SlideShare uma empresa Scribd logo
1 de 70
Baixar para ler offline
Debian-Cloud: EC2 AMIs 
James Bromberger 
<jeb@debian.org>
Agenda 
• What is Debian 
• What is AWS EC2 
• A meander through block storage for EC2 
instances 
• Types of images 
• Generating & distributing Debian’s AMIs 
• Debuab Image lifecycle and security 
• If there is time: Debian via Cloudfront CDN
WHAT IS DEBIAN
What is Debian 
• Computer Operating System 
– 14 CPU/kernel architectures 
– 37,500 packages of software 
– Translated into a bunch of languages
What is Debian 
• Primarily of free and open-source software 
– GNU General Public License and many other 
licenses
What is Debian 
• Started 1993 
– 21 years old now 
• Democratic, volunteer organisation - ~1,000 people 
(please join!) 
– Zero payed employees
WHAT IS AWS EC2
What is AWS and EC2 
• AWS = Amazon Web Services 
• EC2 = Elastic Compute Cloud 
– Virtual servers running Linux, Windows, BSD 
• Started 2006 
• Now with 11 Regions and 52 Edge Locations 
• Compute, storage, platform, infrastructure – as-a-service 
– typically billed by the hour or by the month 
Amazon EC2
What is EC2 
• Compute requires: 
– CPU, Memory (RAM) 
– Block Storage (disk) 
– Network 
– Automation & bootstrapping 
– Self-service 
instance 
Amazon EBS 
Amazon VPC
What is EC2 
• Amount of CPU & Memory is combined into 
“instance type”: 
– Small 
– Medium 
– Large 
– ... 
instance 
instance 
instance
What is EC2 
• Several instance types are grouped into an 
“instance family”: 
– General Purpose (balanced memory:cpu) 
– Memory Optimised (more memory:cpu) 
– CPU Optimised (more cpu:memory) 
– Storage Optimised (more ‘ephemerial’ storage) 
– GPU (CUDA, OpenCL) 
– Cluster Nodes (10 GB/sec networking and more)
What is EC2 
• EC2 instance run on real servers! 
instance instance instance instance 
Total number of 
(hyperthread) 
CPU cores, each 
dedicated* to an 
instance 
Disk inside the 
physical server is 
deemed 
‘ephemeral’. Not 
raid, but is local to 
CPU and Memory. 
Different amounts 
of storage 
depending on 
instance type 
RAM is dedicated 
to each instance 
Each instance can 
send a certain 
number of packets 
per second
A MEANDER THROUGH STORAGE
Ephemeral (instance) Storage 
instance instance instance instance
Persistent (EBS) Storage 
instance instance instance instance 
Amazon EBS
Persistent (EBS) Storage 
instance instance instance instance 
Amazon EBS
Persistent (EBS) Storage 
Amazon EBS 
Mechanical disk 
General Purpose SSD (GP2) 
Provisioned IOPS (SSD) 
Amazon S3
Persistent (EBS) Storage 
Amazon EBS 
Mechanical disk 
General Purpose SSD (GP2) 
Provisioned IOPS (SSD) 
Amazon S3 
AFR of a typical standard HDD 
Designed for 99.999% availability 
(5.26 min/yr) 
Single instance attach only 
(currently) 
1GB..1TB (currently) 
Your choice of file-system 
Optional transparent encryption 
by AWS 
Network attached to your 
instance back in the EC2 
environment 
99.999999999% durability 
Replicated multiple times 
within the same Region 
Check-summed and re-check- 
summed periodically 
Designed for 99.99% 
availability (SLA at 99.9%) 
Can be shared with other 
customers (specific, or all) 
unless AWS-encrypted 
Can be used to create a 
new EBS volume 
EBS snapshots cannot be 
seen in your S3 buckets
Persistent (EBS) Storage 
Amazon EBS 
Mechanical disk 
General Purpose SSD (GP2) 
Provisioned IOPS (SSD) 
Amazon S3 
AFR of a typical standard HDD 
Designed for 99.999% availability 
(5.26 min/yr) 
Single instance attach only 
(currently) 
1GB..1TB (currently) 
Your choice of file-system 
Optional transparent encryption 
by AWS 
Network attached to your 
instance back in the EC2 
environment 
99.999999999% durability 
Replicated multiple times 
within the same Region 
Check-summed and re-check- 
summed periodically 
Designed for 99.99% 
availability (SLA at 99.9%) 
Can be shared with other 
customers (specific, or all) 
unless AWS-encrypted 
Can be used to create a 
new EBS volume 
EBS snapshots cannot be 
seen in your S3 buckets
Persistent (EBS) Storage 
instance instance instance instance 
Amazon EBS
Instance stop w/EBS 
instance instance instance 
Amazon EBS
Instance restart w/EBS 
instance instance instance 
Amazon EBS 
instance instance instance instance 
EBS volume(s) reattached, ephemeral volume(s) blank
TYPES OF MACHINE IMAGES
Amazon Machine Images 
• AMI is “golden master” 
• Start as many instances as you like* 
AMI 
instance 
instance 
instance 
instance instance instance
Ephemeral and EBS 
• Why is the Ephemeral and EBS storage options 
important in AMIs? 
Your root volume 
/ -> persistent (EBS) 
/ -> transitory (Ephemeral)
Ephemeral and EBS 
• Why is the Ephemeral and EBS storage options 
important in AMIs? 
Your root volume 
1,000 systems for 24 hours, 
8 GB EBS each in SYD: ~$30.85
Ephemeral and EBS 
• Why is the Ephemeral and EBS storage options 
important in AMIs? 
Your root volume 
1,000 systems for 24 hours, 
Ephemeral in SYD: $0
Ephemeral and EBS 
• Why is the Ephemeral and EBS storage options 
important in AMIs? 
Amazon S3 S3 backed AMI 
snapshot 
EBS backed AMI
CPU Architectures 
• EC2 currently supports 2 architectures: 
EBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMI
Virtualisation Types 
• EC2 uses (highly customised) Xen, and 
supports two virtualisation types: 
Para- 
Virtualization 
(threads) 
Hardware 
Virtualization 
(emulation) 
EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI
Each Region is independent 
Para- 
Virtualization 
(threads) 
Hardware 
Virtualization 
(emulation) 
EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI 
EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI 
EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI 
AP... US West 1 US East 1
Now multiply that by: 
• Wheezy 
• Jessie 
• Sarge 
• ...
• 2 architectures 
• 2 virtualisation types 
• 2 root volume types 
• 11 Regions 
