Console Infrastructure in the CERN Computer Centre HEPiX / HEPNT Autumn 2003 Vancouver Mostly work done by

Slides:

Advertisements

Similar presentations

This course is designed for system managers/administrators to better understand the SAAZ Desktop and Server Management components Students will learn.

Advertisements

Overview of local security issues in Campus Grid environments Bruce Beckles University of Cambridge Computing Service.

Chapter Six Networking Hardware.

Install. Will your hardware work? Most things are compatible - a few are known not to be.

1 Version 1.0 D-Link HQ, Nov Sales Guide of KVM-440/450 D-Link Confidential 8/16 ports Rack mount KVM support PS2 and USB interface.

Setting up of condor scheduler on computing cluster Raman Sehgal NPD-BARC.

Leveraging WinPE and Linux Preboot for Effective Provisioning Jonathan Richey | Director of Development | Altiris, Inc.

S. Gadomski, "ATLAS computing in Geneva", journee de reflexion, 14 Sept ATLAS computing in Geneva Szymon Gadomski description of the hardware the.

Cambodia-India Entrepreneurship Development Centre - : :.... :-:-

L. Granado Cardoso, F. Varela, N. Neufeld, C. Gaspar, C. Haen, CERN, Geneva, Switzerland D. Galli, INFN, Bologna, Italy ICALEPCS, October 2011.

8-Port Combo KVM Over IP Switch IKVM / 15  Product Benefits  Product Overview  Product Features  Applications  Comparison Presentation Outline.

 Contents 1.Introduction about operating system. 2. What is 32 bit and 64 bit operating system. 3. File systems. 4. Minimum requirement for Windows 7.

WHAT IS A COMPUTER? BY JACK SUMMERS. WHAT IS A COMPUTER? A computer basically a set of different components that when put together in the correct way.

NovaBACKUP 10 xSP Technical Training By: Nathan Fouarge

CERN IT Department CH-1211 Genève 23 Switzerland t Next generation of virtual infrastructure with Hyper-V Michal Kwiatek, Juraj Sucik, Rafal.

Terminal and Console Access Unix/IP Preparation Course May 29, 2011 Dar es Salaam, Tanzania.

Cluster computing facility for CMS simulation work at NPD-BARC Raman Sehgal.

Tony Mangefeste Senior Program Manager SYS-005T Why UEFI? UX value prop from Day one: Fast Boot, OEM Certification, smooth transitions, etc. Secure Boot.

For more notes and topics visit:

University of Bergen public domain software: SEISLOG Linux, data-acquisition system for standard PC and embedded lowcost, low-power solutions Terje Utheim.

Chapter-4 Windows 2000 Professional Win2K Professional provides a very usable interface and was designed for use in the desktop PC. Microsoft server system.

NETWORK Topologies An Introduction.

Hands-On Virtual Computing

Thank you for your decision to try vTreePro Practice Tree Software! Your satisfaction is very important to us. Please feel free to send us an if.

October, Scientific Linux INFN/Trieste B.Gobbo – Compass R.Gomezel - T.Macorini - L.Strizzolo INFN - Trieste.

Horst Severini Chris Franklin, Josh Alexander University of Oklahoma Implementing Linux-Enabled Condor in Windows Computer Labs.

+ discussion in Software WG: Monte Carlo production on the Grid + discussion in TDAQ WG: Dedicated server for online services + experts meeting (Thusday.

Nov 1, 2000Site report DESY1 DESY Site Report Wolfgang Friebel DESY Nov 1, 2000 HEPiX Fall

Guide to Linux Installation and Administration, 2e1 Chapter 2 Planning Your System.

Scott Drucker, Systems Engineer Migrating to Microsoft Vista with WinINSTALL.

Eugenia Hatziangeli Beams Department Controls Group CERN, Accelerators and Technology Sector E.Hatziangeli - CERN-Greece Industry day, Athens 31st March.

Deployment work at CERN: installation and configuration tasks WP4 workshop Barcelona project conference 5/03 German Cancio CERN IT/FIO.

PacNOG 6: Nadi, Fiji Terminal and Console Access Hervey Allen Network Startup Resource Center.

Chapter2 Networking Fundamentals

Microsoft Management Seminar Series SMS 2003 Change Management.

ALICE Use of CMF (CC) for the installation of OS and basic S/W OPC servers and other special S/W installed and configured by hand PVSS project provided.

Managing the CERN LHC Tier0/Tier1 centre Status and Plans March 27 th 2003 CERN.ch.

Manage Operations Lights Out Control. License our technology, an industrial strength, unifying, centralized access and power management standard to Vendors.

IDE disk servers at CERN Helge Meinhard / CERN-IT CERN OpenLab workshop 17 March 2003.

Security components of the CERN farm nodes Vladimír Bahyl CERN - IT/FIO Presented by Thorsten Kleinwort.

