Cloud Computing Standards and Security 323

Chapter 12 The Cloud Makes It Rain Money: The Business in Cloud Computing 347

Chapter 13 Planning for Cloud Integration: Pitfalls and Advantages 375

Appendix The CompTIA Cloud+ Certification Exam 397

Index 417

ContentsIntroduction xxiii

Chapter 1 Understanding Cloud Characteristics 1

Basic Terms and Characteristics 2Elasticity 2On-Demand Self-service/JIT 3Templating 4Pay as You Grow 6Pay-as-You-Grow Theory vs. Practice 7Chargeback 8Ubiquitous Access 9Metering Resource Pooling 10Multitenancy 11Cloud Bursting 13Rapid Deployment 14

Object Storage Concepts 16File-Based Data Storage 16Object Storage 18Structured vs. Unstructured Data 18REST APIs 19

Summary 25Chapter Essentials 26

Chapter 2 To Grasp the Cloud—Fundamental Concepts 27

The True Nature of the Cloud 28Elastic 29Massive 29On Demand 29Virtualized 30Secure 30Always Available 30

Virtualization and Scalability 31The True Definer of Cloud Computing 32Serving the Whole World 32

The Cloud Hypervisor 33Type 1 and Type 2 33Use Cases and Examples 34Benefits of Hypervisors 35Hypervisor Security Concerns 35Proprietary vs. Open Source 36Moore’s Law, Increasing Performance, and

Decreasing Enterprise Usage 36Xen Cloud Platform (Open Source) 37

ContentsIt Pays to Get Certified

xii Contents

KVM (Open Source) 38OpenVZ (Open Source) 38VirtualBox (Open Source) 39Citrix XenServer (Proprietary) 39VMware vSphere/ESXi (Proprietary) 39Microsoft Windows Server 2012 Hyper-V 41Consumer vs. Enterprise Use 41Workstation vs. Infrastructure 43

Key Benefits of Implementing Hypervisors 46Shared Resources 46Elasticity 46Network and Application Isolation 47

Foundations of Cloud Computing 48Infrastructure 48Platform 49Applications 50Enabling Services 50

Summary 50Chapter Essentials 51

Chapter 3 Within the Cloud: Technical Concepts of Cloud Computing 53

Technical Basics of Cloud and Scalable Computing 54

Defining a Data Center 55Traditional vs. Cloud Hardware 62Determining Cloud Data Center Hardware

and Infrastructure 65Optimization and the Bottom Line 70

The Cloud Infrastructure 78Open Source 79Proprietary 84

Summary 85Chapter Essentials 86

Chapter 4 Cloud Management 87

Understanding Cloud Management Platforms 88What It Means for Service Providers 90Planning Your Cloud 90Building Your Cloud 94Running Your Cloud 95What This Means for Customers 95

Service-Level Agreements 97

Contents xiii

Policies and Procedures 97Planning the Documentation of the Network and IP 98Implementing Change Management Best Practices 100Managing the Configuration 105

Managing Cloud Workloads 111Managing Workloads Right on the Cloud 111Managing Risk 112

Securing Data in the Cloud 113Managing Devices 114

Virtualizing the Desktop 115Enterprise Cloud Solution 116

Summary 116Chapter Essentials 119

Chapter 5 Diagnosis and Performance Monitoring 121

Performance Concepts 122Input/Output Operations per Second (IOPS) 123Read vs. Write Files 124File System Performance 125Metadata Performance 127Caching 130Bandwidth 131Throughput: Bandwidth Aggregation 132Jumbo Frames 134Network Latency 135Hop Counts 136Quality of Service (QoS) 137Multipathing 137Load Balancing 138Scaling: Vertical vs. Horizontal vs. Diagonal 138

Disk Performance 140Access Time 140Data Transfer Rate 142Disk Tuning 143Swap Disk Space 144I/O Tuning 144Performance Management and Monitoring Tools 146Hypervisor Configuration Best Practices 149

Impact of Configuration Changes 151Common Issues 152Summary 153Chapter Essentials 154

xiv Contents

Chapter 6 Cloud Delivery and Hosting Models 157

Private 158Full Private Cloud Deployment Model 158Semi-private Cloud Deployment Model 159