• 3 Debian releases 
= 198 images 
(Plus images currently being end-of-lifed, 
experimented with, and used for other purposes)
Current Debian AMIs: Squeeze (6) 
Architecture EBS Backed S3 Backed 
32 bit PVM Yes 
64 bit PVM Yes 
32 bit HVM 
64 bit HVM
Current Debian AMIs: Wheezy (7) 
Architecture EBS Backed S3 Backed 
32 bit PVM Yes 
64 bit PVM Yes Yes 
32 bit HVM 
64 bit HVM Yes (experimental)
Future Debian AMIs: Jessie (8) 
Architecture EBS Backed S3 Backed 
32 bit PVM 
64 bit PVM Yes 
32 bit HVM 
64 bit HVM Yes Yes*
Two ways of creating AMIs 
Start from scratch 
• Uses a fresh, blank volume, 
install as a debootstrap 
Update existing 
• Start existing instance, 
customise, create new 
image
EBS Backed AMI overview 
instance 
volume 
/ 
volume 
/target 
snapshot 
EC2 API 
Endpoint 
AMI
Let’s create a Jessie image 
• Fire up an existing instance (easiest is to use 
an existing Debian AMI) 
• Install git, debootstrap, python-boto, python-jsonschema, 
and some other python bits 
– Configure your AWS IAM credentials for boto 
• Grab bootstrap-vz from Github
DEMO
Distributing images globally 
Each region has separate copies of AMIs
Distributing images 
Three “groups” of Regions: 
• GovCloud 
• Beijing 
• Everywhere else*
Debian AWS Accounts 
Region AWS Account ID 
Beijing 673060587306* 
Gov Cloud 256493402735** 
Standard Regions 379101102735
Debian Cloud - building the Debian AMIs
Community Shared AMIs 
• Un-vetted by AWS 
– Trojan horses 
– Left over SSH keys in other accounts 
– Cron jobs that go bump in the night 
• Anyone can share any AMI under their control 
(provided they have access within their AWS account to do so – IAM Policy) 
– Caveat emptor
Debian Cloud - building the Debian AMIs
Debian Cloud - building the Debian AMIs
Pushing images to Marketplace 
Vendor 
AWS 
Account ID 
Vendor 
Display 
Name 
Product ID Version ID ASIN SKU Software 
by 
Title Version 
Title 
Release 
Notes 
Short 
Description 
Description Highlight1
Debian Cloud - building the Debian AMIs
IMAGE LIFECYCLE AND SECURITY
AMI Lifecycle 
Our aim is to keep the final point release AMI 
available for each Debian major release, 
starting from Squeeze: 
• 6.0.10 
• 7.7
AMI Lifecycle 
Wheezy 7.4 
Wheezy 7.5 
Try to keep a 2 – 5 
week overlap for point 
releases, then un-share 
Wheezy 7.6 
for a period, 
Wheezy 
7.6.aws. 
1 
Wheezy 
7.6.aws.2 
Wheezy 7.7 
then delete 
Time 
Occasionally security 
releases that are urgent 
in BASE images (AMIs) 
force additional version 
numbers out of step with 
Debian. This was 
shellshock,
Security in base images 
• EC2 instances may be deployed such that they 
don’t have direct access to fetch updates 
• Administrators may chose not to install 
updates unattended
Debian AMIs in US East 1
Workflow overview 
1. Generate AMIs in US East 1 
2. Tag AMIs and Snapshot 
3. Test image in US East 1 
4. Copy to all Standard Regions (python script) 
5. Mark AMI and Snapshot as Public (python script) 
6. Generate in Beijing and Gov Cloud, tag, mark public 
7. Generate signed message to the Debian-cloud mailing list, update wiki 
8. Wait a few days (for bugs to surface), then push to AWS Marketplace 
9. Announce deprecation of previous versions (typically 3 – 5 weeks notice) 
in signed email to Debian-cloud ML 
10. After elapsed period, remove public sharing from AMI and Snapshots 
(python script) 
11. A day or so later, deregister the AMI and delete the snapshot (python 
script)
What’s new in Jessie EC2 images 
• Single Root IO Virtualisation (Enhanced 
Networking) 
• Multiple Network Interfaces (ENI) 
• Multiple sub-interfaces 
• AWS CLI and python-boto installed in base 
image 
• Cloud-init (since Wheezy 7.4)
Cloud-init 
• Insert this as “User 
Data” 
• Can be embedded into 
CloudFormation 
templates 
#cloud-config 
package_update: true 
package_upgrade: true 
package_reboot_if_required: true 
packages: 
- pwgen 
- less 
locale: fr_FR.UTF-8 
ssh_authorized_keys: 
- ssh-rsa AAAAB3Nz....89dGp5 me@mykey1 
- ssh-rsa AAAAB3Nz....89dGp5 me@mykey2 
final_message: "The system is finally up, 
after $UPTIME seconds"
DEBIAN ON CLOUDFRONT CDN
Debian Archive via CDN 
• Default apt sources.list 
for EC2 images uses 
cloudfront.debian.net 
• Primarily for EC2 
instances, but is active 
in all 52 Cloudfront 
locations world-wide 
CloudFront
Cloudfront.debian.net 
• Each edge location is 
independent of all 
others 
edge location 
edge location 
edge location 
traditional server
Cloudfront.debian.net 
• However, Debian HTTP 
servers don’t put any 
cache advisory headers 
on how long objects 
(files) may be cached 
for; some of these are 
quite volatile, and some 
are very stable 
edge location 
edge location 
edge location 
traditional server
Cloudfront.debian.net 
• Luickly, Cloudfront 
supports “Cache 
behaviours”, mapping 
different URL paths to 
alternate origin servers 
edge location 
edge location 
edge location 
traditional server
Cloudfront.debian.net 
• Default: => S3 bucket 
• /debian/ => ftp.us.debian.org 
• /debian/dists => my proxy server edge location 
edge location 
edge location 
bucket 
http://ftp.us.debian.org 
Elastic Load instances 
Balancing
Debian Cloud - building the Debian AMIs
Debian Cloud - building the Debian AMIs
Debian Cloud - building the Debian AMIs
Debian Cloud - building the Debian AMIs
Jessie on Ice 
(ie, Jessie is frozen)
Debian 9: 
Stretch 
Debian 10: Buster 
1.1 (‘96) 
1.2 
1.3 
2 
2.1 
2.2 
3 (2002) 
3.1 
4 
5 
6 
7 
8 (2015)
James Bromberger 
E: jeb@debian.org 
T: @JamesBromberger 
L: https://www.linkedin.com/in/jamesbromberger 
Perth, Australia 
GPG: 4096R/9D85C53C 2011-11-29 
Key fingerprint = 8591 20FE 0D9F A6A5 B054 C775 AEC8 2874 9D85 C53C 
https://github.com/JamesBromberger/bootstrap-vz 
https://wiki.debian.org/Cloud/AmazonEC2Image 
https://aws.amazon.com/marketplace/pp/B00AA27RK4 
https://lists.debian.org/debian-cloud/