OmniView® Remote IP Device. OmniView® Remote IP Device – Features and Benefits Control your Server or KVM switch over LAN or WAN The OmniView SMB Remote.

Computing Facilities CERN IT Department CH-1211 Geneva 23 Switzerland t CF Automatic server registration and burn-in framework HEPIX’13 28.

European Organization for Nuclear Research Virtualization Review and Discussion Omer Khalid 17 th June 2010.

I NTRODUCTION TO N ETWORK A DMINISTRATION. W HAT IS A N ETWORK ? A network is a group of computers connected to each other to share information. Networks.

Computer main parts HARDWARE It corresponds to all physical and tangible parts of a computer: your electrical, electronic, electromechanical and mechanical.

Maite Barroso - 10/05/01 - n° 1 WP4 PM9 Deliverable Presentation: Interim Installation System Configuration Management Prototype

Horst Severini, Chris Franklin, Josh Alexander, Joel Snow University of Oklahoma Implementing Linux-Enabled Condor in Windows Computer Labs.

Status & development of the software for CALICE-DAQ Tao Wu On behalf of UK Collaboration.

Computer and Network Infrastructure for the LHCb RTTC Artur Barczyk CERN/PH-LBC RTTC meeting,

Unit 1: Computing Fundamentals. Computer Tour-There are 7 major components inside a computer  Write down each major component as it is discussed.  Watch.

R. Krempaska, October, 2013 Wir schaffen Wissen – heute für morgen Controls Security at PSI Current Status R. Krempaska, A. Bertrand, C. Higgs, R. Kapeller,

Automating Installations by Using the Microsoft Windows 2000 Setup Manager Create setup scripts simply and easily. Create and modify answer files and UDFs.

Seagate Confidential Battle Card: Seagate Business Storage 8-bay Rackmount NAS THE BASICS Target Customers & Relevant Value KEEP IN MIND “Need-To-Know”

Chapter 1: Computer Basics Instructor:. Chapter 1: Computer Basics Learning Objectives: Understand the purpose and elements of information systems Recognize.

SMOOTHWALL FIREWALL By Nitheish Kumarr. INTRODUCTION  Smooth wall Express is a Linux based firewall produced by the Smooth wall Open Source Project Team.

Geant4 GRID production Sangwan Kim, Vu Trong Hieu, AD At KISTI.

Trusted Virtual Machine Images the HEPiX Point of View Tony Cass October 21 st 2011.

Professor: Nabil Elmjati IB100 Introduction to computer Sciences.

Component 8/Unit 1bHealth IT Workforce Curriculum Version 1.0 Fall Installation and Maintenance of Health IT Systems Unit 1b Elements of a Typical.

Amazon Web Services. Amazon Web Services (AWS) - robust, scalable and affordable infrastructure for cloud computing. This session is about:

RuggedPOD O/S Deployment strategy. Disclaimers The content of this presentation is released under GPL v2 license en Creative Common Attribution-ShareAlike.

Bernd Panzer-Steindel CERN/IT/ADC1 Medium Term Issues for the Data Challenges.

Building Networks for People

Monitoring and Fault Tolerance

Outline What does the OS protect? Authentication for operating systems

TOPIC 6: SYSTEM START-UP AND CONFIGURATION

TYPES OF SERVER. TYPES OF SERVER What is a server.

Outline What does the OS protect? Authentication for operating systems

Unit 1.4 Wired and Wireless Networks Lesson 1

Presentation transcript:

Console Infrastructure in the CERN Computer Centre HEPiX / HEPNT Autumn 2003 Vancouver Mostly work done by

HEPiX Vancouver: Console management at CERN2 Helge.Meinhard (at) cern.ch The problem CERN CC is running large farms CPU servers: now 1500 boxes, 6000* in 2006 Disk/tape servers: now 300 boxes, 1200* in 2006 *) Error bar: ~ factor 2 Attempt at high-level management solution: ELFms  T. Kleinwort Low-level problems E.g. machine unpingable Console access and/or reset required

HEPiX Vancouver: Console management at CERN3 Helge.Meinhard (at) cern.ch Existing solutions… … do not scale

HEPiX Vancouver: Console management at CERN4 Helge.Meinhard (at) cern.ch Requirements Considered systematically in summer 2003 Main points: Remote console access To boot loader and operating system (Linux) Preferably to BIOS as well Remote reset ATX reset and/or ATX power on/off and/or Remote power cycling

HEPiX Vancouver: Console management at CERN5 Helge.Meinhard (at) cern.ch Options (1 CHF = 0.75 USD = 0.65 EUR = 1 CAD) † : yes, but…

HEPiX Vancouver: Console management at CERN6 Helge.Meinhard (at) cern.ch Prototypes Serial daisy-chaining Up to 4 nodes BIOS, boot loader, OS Console: minicom But few boards come with two serial lines these days… Remote reset port 0 port 1 port 0 port 1 port 0 port 1 port 0 port 1