Public 160Hybrid 160Community 161On-Premises vs. Off-Premises Hosting 161

On-Premises Hosting 162Off-Premises Hosting 162Miscellaneous Factors to Consider When Choosing

between On- or Off-Premises Hosting 163Comparing Total Cost of Ownership 166

Accountability and Responsibility Based on Delivery Models 168Private Cloud Accountability 168Public Cloud Accountability 169Responsibility for Service Impairments 170Accountability Categories 170

Security Differences between Models 171Multitenancy Issues 171Data Segregation 173Network Isolation 173

Functionality and Performance Validation 174On-Premises Performance 174Off-Premises Performance 174Types of Testing 175

Orchestration Platforms 175Summary 177Chapter Essentials 178

Chapter 7 Practical Cloud Knowledge: Install, Configure, and Manage 181

Setting Up the Cloud 183Creating, Importing, and Exporting Templates

and Virtual Machines 183Creating Virtual Machine Templates 184Importing and Exporting Service Templates 186Installing Guest Tools 188Snapshots and Cloning 189Image Backups vs. File Backups 193Virtual Network Interface Card 195Virtual Disks 198Virtual Switches 199

Contents xv

Configuring Virtual Machines for Several VLANs 201Virtual Storage Area Network 203

Virtual Resource Migration 204Establishing Migration Requirements 204Migrating Storage 206Scheduling Maintenance 208Reasons for Maintenance 208

Virtual Components of the Cloud 209Virtual Network Components 209Shared Memory 210Virtual CPU 211Storage Virtualization 211

Summary 214Chapter Essentials 215

Chapter 8 Hardware Management 221

Cloud Hardware Resources 222BIOS/Firmware Configurations 222Minimum Memory Capacity and Configuration 223Number of CPUs 223Number of Cores 224NIC Quantity, Speeds, and Configurations 225Internal Hardware Compatibility 225Storage Media 226Proper Allocation of Hardware Resources (Host) 227Proper Virtual Resource Allocation (Tenant/Client) 232

Management Differences between Public, Private, and Hybrid Clouds 234

Public Cloud Management 234Private Cloud Management 235Hybrid Cloud Management 236

Tiering 236Performance Levels of Each Tier 237Policies 238RAID Levels 238File Systems 239

Summary 241Chapter Essentials 242

Chapter 9 Storage Provisioning and Networking 245

Cloud Storage Concepts 246Object Storage 246Metadata 247Data/Blob 248

xvi Contents

Extended Metadata 248Replicas 248Policies and Access Control 248Understanding SAN and NAS 249

Cloud vs. SAN Storage 250Cloud Storage 251Advantages of Cloud Storage 252

Cloud Provisioning 252Migrating Software Infrastructure to the Cloud 253Cloud Provisioning Security Concerns 253Storage Provisioning 255Network Configurations 256Network Optimization 259

Cloud Storage Technology 260Data Replication 261Amazon Elastic Block Store (EBS) 262Amazon Simple Storage Service (S3) 264OpenStack Swift 266Hadoop Distributed File System (HDFS) 266Choosing from among These Technologies 277

Cloud Storage Gateway 278Cloud Security and Privacy 280

Security, Privacy, and Attack Surface Area 280Legal Issues (Jurisdiction and Data) 282Supplier Lifetime (Vendor Lock-In) 283

Summary 284Chapter Essentials 284

Chapter 10 Testing and Deployment: Quality Is King 287

Overview of Deployment Models 288Private Cloud 288Community Cloud 289Public Cloud 289Hybrid Cloud 290

Cloud Management Strategies 290Private Cloud Strategies 291Community Cloud Strategies 291Public Cloud Strategies 292Hybrid Cloud Strategies 292Management Tools 293

Cloud Architecture 294The Need for Cloud Architectures 294Technical Benefits 295Business Benefits 295

Contents xvii

Cloud Deployment Options 296Environment Provisioning 296Deploying a Service to the Cloud 298Deployment Testing and Monitoring 301

Creating and Deploying Cloud Services 304Creating and Deploying a Cloud Service

Using Windows Azure 305Deploying and Managing a Scalable Web Service

with Flume on Amazon EC2 309Summary 321Chapter Essentials 322

Chapter 11 Cloud Computing Standards and Security 323

Cloud Computing Standards 324Why Do Standards Matter? 324Current Ad Hoc Standards 325