Mais conteúdo relacionado

Mais procurados

Oscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCP
Oscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCPOscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCP
Oscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCPThe Linux Foundation
 
Deep Dive on Delivering Amazon EC2 Instance Performance
Deep Dive on Delivering Amazon EC2 Instance PerformanceDeep Dive on Delivering Amazon EC2 Instance Performance
Deep Dive on Delivering Amazon EC2 Instance PerformanceAmazon Web Services
 
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary session
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary sessionLinaro Connect Asia 13 : Citrix - Xen on ARM plenary session
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary sessionThe Linux Foundation
 
Xen, XenServer, and XAPI: What’s the Difference?-XPUS13 Bulpin,Pavlicek
Xen, XenServer, and XAPI: What’s the Difference?-XPUS13 Bulpin,PavlicekXen, XenServer, and XAPI: What’s the Difference?-XPUS13 Bulpin,Pavlicek
Xen, XenServer, and XAPI: What’s the Difference?-XPUS13 Bulpin,PavlicekThe Linux Foundation
 
Creating a gallery image for Azure marketplace
Creating a gallery image for Azure marketplaceCreating a gallery image for Azure marketplace
Creating a gallery image for Azure marketplaceAlexey Bokov
 
S4 xen hypervisor_20080622
S4 xen hypervisor_20080622S4 xen hypervisor_20080622
S4 xen hypervisor_20080622Todd Deshane
 
Leveraging OpenStack Cinder for Peak Application Performance
Leveraging OpenStack Cinder for Peak Application PerformanceLeveraging OpenStack Cinder for Peak Application Performance
Leveraging OpenStack Cinder for Peak Application PerformanceNetApp
 
Windsor: Domain 0 Disaggregation for XenServer and XCP
	Windsor: Domain 0 Disaggregation for XenServer and XCP	Windsor: Domain 0 Disaggregation for XenServer and XCP
Windsor: Domain 0 Disaggregation for XenServer and XCPThe Linux Foundation
 
Gerenciando Nuvens privadas com o Xen Cloud Platform - XCP 1.5
Gerenciando Nuvens privadas com o Xen Cloud Platform - XCP 1.5Gerenciando Nuvens privadas com o Xen Cloud Platform - XCP 1.5
Gerenciando Nuvens privadas com o Xen Cloud Platform - XCP 1.5Lorscheider Santiago
 
Xen Project Hypervisor for the Cloud
Xen Project Hypervisor for the CloudXen Project Hypervisor for the Cloud
Xen Project Hypervisor for the CloudThe Linux Foundation
 
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)The Linux Foundation
 
AWSome Data Protection with Veeam
AWSome Data Protection with VeeamAWSome Data Protection with Veeam
AWSome Data Protection with VeeamAmazon Web Services
 
BACD July 2012 : The Xen Cloud Platform
BACD July 2012 : The Xen Cloud Platform BACD July 2012 : The Xen Cloud Platform
BACD July 2012 : The Xen Cloud Platform The Linux Foundation
 

Mais procurados (20)

Oscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCP
Oscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCPOscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCP
Oscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCP
 
Deep Dive on Delivering Amazon EC2 Instance Performance
Deep Dive on Delivering Amazon EC2 Instance PerformanceDeep Dive on Delivering Amazon EC2 Instance Performance
Deep Dive on Delivering Amazon EC2 Instance Performance
 
Aplura virtualization slides
Aplura virtualization slidesAplura virtualization slides
Aplura virtualization slides
 
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary session
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary sessionLinaro Connect Asia 13 : Citrix - Xen on ARM plenary session
Linaro Connect Asia 13 : Citrix - Xen on ARM plenary session
 
Xen, XenServer, and XAPI: What’s the Difference?-XPUS13 Bulpin,Pavlicek
Xen, XenServer, and XAPI: What’s the Difference?-XPUS13 Bulpin,PavlicekXen, XenServer, and XAPI: What’s the Difference?-XPUS13 Bulpin,Pavlicek
Xen, XenServer, and XAPI: What’s the Difference?-XPUS13 Bulpin,Pavlicek
 
Xen and Apache cloudstack
Xen and Apache cloudstack  Xen and Apache cloudstack
Xen and Apache cloudstack
 
Creating a gallery image for Azure marketplace
Creating a gallery image for Azure marketplaceCreating a gallery image for Azure marketplace
Creating a gallery image for Azure marketplace
 
S4 xen hypervisor_20080622
S4 xen hypervisor_20080622S4 xen hypervisor_20080622
S4 xen hypervisor_20080622
 
Why xen slides
Why xen slidesWhy xen slides
Why xen slides
 
Xen summit amd_2010v3
Xen summit amd_2010v3Xen summit amd_2010v3
Xen summit amd_2010v3
 
Leveraging OpenStack Cinder for Peak Application Performance
Leveraging OpenStack Cinder for Peak Application PerformanceLeveraging OpenStack Cinder for Peak Application Performance
Leveraging OpenStack Cinder for Peak Application Performance
 