HEPiX Vancouver: Console management at CERN7 Helge.Meinhard (at) cern.ch Decisions Infrastructure for serial console via serial cards in PCs to be deployed Nothing else for now (no remote reset etc.) 24 x 7 operator coverage can step in Many services are redundant Specs for all new servers require support for Redirection of BIOS to serial line… and controllable system behaviour (stay off vs. previous state) on power cycle

HEPiX Vancouver: Console management at CERN8 Helge.Meinhard (at) cern.ch Serial infrastructure: head nodes Dedicated head nodes vs. worker nodes serving as heads for small number of peers +Cleaner – all worker nodes remain the same +Can be used for other head node applications (e.g. software distribution) if desired –Extra investment, extra space –If down, larger number of machines inaccessible via serial console Decided in favour of dedicated head nodes

HEPiX Vancouver: Console management at CERN9 Helge.Meinhard (at) cern.ch Concentration factor, scope Head nodes equipped with 6 8-port cards Complete head node (w/o serial cables) is about 1800 CHF By far cheaper than higher number of ports per console server, even though more console servers needed Will equip all CERN computer centre Machine rooms on ground floor and basement Except Windows machines, machines dedicated to network services Procurement running for 75 head nodes Cross-connection of head nodes not decided yet Some free ports on head nodes

HEPiX Vancouver: Console management at CERN10 Helge.Meinhard (at) cern.ch Software Need a bit more than minicom Logging into one of ~75 servers and requesting /dev/ttyS25 not going to scale Authentication and authorisation Logging of console output Started prototyping our own solution (Andras Horvath / CERN) Put on hold when we learned (at HEPiX Amsterdam) of … Software by Chuck Boeheim (SLAC) used at SLAC, Fermi, LBL, … Provides most of the functionality we require CERN-specific extensions can be easily added (wrapper scripts) Constructive discussions with Chuck, expect to share the work Aim is one common code base

HEPiX Vancouver: Console management at CERN11 Helge.Meinhard (at) cern.ch xxx pcitfionnn Software schematics lxplusnnn User app CDB – config service Machine – head node mapping User – machine authorisations Console server 1 Server proc conf log Machine 1.1 Machine RS/232 Console server 75 Server proc conf log Machine 75.1 Machine … Console log repository

HEPiX Vancouver: Console management at CERN12 Helge.Meinhard (at) cern.ch Software components User application Should run on all on-site Linux machines; Windows, Solaris? Console application on head nodes Grants and logs access to serial lines Logs console output Configuration service Machine – head node mapping User – machine mapping (authorisation to access serial line) Store for console logs Nothing on machines…

HEPiX Vancouver: Console management at CERN13 Helge.Meinhard (at) cern.ch Software: TBD On our wishlist: Authentication of head node towards user app, and of user towards server process on head node Per-line control of access right (Possibility of) logging via syslog CERN-specific extensions being designed Machine detection, feedback to config service Wrapper around user app asking config service to provide mapping of machine to head node Automatic creation of local config files on head nodes Collection of console logs in central repository

HEPiX Vancouver: Console management at CERN14 Helge.Meinhard (at) cern.ch Status, outlook HW: Orders for head nodes, serial cards, cables out or being finalised Expected delivery: 2H November 2003 SW: Started discussing and investigating adaptations, CERN-specific elements being designed Hope to have first head node ready in time for next disk server delivery (early December; no KVM switches!) Full deployment will run well into 2004

HEPiX Vancouver: Console management at CERN15 Helge.Meinhard (at) cern.ch Options Serial line PCI cards in PCs Dedicated console server PC Weasel card Keyboard / video / mouse multiplexers Analog Digital Relay boxes (for reset / ATX power on-off) Remotely controllable power strips IPMI

HEPiX Vancouver: Console management at CERN16 Helge.Meinhard (at) cern.ch Concentration factor Price comparison for head nodes + serial cards + patch panel boxes (if required) for basement machine room – 792 ports (18 racks for white box CPU servers) List prices for cards and boxes, assumed 1500 CHF per head node (1 CHF = 0.75 USD = 0.65 EUR = 1 CAD) Newest price estimate (head node + 6 x Exsys 41098): 1800 CHF = 41 CHF/port (44 ports) Head node configurationSystems / head node No of head nodes Price per port / CHF 1 PC + 6 x 8port PC + 2 x 48port PC + 2 x 48port + 1 x 96port PC + 2 x 48port + 3 x 96port

HEPiX Vancouver: Console management at CERN17 Helge.Meinhard (at) cern.ch Software requirements User application requests machine, not head node Traffic between user application and head node Encrypted Head node authenticates to user application User authenticates to head node application Access controllable by user and machine / head node Complete logging of console messages of all used ports Detect connected machines, i.e. establish machine – head node mapping automatically Able to send magic keys, breaks etc. to machines No additional software to be installed on machines Logging who uses a given line Software on head nodes reconfigurable (SIGHUP)