Security Concepts and Tools 326Security Threats and Attacks 326Obfuscation 329Access Control List 329Virtual Private Network 330Firewalls 330Demilitarized Zone 333

Encryption Techniques 334Public Key Infrastructure 335Internet Protocol Security 336Secure Sockets Layer/Transport Layer Security 336Ciphers 337

Access Control Methods 338Role-Based Access Control 338Mandatory Access Control 338Discretionary Access Control 339Rule-Based Access Controls 339Multifactor Authentication 339Single Sign-On 339Federation 340

Implementing Guest and Host Hardening Techniques 340Disabling Unneeded Ports and Services 340Secure User Credentials 343Antivirus Software 344Software Security Patching 344

Summary 345Chapter Essentials 345

xviii Contents

Chapter 12 The Cloud Makes It Rain Money: The Business in Cloud Computing 347

The Nature of Cloud Business 348The Service Nature of the Cloud 348Making Money with Open-Source Software 349White Label Branding 350

Cloud Service Business Models 351Infrastructure as a Service (IaaS) 351Platform as a Service (PaaS) 352Software as a Service (SaaS) 353Data as a Service (DaaS) 354Communication as a Service (CaaS) 355Monitoring as a Service (MaaS) 355Business Process as a Service (BPaaS) 355Anything as a Service (XaaS) 356Service Model Accountability and Responsibility 356

The Enterprise Cloud 359Enterprise Applications 359Cloud Collaboration 360Collaborating with Telepresence 361

Disaster Recovery 364Preparing for Failure: Disaster Recovery Plan 365Backup Sites and Geographical Diversity 366Change-Over Mechanism: Failover and Failback 369

Business Continuity and Cloud Computing 369Business Continuity in the Cloud 370Workshifting in the Cloud 371Bring Your Own Device 371

Summary 372Chapter Essentials 373

Chapter 13 Planning for Cloud Integration: Pitfalls and Advantages 375

Work Optimization 376Optimizing Usage, Capacity, and Cost 376Which Service Model Is Best for You? 379

The Right Cloud Model 381Private Cloud 381Public Cloud 383Hybrid Cloud 384

Contents xix

Adapting Organizational Culture for the Cloud 385Finding Out the Current Culture 385Mapping Out an Adaption Plan 386Culture Adaption, Propagation, and Maintenance 387

Potholes on the Cloud Road 389Roadblocks to Planning 389Convincing the Board 391

Summary 394Chapter Essentials 394

Appendix The CompTIA Cloud+ Certification Exam 397

Preparing for the Exam 398Taking the Exam 399Reviewing the Exam Objectives 400

Index 417

Table of ExercisesExercise 1.1 JIT Provisioning on AWS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5

Exercise 7.1 Creating a Template from a Virtual Machine in Microsoft VMM . . . . . . . 184

Exercise 7.2 Creating a Template from Virtual Disks . . . . . . . . . . . . . . . . . . . . . . . . . . . 186

Exercise 7.3 Exporting Service Templates in Microsoft VMM . . . . . . . . . . . . . . . . . . . 187

Exercise 7.4 Importing Service Templates in Microsoft VMM . . . . . . . . . . . . . . . . . . . 187

Exercise 7.5 Creating Snapshots . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 190

Exercise 7.6 Creating Clones . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 191

Exercise 9.1 Adding, Removing, and Reading Data from HDFS . . . . . . . . . . . . . . . . . 270

Exercise 9.2 Killing a Hadoop Job and Avoiding Zombie Processes . . . . . . . . . . . . . . 271

Exercise 9.3 Resolving a Common IOException with HDFS . . . . . . . . . . . . . . . . . . . . . 271

Exercise 9.4 Using Pig to Group and Join Items Based on Some Criteria . . . . . . . . . . 276

■■ CompTIA Cloud+ certification designates an experienced IT profes-sional equipped to provide secure technical solutions to meet business requirements in the cloud.

■■ Certifies that the successful candidate has the knowledge and skills required to understand standard cloud terminologies and method-ologies to implement, maintain, and support cloud technologies and infrastructure.

■■ Job roles include System Administrator, Network Administrator and Storage Administrator among many others.■■ The market for cloud related jobs is growing with annual cloud market growth of almost 30% projected by

research group IDC over the next several years.