Windsor: Domain 0 Disaggregation for XenServer and XCP
	Windsor: Domain 0 Disaggregation for XenServer and XCP	Windsor: Domain 0 Disaggregation for XenServer and XCP
Windsor: Domain 0 Disaggregation for XenServer and XCP
 
Gerenciando Nuvens privadas com o Xen Cloud Platform - XCP 1.5
Gerenciando Nuvens privadas com o Xen Cloud Platform - XCP 1.5Gerenciando Nuvens privadas com o Xen Cloud Platform - XCP 1.5
Gerenciando Nuvens privadas com o Xen Cloud Platform - XCP 1.5
 
Xen Project Hypervisor for the Cloud
Xen Project Hypervisor for the CloudXen Project Hypervisor for the Cloud
Xen Project Hypervisor for the Cloud
 
Deep Dive on Amazon EC2
Deep Dive on Amazon EC2Deep Dive on Amazon EC2
Deep Dive on Amazon EC2
 
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
Xen cloud platform v1.1 (given at Build a Cloud Day in Antwerp)
 
vSphere
vSpherevSphere
vSphere
 
AWSome Data Protection with Veeam
AWSome Data Protection with VeeamAWSome Data Protection with Veeam
AWSome Data Protection with Veeam
 
Xen 4.3 Roadmap
Xen 4.3 RoadmapXen 4.3 Roadmap
Xen 4.3 Roadmap
 
BACD July 2012 : The Xen Cloud Platform
BACD July 2012 : The Xen Cloud Platform BACD July 2012 : The Xen Cloud Platform
BACD July 2012 : The Xen Cloud Platform
 

Destaque

Debian Packaging tutorial
Debian Packaging tutorialDebian Packaging tutorial
Debian Packaging tutorialnussbauml
 
Debian Linux on Zynq (Xilinx ARM-SoC FPGA) Setup Flow (Vivado 2015.4)
Debian Linux on Zynq (Xilinx ARM-SoC FPGA) Setup Flow (Vivado 2015.4)Debian Linux on Zynq (Xilinx ARM-SoC FPGA) Setup Flow (Vivado 2015.4)
Debian Linux on Zynq (Xilinx ARM-SoC FPGA) Setup Flow (Vivado 2015.4)Shinya Takamaeda-Y
 
Connect your Javascript web app to ownCloud over the WebDAV interface
Connect your Javascript web app to ownCloud over the WebDAV interface Connect your Javascript web app to ownCloud over the WebDAV interface
Connect your Javascript web app to ownCloud over the WebDAV interface Ilian Sapundshiev
 
Swift at Scale: The IBM SoftLayer Story
Swift at Scale: The IBM SoftLayer StorySwift at Scale: The IBM SoftLayer Story
Swift at Scale: The IBM SoftLayer StoryBrian Cline
 
Supporting Debian machines for friends and family
Supporting Debian machines for friends and familySupporting Debian machines for friends and family
Supporting Debian machines for friends and familyFrancois Marier
 
Disksim with SSD_extension
Disksim with SSD_extensionDisksim with SSD_extension
Disksim with SSD_extensioncucufrog
 
How to build Debian packages
How to build Debian packages How to build Debian packages
How to build Debian packages Priyank Kapadia
 
PyCoRAM (高位合成友の会@ドワンゴ, 2015年1月16日)
PyCoRAM (高位合成友の会@ドワンゴ, 2015年1月16日)PyCoRAM (高位合成友の会@ドワンゴ, 2015年1月16日)
PyCoRAM (高位合成友の会@ドワンゴ, 2015年1月16日)Shinya Takamaeda-Y
 
password series
password seriespassword series
password seriesAmmar WK
 
Dockerize the World - presentation from Hradec Kralove
Dockerize the World - presentation from Hradec KraloveDockerize the World - presentation from Hradec Kralove
Dockerize the World - presentation from Hradec Kralovedamovsky
 
A CGRA-based Approach for Accelerating Convolutional Neural Networks
A CGRA-based Approachfor Accelerating Convolutional Neural NetworksA CGRA-based Approachfor Accelerating Convolutional Neural Networks
A CGRA-based Approach for Accelerating Convolutional Neural NetworksShinya Takamaeda-Y
 
Exactly, ownCloud, Archivematica, Arkivum
Exactly, ownCloud, Archivematica, ArkivumExactly, ownCloud, Archivematica, Arkivum
Exactly, ownCloud, Archivematica, ArkivumJisc RDM
 
Mastering Network HackingFU - idsecconf2008
Mastering Network HackingFU - idsecconf2008Mastering Network HackingFU - idsecconf2008
Mastering Network HackingFU - idsecconf2008Ammar WK
 
Debian 套件打包教學指南 v0.19 - 繁體中文翻譯
Debian 套件打包教學指南 v0.19 - 繁體中文翻譯Debian 套件打包教學指南 v0.19 - 繁體中文翻譯
Debian 套件打包教學指南 v0.19 - 繁體中文翻譯SZ Lin
 
SR-IOV+KVM on Debian/Stable
SR-IOV+KVM on Debian/StableSR-IOV+KVM on Debian/Stable
SR-IOV+KVM on Debian/Stablejuet-y
 
Pythonによるカスタム可能な高位設計技術 (Design Solution Forum 2016@新横浜)
Pythonによるカスタム可能な高位設計技術 (Design Solution Forum 2016@新横浜)Pythonによるカスタム可能な高位設計技術 (Design Solution Forum 2016@新横浜)
Pythonによるカスタム可能な高位設計技術 (Design Solution Forum 2016@新横浜)Shinya Takamaeda-Y
 
Deep Dive: Maximizing EC2 and EBS Performance
Deep Dive: Maximizing EC2 and EBS PerformanceDeep Dive: Maximizing EC2 and EBS Performance
Deep Dive: Maximizing EC2 and EBS PerformanceAmazon Web Services
 
Embedded Linux/ Debian with ARM64 Platform
Embedded Linux/ Debian with ARM64 PlatformEmbedded Linux/ Debian with ARM64 Platform
Embedded Linux/ Debian with ARM64 PlatformSZ Lin
 

Destaque (20)

Debian Packaging tutorial
Debian Packaging tutorialDebian Packaging tutorial
Debian Packaging tutorial
 
