ROSA Virtualization — virtualization management system
The ROSA Virtualization software package (hereinafter referred to as the complex) is designed to manage software hypervisors (KVM), as well as virtual machines (up to a thousand machines) and data center infrastructure in a domain environment.
The presence of developed discretionary and role models of access control distinguishes the product from similar solutions, for example, on the basis of OpenStack.
We assume that the complex will be used in “private” data centers (data centers) of the corporate segment or in the data center of government agencies or enterprises.
ROSA Virtualization is positioned as a private “cloud” environment for data that requires protection, which allows you not to worry about “leakage” or misuse of information.
The advantage of the complex is that it can be used at the enterprise within a few hours after the installation.
The software package is available for purchase. Information about purchase or testing can be requested at firstname.lastname@example.org
ROSA Virtualization is available in the following options:
- minimum-create and run up to 25 virtual machines
- standard-create and run up to 50 virtual machines
- advanced-create and run up to 100 virtual machines
- maximum-create and run up to 1000 virtual machines
- individual-create and run up to 10,000 virtual machines. Also, the “individual” option provides for a licensing scheme for sockets.
There is a trial version of ROSA Virtualization.
This option will be available to all users who officially bought (received for testing) the operating system ROSA Enterprise Linux Server (RES).
A previous version of the virtualization management system is available in the RELS repository.
This version is not provided with a Russian interface and has a limit on the execution of up to three virtual machines.
- centralized management of one or more data centers
- centralized management of a cluster (or multiple clusters) within a data center
- centralized management of the host (server) in each cluster. Intel x86-64 architecture servers are supported with up to 160 logical processors with up to 2 TB of RAM each. Virtualization technologies must be available for the processor (s)
- centralized management of virtual machine pool (VM). Supports Intel x86-64 or Intel x86 virtual machines with up to 64 virtual processors and up to 2 TB of RAM each
- centralized user management; integration with Microsoft Active Directory, FreeIPA and RHDS domains
- identify, authenticate, and authorize users, operators, and maintenance personnel to access the VM desktop session through the security domain
- discretionary and role models of differentiation of subjects ‘(users’) access to objects (virtual machines, hosts, clusters, data Centers, etc.).)
- centralized audit
- generate reports
- live migration of virtual machines
- creating high availability (High Availability) clusters)
- building load balancing policies
- monitor the hardware status of servers in the data center. Supports work with low-level hardware platform management interfaces (ILO, IPMI, etc.).)
- sending USB devices in both directions (both to and from the client) and restricting access to these devices
- support for modern versions of Linux and Windows as guest operating systems
- use client workstations running both Linux and Windows. Minimum requirements for the operator’s workplace-a browser and a small plugin to it
- get a virtual machine session using VNC or SPICE. If you use the SPICE Protocol, you can work with audio and USB devices
- support for aggregation (logical port aggregation) of network connections when building high-performance fault-tolerant network infrastructure
- the creation of multiple networks and distribution of functional and user traffic to different information streams; support VLAN
- support for distributed file system GlusterFS as a plug-in storage
- support for NFS, iSCSI standard, or server (host) FS as storage
- installing para-virtualization drivers on guest operating systems
- modern package base
- the interface is in Russian language
Hardware and software requirements:
- hardware server to host control subsystem
- servers for virtualization, which will be hosted hypervisors
- security domain server
- storage system
- high-performance network infrastructure
The complex includes several software tools (see figure).
- The subsystem for centralized management
- hypervisor management Manager, which polls agents that are part of the datacenter and running on physical servers
- Manager, hardware monitoring, tracking hardware servers to control their efficiencies (hardware monitoring requires support of hardware resource management systems (IPMI, ILO or similar) from servers.)
- virtual machine management Manager that starts, stops, creates, and deletes a VM
- network Manager that manages network connections within the datacenter
- audit Manager that tracks current events, including security events
- storage Manager that manages and monitors the current data center storage
- access control Manager
- user connection Manager
- as well as some other service components
- the hypervisor executing a virtual machine, or managing them on command from the control subsystem
- the agent of the control subsystem, which is used to communicate with the control subsystem and transmits control actions. In addition, the agent sends service information of various kinds about its state and the state of the hardware server on which it is running
- the storage access agent (can either contain its own local storage, or be a common “entry point” to the storage for neighbors, or be a shared storage user), as well as some other service components
- Domain server
Can be used AD domain, FreeIPA, RHDS domain or other Kerberos-LDAP with a standard LDAP schema RFC. The domain server is required to work with the discretionary and role models of access control. This allows you to divide management functions into resource administration and user administration
Shared or local disk space for each server, logically represented as a network, distributed, or local file system. Provides connection of disks and volumes, iSCSI, SCSI, FC, NFS, GlusterFS, and a private storage server