Steps to Getting Certified and Staying Certified

Review Exam Objectives

Review the certification objectives to make sure you know what is cov-ered in the exam . http://certification.comptia.org/examobjectives.aspx

Practice for the Exam

After you have studied for the certification, take a free assessment and sample test to get an idea of what type of questions might be on the exam . http://certification.comptia.org/samplequestions.aspx

Purchase an Exam Voucher

Purchase your exam voucher on the CompTIA Marketplace, which is located at: http://www.comptiastore.com/

Take the TestSelect a certification exam provider and schedule a time to take your exam . You can find exam providers at the following link: http://certification.comptia.org/Training/testingcenters.aspx

Stay Certified! Continuing Education

The CompTIA Cloud+ certification is valid for three years from the date of certification . There are a number of ways the certification can be renewed . For more information go to: http://certification.comptia.org/getCertified/stayCertified.aspx

How to Obtain More InformationVisit CompTIA online www.comptia.org to learn more about getting CompTIA certified.

Contact CompTIA Call 866-835-8020 ext. 5 or email questions@comptia.org.

Connect with us We’re on LinkedIn, Facebook, Twitter, Flickr, and YouTube.

It Pays to Get Certified

In a digital world, digital literacy is an essential survival skill.

Certification demonstrates that you have the knowledge and skill to solve technical or business problems in virtually any business environment. Certifications are highly valued credentials that qualify you for jobs, increased compensation, and promotion.

IntroductionCloud computing is reality now, defining how IT is handled not only in large, medium, and small enterprises but also in—consumer—facing businesses. The cloud itself is a familiar cliché, but when you attach computing, it brings with it a slew of services, vendors, and such, and the horizon includes virtual server providers, hosting providers, virtual storage and net-working providers, hypervisor vendors, and private/public cloud providers.

The enterprise IT landscape has always been well-defined and segmented. Cloud com-puting initially started with replacing the traditional IT model; any business that had any-thing to do with computers and software (and that was almost 100 percent of businesses around the world) would need to acquire physical servers (often racks of them, depending on the size of the business) and storage and networking components. The business then had to construct a specially designed data center to deploy the components then configure, support, and manage the data center. Specialized IT skills were needed for executing a data center and managing it. Only large-scale enterprises and well-funded businesses could afford to undertake this. Even for large enterprises that had their own massive data centers for distributing enterprise applications to the workers and storing business data, operating the data center itself was a distraction that added to costs.

Cloud computing is a natural transition from this legacy model of enterprise IT to a world where computing can be sold and purchased just like any other commodity, where consumers would pay only for what they use, without steep up-front bills. You can now “order” 100 virtual servers and build enough computing capacity to run an application consumed by 100 million users over the Internet without owning a single server or writing a huge check to cover up-front costs. The cloud has not only ushered in a new age for enter-prise IT, it has become the enabler technology for the Internet startups of today. It would be safe to say that a lot of very well-known Internet businesses wouldn’t be possible if there were no cloud.

Who Should Read This BookThe global cloud market is expected to reach $270 billion by 2020. With most government and corporate IT moving into the cloud, this is the perfect time to equip yourself with the right skills to thrive in cloud computing.

Even though cloud computing has significantly lowered the barrier for businesses to use IT resources on demand, this does not mean that you can create your company’s virtual data center in the cloud with just a few clicks. Building the right cloud infrastructure and efficiently managing and supporting it requires specialized skills. In addition to cloud practi-tioners, this book is for IT students who want to take a dive into understanding the concepts behind some of the key technologies that power modern cloud solutions and are essential for deploying, configuring, and managing private, public, and hybrid cloud environments.

Additionally, the topics covered in this book have been selected to address the CompTIA Cloud+ certification CV0-001, as indicated in the title of the book.

xxiv Introduction

If you’re preparing for the CompTIA Cloud+ certification CV0-001, this book is ideal for you. You can find more information about the CompTIA Cloud+ certification here:

http://certification.comptia.org/getCertified/certifications/cloudplus.aspx

How This Book is OrganizedThe topics in this book were chosen to cover a wide range of cloud technologies, deploy-ment scenarios, and configuration issues as well as fundamental concepts that define modern cloud computing. Every chapter begins with an introduction and a list of the topics covered within it. To enhance your learning experience, we’ve included hands-on exercises and real-world scenarios. The book also includes a practice exam that covers the topics presented in each chapter, which will help you prepare well for the certification exam.