Debian Linux on Zynq (Xilinx ARM-SoC FPGA) Setup Flow (Vivado 2015.4)
Debian Linux on Zynq (Xilinx ARM-SoC FPGA) Setup Flow (Vivado 2015.4)Debian Linux on Zynq (Xilinx ARM-SoC FPGA) Setup Flow (Vivado 2015.4)
Debian Linux on Zynq (Xilinx ARM-SoC FPGA) Setup Flow (Vivado 2015.4)
 
Connect your Javascript web app to ownCloud over the WebDAV interface
Connect your Javascript web app to ownCloud over the WebDAV interface Connect your Javascript web app to ownCloud over the WebDAV interface
Connect your Javascript web app to ownCloud over the WebDAV interface
 
Swift at Scale: The IBM SoftLayer Story
Swift at Scale: The IBM SoftLayer StorySwift at Scale: The IBM SoftLayer Story
Swift at Scale: The IBM SoftLayer Story
 
Supporting Debian machines for friends and family
Supporting Debian machines for friends and familySupporting Debian machines for friends and family
Supporting Debian machines for friends and family
 
Disksim with SSD_extension
Disksim with SSD_extensionDisksim with SSD_extension
Disksim with SSD_extension
 
How to build Debian packages
How to build Debian packages How to build Debian packages
How to build Debian packages
 
MySQL and SSD
MySQL and SSDMySQL and SSD
MySQL and SSD
 
PyCoRAM (高位合成友の会@ドワンゴ, 2015年1月16日)
PyCoRAM (高位合成友の会@ドワンゴ, 2015年1月16日)PyCoRAM (高位合成友の会@ドワンゴ, 2015年1月16日)
PyCoRAM (高位合成友の会@ドワンゴ, 2015年1月16日)
 
password series
password seriespassword series
password series
 
Dockerize the World - presentation from Hradec Kralove
Dockerize the World - presentation from Hradec KraloveDockerize the World - presentation from Hradec Kralove
Dockerize the World - presentation from Hradec Kralove
 
A CGRA-based Approach for Accelerating Convolutional Neural Networks
A CGRA-based Approachfor Accelerating Convolutional Neural NetworksA CGRA-based Approachfor Accelerating Convolutional Neural Networks
A CGRA-based Approach for Accelerating Convolutional Neural Networks
 
Exactly, ownCloud, Archivematica, Arkivum
Exactly, ownCloud, Archivematica, ArkivumExactly, ownCloud, Archivematica, Arkivum
Exactly, ownCloud, Archivematica, Arkivum
 
Mastering Network HackingFU - idsecconf2008
Mastering Network HackingFU - idsecconf2008Mastering Network HackingFU - idsecconf2008
Mastering Network HackingFU - idsecconf2008
 
Debian 套件打包教學指南 v0.19 - 繁體中文翻譯
Debian 套件打包教學指南 v0.19 - 繁體中文翻譯Debian 套件打包教學指南 v0.19 - 繁體中文翻譯
Debian 套件打包教學指南 v0.19 - 繁體中文翻譯
 
SR-IOV+KVM on Debian/Stable
SR-IOV+KVM on Debian/StableSR-IOV+KVM on Debian/Stable
SR-IOV+KVM on Debian/Stable
 
Pythonによるカスタム可能な高位設計技術 (Design Solution Forum 2016@新横浜)
Pythonによるカスタム可能な高位設計技術 (Design Solution Forum 2016@新横浜)Pythonによるカスタム可能な高位設計技術 (Design Solution Forum 2016@新横浜)
Pythonによるカスタム可能な高位設計技術 (Design Solution Forum 2016@新横浜)
 
Deep Dive: Maximizing EC2 and EBS Performance
Deep Dive: Maximizing EC2 and EBS PerformanceDeep Dive: Maximizing EC2 and EBS Performance
Deep Dive: Maximizing EC2 and EBS Performance
 
Embedded Linux/ Debian with ARM64 Platform
Embedded Linux/ Debian with ARM64 PlatformEmbedded Linux/ Debian with ARM64 Platform
Embedded Linux/ Debian with ARM64 Platform
 
Solid state drives
Solid state drivesSolid state drives
Solid state drives
 

Semelhante a Debian Cloud - building the Debian AMIs

LocalSocial, Dial2Do and the Cloud
LocalSocial, Dial2Do and the CloudLocalSocial, Dial2Do and the Cloud
LocalSocial, Dial2Do and the CloudSean O'Sullivan
 
Best Practices running SQL Server on AWS
Best Practices running SQL Server on AWSBest Practices running SQL Server on AWS
Best Practices running SQL Server on AWSAmazon Web Services
 
AWS Compute Services
AWS Compute ServicesAWS Compute Services
AWS Compute ServicesSabir Mustafa
 
Running BSD on AWS
Running BSD on AWSRunning BSD on AWS
Running BSD on AWSJulien SIMON
 
Benefity Oracle Cloudu (3/4): Compute
Benefity Oracle Cloudu (3/4): ComputeBenefity Oracle Cloudu (3/4): Compute
Benefity Oracle Cloudu (3/4): ComputeMarketingArrowECS_CZ
 
Design, Deploy, and Optimize SQL Server on AWS - AWS Online Tech Talks
Design, Deploy, and Optimize SQL Server on AWS - AWS Online Tech TalksDesign, Deploy, and Optimize SQL Server on AWS - AWS Online Tech Talks
Design, Deploy, and Optimize SQL Server on AWS - AWS Online Tech TalksAmazon Web Services
 
Understanding Elastic Block Store Availability and Performance
Understanding Elastic Block Store Availability and PerformanceUnderstanding Elastic Block Store Availability and Performance
Understanding Elastic Block Store Availability and PerformanceAmazon Web Services
 
[Harvard CS264] 08a - Cloud Computing, Amazon EC2, MIT StarCluster (Justin Ri...
[Harvard CS264] 08a - Cloud Computing, Amazon EC2, MIT StarCluster (Justin Ri...[Harvard CS264] 08a - Cloud Computing, Amazon EC2, MIT StarCluster (Justin Ri...
[Harvard CS264] 08a - Cloud Computing, Amazon EC2, MIT StarCluster (Justin Ri...npinto
 
Cs264 intro-to-cloud-computing
Cs264 intro-to-cloud-computingCs264 intro-to-cloud-computing
Cs264 intro-to-cloud-computingkartiko edhi
 
Design, Deploy, and Optimize SQL Server on AWS - June 2017 AWS Online Tech Talks
Design, Deploy, and Optimize SQL Server on AWS - June 2017 AWS Online Tech TalksDesign, Deploy, and Optimize SQL Server on AWS - June 2017 AWS Online Tech Talks
Design, Deploy, and Optimize SQL Server on AWS - June 2017 AWS Online Tech TalksAmazon Web Services
 
Oracle Cloud Infrastructure – Compute
Oracle Cloud Infrastructure – ComputeOracle Cloud Infrastructure – Compute
Oracle Cloud Infrastructure – ComputeMarketingArrowECS_CZ
 
Backing up Amazon EC2 with Amazon EBS Snapshots - June 2017 AWS Online Tech T...
Backing up Amazon EC2 with Amazon EBS Snapshots - June 2017 AWS Online Tech T...Backing up Amazon EC2 with Amazon EBS Snapshots - June 2017 AWS Online Tech T...
Backing up Amazon EC2 with Amazon EBS Snapshots - June 2017 AWS Online Tech T...Amazon Web Services
 
MongoDB in the Cloud -- Mongo Boulder
MongoDB in the Cloud -- Mongo BoulderMongoDB in the Cloud -- Mongo Boulder
MongoDB in the Cloud -- Mongo BoulderJustin Smestad
 
AWS Webcast - Webinar Series for State and Local Government #2: Discover the ...
AWS Webcast - Webinar Series for State and Local Government #2: Discover the ...AWS Webcast - Webinar Series for State and Local Government #2: Discover the ...
AWS Webcast - Webinar Series for State and Local Government #2: Discover the ...Amazon Web Services
 
AWS Webcast - AWS Webinar Series for Education #2 - Getting Started with AWS
AWS Webcast - AWS Webinar Series for Education #2 - Getting Started with AWSAWS Webcast - AWS Webinar Series for Education #2 - Getting Started with AWS
AWS Webcast - AWS Webinar Series for Education #2 - Getting Started with AWSAmazon Web Services
 
AWS Webcast - Explore the AWS Cloud
AWS Webcast - Explore the AWS CloudAWS Webcast - Explore the AWS Cloud
AWS Webcast - Explore the AWS CloudAmazon Web Services
 
Case study of amazon EC2 by Akash Badone
Case study of amazon EC2 by Akash BadoneCase study of amazon EC2 by Akash Badone
Case study of amazon EC2 by Akash BadoneAkash Badone
 
Deep Dive: Maximizing Amazon EC2 and Amazon Elastic Block Store Performance
Deep Dive: Maximizing Amazon EC2 and Amazon Elastic Block Store PerformanceDeep Dive: Maximizing Amazon EC2 and Amazon Elastic Block Store Performance
Deep Dive: Maximizing Amazon EC2 and Amazon Elastic Block Store PerformanceAmazon Web Services
 

Semelhante a Debian Cloud - building the Debian AMIs (20)

LocalSocial, Dial2Do and the Cloud
LocalSocial, Dial2Do and the CloudLocalSocial, Dial2Do and the Cloud
LocalSocial, Dial2Do and the Cloud
 
(STG402) Amazon EBS Deep Dive
(STG402) Amazon EBS Deep Dive(STG402) Amazon EBS Deep Dive
(STG402) Amazon EBS Deep Dive
 
Best Practices running SQL Server on AWS
Best Practices running SQL Server on AWSBest Practices running SQL Server on AWS
Best Practices running SQL Server on AWS
 
AWS Compute Services
AWS Compute ServicesAWS Compute Services
AWS Compute Services
 
Running BSD on AWS
Running BSD on AWSRunning BSD on AWS
Running BSD on AWS
 
Benefity Oracle Cloudu (3/4): Compute
Benefity Oracle Cloudu (3/4): ComputeBenefity Oracle Cloudu (3/4): Compute
Benefity Oracle Cloudu (3/4): Compute
 
Design, Deploy, and Optimize SQL Server on AWS - AWS Online Tech Talks
Design, Deploy, and Optimize SQL Server on AWS - AWS Online Tech TalksDesign, Deploy, and Optimize SQL Server on AWS - AWS Online Tech Talks
Design, Deploy, and Optimize SQL Server on AWS - AWS Online Tech Talks
 
Understanding Elastic Block Store Availability and Performance
Understanding Elastic Block Store Availability and PerformanceUnderstanding Elastic Block Store Availability and Performance
Understanding Elastic Block Store Availability and Performance
 
[Harvard CS264] 08a - Cloud Computing, Amazon EC2, MIT StarCluster (Justin Ri...
[Harvard CS264] 08a - Cloud Computing, Amazon EC2, MIT StarCluster (Justin Ri...[Harvard CS264] 08a - Cloud Computing, Amazon EC2, MIT StarCluster (Justin Ri...
[Harvard CS264] 08a - Cloud Computing, Amazon EC2, MIT StarCluster (Justin Ri...
 
Cs264 intro-to-cloud-computing
Cs264 intro-to-cloud-computingCs264 intro-to-cloud-computing
Cs264 intro-to-cloud-computing
 
Design, Deploy, and Optimize SQL Server on AWS - June 2017 AWS Online Tech Talks
Design, Deploy, and Optimize SQL Server on AWS - June 2017 AWS Online Tech TalksDesign, Deploy, and Optimize SQL Server on AWS - June 2017 AWS Online Tech Talks
Design, Deploy, and Optimize SQL Server on AWS - June 2017 AWS Online Tech Talks
 
Oracle Cloud Infrastructure – Compute
Oracle Cloud Infrastructure – ComputeOracle Cloud Infrastructure – Compute
Oracle Cloud Infrastructure – Compute
 
Backing up Amazon EC2 with Amazon EBS Snapshots - June 2017 AWS Online Tech T...
Backing up Amazon EC2 with Amazon EBS Snapshots - June 2017 AWS Online Tech T...Backing up Amazon EC2 with Amazon EBS Snapshots - June 2017 AWS Online Tech T...
Backing up Amazon EC2 with Amazon EBS Snapshots - June 2017 AWS Online Tech T...
 