Chapter 1, “Understanding Cloud Characteristics,” starts off with a detailed overview of the key terms related to cloud computing, including discussions of elasticity, metering/billing with the pay-as-you-grow model, network access, multitenancy, and a hybrid cloud scenario with cloud bursting, rapid deployment, and automation. The chapter also covers key concepts in object-based storage systems, including object IDs, metadata, access policies, and enabling access through REST APIs.

Chapter 2, “To Grasp the Cloud—Fundamental Concepts,” takes a dive into the key piece of technology that makes it possible to enable cloud computing—virtualization. This chapter covers Type 1 and Type 2 hypervisors and their differences plus popular open-source and pro-prietary hypervisors that are available today with an overview of their key features. It also cov-ers consumer versus enterprise use cases and workstation versus infrastructure virtualization. We discuss the key benefits of virtualization, like shared resources, elasticity, and complete resource pooling, including compute, storage, and network. The chapter ends with a discus-sion of the fundamentals of cloud computing in the context of virtualization technology.

Chapter 3, “Within the Cloud: Technical Concepts of Cloud Computing,” takes a dive into the technical aspects of scalable computing, which include a comparison of traditional and cloud infrastructures, selecting the right infrastructure for building your own cloud, scaling and optimizing a data center, and economies of scale. At the end of the chapter, there’s a section on cloud infrastructure, which covers open-source and proprietary solu-tions and includes a discussion on choosing between creating in-house tools or selecting third-party solutions and what drives the build versus buy decisions when it comes to cloud infrastructure.

Chapter 4, “Cloud Management,” includes a plethora of scenarios, use cases, and issues associated with managing deployment and ongoing support for your cloud implementation. Broadly, this includes managing your own cloud, managing workloads in the cloud, and managing business data assets that live in the cloud, including data migration and secure storage and access of the data. The cloud is device agnostic, so controlling and managing access to the cloud by a plethora of devices—a concept known as BYOD—is also discussed.

Introduction xxv

Chapter 5, “Diagnosis and Performance Monitoring,” discusses the aspects of a cloud implementation that you’ll want to gauge and monitor. This includes performance metrics across compute (e.g., IOPS and load balancing), network (e.g., latency and bandwidth), and storage (e.g., file system performance and caching) resources. We also discuss best practices to achieve optimal performance with the hypervisor and common failure scenarios.

Chapter 6, “Cloud Delivery and Hosting Models,” dives into the three main types of clouds in terms of delivery and access: public, private, and hybrid. On-premise and off-premise host-ing options are discussed for all three types. At the end of the chapter is a discussion of the security and functionality aspects of these models.

Chapter 7, “Practical Cloud Knowledge: Install, Configure, and Manage,” provides hands-on practical knowledge of the intricacies of setting up and managing your own cloud infrastructure. The chapter includes key discussions on creating a complete virtual-ized data center and configuring virtual compute, storage, and networking components. We’ll discuss migrating existing data and compute workloads to a newly built cloud and provide an overview of the key virtual components of the cloud.

Chapter 8, “Hardware Management,” walks through the physical hardware components that make up a cloud. Pros and cons of hardware design choices are discussed, including com-pute (e.g., number of cores and parallelism), storage (e.g., magnetic/spinning disk versus SSD), and networking (e.g., NIC quantities, types, and speed). Toward the end of the chapter, there’s an in-depth discussion of cloud storage options.

Chapter 9, “Storage Provisioning and Networking,” dives deep into creating virtualized storage, managing storage security and access, and provisioning models. We’ll show you how to configure networking for the cloud, including how to create and configure multiple virtual networks within the same cloud, how to configure remote access to the cloud over the network, and how to optimize network performance. The chapter also includes some common troubleshooting scenarios as well as a discussion of selecting the right networking protocols and networking monitoring and alert mechanisms.

Chapter 10, “Testing and Deployment: Quality Is King,” focuses on how QoS defines the success of the cloud. This chapter walks through extensive testing criteria for com-pute, storage, networking, and security/penetration. Test automation is also discussed. Deployment-related aspects like HA, multipathing, and load balancing are discussed toward the end of the chapter.

Chapter 11, “Cloud Computing Standards and Security,” discusses the importance of standards for cloud implementation and management. The bigger portion of the chapter addresses the important topic of security in the cloud, including a discussion of the tech-nical tools used to implement foolproof security for a cloud infrastructure. Encryption technologies are discussed along with implementation strategies for encryption in all states—communication, usage, and storage.

xxvi Introduction

Chapter 12, “The Cloud Makes It Rain Money: The Business in Cloud Computing,” dis-cusses the various business models for distributing cloud services, including IaaS, SaaS, DaaS, and PaaS. Enterprise applications and collaboration and telepresence tools are dis-cussed from a business perspective. Disaster recovery, an important responsibility of every cloud service provider, is discussed at length, including redundancy, geographical diversity, and mission-critical application requirements. More recent trends within cloud computing, like the freelance movement and BYOD, are discussed toward the end of the chapter.

Chapter 13, “Planning for Cloud Integration: Pitfalls and Advantages,” takes a broader look at the technical aspects to consider while making the transition to the cloud. This includes making the right choice for the type of cloud to adopt and modifying the organiza-tional structure to adapt to the new IT trends. Common pitfalls encountered along the road to cloud adoption are also discussed.

If you think you’ve found a technical error in this book, please visit http://sybex .custhelp.com. Customer feedback is critical to our efforts at Sybex.

Interactive Online Learning Environment and Test BankThis book provides access to relevant study tools and a test bank in an interactive online learning environment, making it an ideal exam prep guide for this challenging, but rewarding certification. Items available among the study tools and test bank include the following:

Practice Exam This book comes with a 76-question practice exam to help you test your knowledge and review important information.

Electronic Flash Clards This book also includes 113 questions in a flash card format (a question followed by a single correct answer). You can use these questions to review your knowledge and understanding of concepts.

Glossary The key terms from this book, and their definitions, are available as a fully searchable PDF you can save to your device and print out.

You can access the online learning environment and test bank at http://sybextestbanks.wiley.com .

Chapter

1Understanding Cloud Characteristics

TOPICS COVERED IN THIS CHAPTER INCLUDE:

■✓ Basic terms and characteristics

■■ Elasticity

■■ On-demand/self-service

■■ Pay-as-you-grow

■■ Chargeback

■■ Ubiquitous access

■■ Metering and resource pooling

■■ Multitenancy

■■ Cloud bursting

■■ Rapid deployment

■■ Automation

■✓ Object storage concepts

■■ ObjectID

■■ Metadata

■■ Extended metadata

■■ Data/blob

■■ Policies

■■ Replication

■■ Access control

Thomas J. Watson, the founder of IBM, remarked in the early 1940s, “I think there is a world market for about five computers.”

Even though that comment was referring to a new line of “scientific” computers that IBM built and wanted to sell throughout the United States, in the context of the cloud, the idea behind it still applies. If you think about it, most of the world’s critical business infra-structure relies on a handful of massive—really massive—data centers spread across the world. Cloud computing has come a long way, from early mainframes to today’s massive server farms powering all kinds of applications.

This chapter starts off with overview of some of the key concepts in cloud computing. Broadly, the standard features of a cloud are categorized into compute, storage, and net-working. Toward the end of the chapter, there’s a dedicated section on elastic, object-based storage and how it has enabled enterprises to store and process big data on the cloud.

Basic Terms and CharacteristicsBefore we begin, it’s important to understand the basic terms that will be used throughout the book and are fundamental to cloud computing. The following sections will touch upon these terms to give a feel for what’s to follow in later chapters.

ElasticityNatural clouds are indeed elastic, expanding and contracting based on the force of the winds carrying them. The cloud is similarly elastic, expanding and shrinking based on resource usage and cloud tenant resource demands. The physical resources (computing, storage, networking, etc.) deployed within the data center or across data centers and bundled as a single cloud usually do not change that fast. This elastic nature, therefore, is something that is built into the cloud at the software stack level, not the hardware.

The classic promise of the cloud is to make compute resources available on demand, which means that theoretically, a cloud should be able to scale as a business grows and shrink as the demand diminishes. Consider here, for example, Amazon.com during Black Friday. There’s a spike in inbound traffic, which translates into more memory consumption, increased net-work density, and increased compute resource utilization. If Amazon.com had, let’s say, 5 servers and each server could handle up to 100 users at a time, the whole deployment would