MongoDB in the Cloud -- Mongo Boulder
MongoDB in the Cloud -- Mongo BoulderMongoDB in the Cloud -- Mongo Boulder
MongoDB in the Cloud -- Mongo Boulder
 
AWS Webcast - Webinar Series for State and Local Government #2: Discover the ...
AWS Webcast - Webinar Series for State and Local Government #2: Discover the ...AWS Webcast - Webinar Series for State and Local Government #2: Discover the ...
AWS Webcast - Webinar Series for State and Local Government #2: Discover the ...
 
AWS Webcast - AWS Webinar Series for Education #2 - Getting Started with AWS
AWS Webcast - AWS Webinar Series for Education #2 - Getting Started with AWSAWS Webcast - AWS Webinar Series for Education #2 - Getting Started with AWS
AWS Webcast - AWS Webinar Series for Education #2 - Getting Started with AWS
 
AWS Webcast - Explore the AWS Cloud
AWS Webcast - Explore the AWS CloudAWS Webcast - Explore the AWS Cloud
AWS Webcast - Explore the AWS Cloud
 
Aws Elastic Block Storage
Aws Elastic Block StorageAws Elastic Block Storage
Aws Elastic Block Storage
 
Case study of amazon EC2 by Akash Badone
Case study of amazon EC2 by Akash BadoneCase study of amazon EC2 by Akash Badone
Case study of amazon EC2 by Akash Badone
 
Deep Dive: Maximizing Amazon EC2 and Amazon Elastic Block Store Performance
Deep Dive: Maximizing Amazon EC2 and Amazon Elastic Block Store PerformanceDeep Dive: Maximizing Amazon EC2 and Amazon Elastic Block Store Performance
Deep Dive: Maximizing Amazon EC2 and Amazon Elastic Block Store Performance
 

Mais de James Bromberger

AWS User Group - Perth - April 2021 - DNS
AWS User Group - Perth - April 2021 - DNSAWS User Group - Perth - April 2021 - DNS
AWS User Group - Perth - April 2021 - DNSJames Bromberger
 
Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the...
Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the...Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the...
Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the...James Bromberger
 
Linux confau 2019: Web Security 2019
Linux confau 2019: Web Security 2019Linux confau 2019: Web Security 2019
Linux confau 2019: Web Security 2019James Bromberger
 
AISA 2018 Perth Conference: State Of Web Wecurity In 2018
AISA 2018 Perth Conference: State Of Web Wecurity In 2018AISA 2018 Perth Conference: State Of Web Wecurity In 2018
AISA 2018 Perth Conference: State Of Web Wecurity In 2018James Bromberger
 
Recent AWS Security Improvements - AWS User Group Perth - November 2018
Recent AWS Security Improvements - AWS User Group Perth - November 2018Recent AWS Security Improvements - AWS User Group Perth - November 2018
Recent AWS Security Improvements - AWS User Group Perth - November 2018James Bromberger
 
AWS Cost Optimisation - November 2018
AWS Cost Optimisation - November 2018AWS Cost Optimisation - November 2018
AWS Cost Optimisation - November 2018James Bromberger
 

Mais de James Bromberger (6)

AWS User Group - Perth - April 2021 - DNS
AWS User Group - Perth - April 2021 - DNSAWS User Group - Perth - April 2021 - DNS
AWS User Group - Perth - April 2021 - DNS
 
Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the...
Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the...Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the...
Modis : AISA Perth Breakfast March 26 2019: Cloud Migrations Lessons from the...
 
Linux confau 2019: Web Security 2019
Linux confau 2019: Web Security 2019Linux confau 2019: Web Security 2019
Linux confau 2019: Web Security 2019
 
AISA 2018 Perth Conference: State Of Web Wecurity In 2018
AISA 2018 Perth Conference: State Of Web Wecurity In 2018AISA 2018 Perth Conference: State Of Web Wecurity In 2018
AISA 2018 Perth Conference: State Of Web Wecurity In 2018
 
Recent AWS Security Improvements - AWS User Group Perth - November 2018
Recent AWS Security Improvements - AWS User Group Perth - November 2018Recent AWS Security Improvements - AWS User Group Perth - November 2018
Recent AWS Security Improvements - AWS User Group Perth - November 2018
 
AWS Cost Optimisation - November 2018
AWS Cost Optimisation - November 2018AWS Cost Optimisation - November 2018
AWS Cost Optimisation - November 2018
 

Último

ERP For Electrical and Electronics manufecturing.pptx
ERP For Electrical and Electronics manufecturing.pptxERP For Electrical and Electronics manufecturing.pptx
ERP For Electrical and Electronics manufecturing.pptxAutus Cyber Tech
 
OpenChain Webinar: Universal CVSS Calculator
OpenChain Webinar: Universal CVSS CalculatorOpenChain Webinar: Universal CVSS Calculator
OpenChain Webinar: Universal CVSS CalculatorShane Coughlan
 
Generative AI for Cybersecurity - EC-Council
Generative AI for Cybersecurity - EC-CouncilGenerative AI for Cybersecurity - EC-Council
Generative AI for Cybersecurity - EC-CouncilVICTOR MAESTRE RAMIREZ
 
Kawika Technologies pvt ltd Software Development Company in Trivandrum
Kawika Technologies pvt ltd Software Development Company in TrivandrumKawika Technologies pvt ltd Software Development Company in Trivandrum
Kawika Technologies pvt ltd Software Development Company in TrivandrumKawika Technologies
 
Introduction-to-Software-Development-Outsourcing.pptx
Introduction-to-Software-Development-Outsourcing.pptxIntroduction-to-Software-Development-Outsourcing.pptx
Introduction-to-Software-Development-Outsourcing.pptxIntelliSource Technologies
 
Cybersecurity Challenges with Generative AI - for Good and Bad
Cybersecurity Challenges with Generative AI - for Good and BadCybersecurity Challenges with Generative AI - for Good and Bad
Cybersecurity Challenges with Generative AI - for Good and BadIvo Andreev
 
How Does the Epitome of Spyware Differ from Other Malicious Software?
How Does the Epitome of Spyware Differ from Other Malicious Software?How Does the Epitome of Spyware Differ from Other Malicious Software?
How Does the Epitome of Spyware Differ from Other Malicious Software?AmeliaSmith90
 
Leveraging DxSherpa's Generative AI Services to Unlock Human-Machine Harmony
Leveraging DxSherpa's Generative AI Services to Unlock Human-Machine HarmonyLeveraging DxSherpa's Generative AI Services to Unlock Human-Machine Harmony
Leveraging DxSherpa's Generative AI Services to Unlock Human-Machine Harmonyelliciumsolutionspun
 
JS-Experts - Cybersecurity for Generative AI
JS-Experts - Cybersecurity for Generative AIJS-Experts - Cybersecurity for Generative AI
JS-Experts - Cybersecurity for Generative AIIvo Andreev
 
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...OnePlan Solutions
 
online pdf editor software solutions.pdf
online pdf editor software solutions.pdfonline pdf editor software solutions.pdf
online pdf editor software solutions.pdfMeon Technology
 
Deep Learning for Images with PyTorch - Datacamp
Deep Learning for Images with PyTorch - DatacampDeep Learning for Images with PyTorch - Datacamp
Deep Learning for Images with PyTorch - DatacampVICTOR MAESTRE RAMIREZ
 
Why Choose Brain Inventory For Ecommerce Development.pdf
Why Choose Brain Inventory For Ecommerce Development.pdfWhy Choose Brain Inventory For Ecommerce Development.pdf
Why Choose Brain Inventory For Ecommerce Development.pdfBrain Inventory
 
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdf
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdfARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdf
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdfTobias Schneck
 
Streamlining Your Application Builds with Cloud Native Buildpacks
Streamlining Your Application Builds  with Cloud Native BuildpacksStreamlining Your Application Builds  with Cloud Native Buildpacks
Streamlining Your Application Builds with Cloud Native BuildpacksVish Abrams
 
IA Generativa y Grafos de Neo4j: RAG time
IA Generativa y Grafos de Neo4j: RAG timeIA Generativa y Grafos de Neo4j: RAG time
IA Generativa y Grafos de Neo4j: RAG timeNeo4j
 
AI Embracing Every Shade of Human Beauty
AI Embracing Every Shade of Human BeautyAI Embracing Every Shade of Human Beauty
AI Embracing Every Shade of Human BeautyRaymond Okyere-Forson
 
Your Vision, Our Expertise: TECUNIQUE's Tailored Software Teams
Your Vision, Our Expertise: TECUNIQUE's Tailored Software TeamsYour Vision, Our Expertise: TECUNIQUE's Tailored Software Teams
Your Vision, Our Expertise: TECUNIQUE's Tailored Software TeamsJaydeep Chhasatia
 
Fields in Java and Kotlin and what to expect.pptx
Fields in Java and Kotlin and what to expect.pptxFields in Java and Kotlin and what to expect.pptx
Fields in Java and Kotlin and what to expect.pptxJoão Esperancinha
 
eAuditor Audits & Inspections - conduct field inspections
eAuditor Audits & Inspections - conduct field inspectionseAuditor Audits & Inspections - conduct field inspections
eAuditor Audits & Inspections - conduct field inspectionsNirav Modi
 

Último (20)

ERP For Electrical and Electronics manufecturing.pptx
ERP For Electrical and Electronics manufecturing.pptxERP For Electrical and Electronics manufecturing.pptx
ERP For Electrical and Electronics manufecturing.pptx
 
OpenChain Webinar: Universal CVSS Calculator
OpenChain Webinar: Universal CVSS CalculatorOpenChain Webinar: Universal CVSS Calculator
OpenChain Webinar: Universal CVSS Calculator
 
Generative AI for Cybersecurity - EC-Council
Generative AI for Cybersecurity - EC-CouncilGenerative AI for Cybersecurity - EC-Council
Generative AI for Cybersecurity - EC-Council
 
Kawika Technologies pvt ltd Software Development Company in Trivandrum
Kawika Technologies pvt ltd Software Development Company in TrivandrumKawika Technologies pvt ltd Software Development Company in Trivandrum
Kawika Technologies pvt ltd Software Development Company in Trivandrum
 
Introduction-to-Software-Development-Outsourcing.pptx
Introduction-to-Software-Development-Outsourcing.pptxIntroduction-to-Software-Development-Outsourcing.pptx
Introduction-to-Software-Development-Outsourcing.pptx
 
Cybersecurity Challenges with Generative AI - for Good and Bad
Cybersecurity Challenges with Generative AI - for Good and BadCybersecurity Challenges with Generative AI - for Good and Bad
Cybersecurity Challenges with Generative AI - for Good and Bad
 
How Does the Epitome of Spyware Differ from Other Malicious Software?
How Does the Epitome of Spyware Differ from Other Malicious Software?How Does the Epitome of Spyware Differ from Other Malicious Software?
How Does the Epitome of Spyware Differ from Other Malicious Software?
 
Leveraging DxSherpa's Generative AI Services to Unlock Human-Machine Harmony
Leveraging DxSherpa's Generative AI Services to Unlock Human-Machine HarmonyLeveraging DxSherpa's Generative AI Services to Unlock Human-Machine Harmony
Leveraging DxSherpa's Generative AI Services to Unlock Human-Machine Harmony
 
JS-Experts - Cybersecurity for Generative AI
JS-Experts - Cybersecurity for Generative AIJS-Experts - Cybersecurity for Generative AI
JS-Experts - Cybersecurity for Generative AI
 
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...
 
online pdf editor software solutions.pdf
online pdf editor software solutions.pdfonline pdf editor software solutions.pdf
online pdf editor software solutions.pdf
 
Deep Learning for Images with PyTorch - Datacamp
Deep Learning for Images with PyTorch - DatacampDeep Learning for Images with PyTorch - Datacamp
Deep Learning for Images with PyTorch - Datacamp
 
Why Choose Brain Inventory For Ecommerce Development.pdf
Why Choose Brain Inventory For Ecommerce Development.pdfWhy Choose Brain Inventory For Ecommerce Development.pdf
Why Choose Brain Inventory For Ecommerce Development.pdf
 
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdf
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdfARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdf
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdf
 
Streamlining Your Application Builds with Cloud Native Buildpacks
Streamlining Your Application Builds  with Cloud Native BuildpacksStreamlining Your Application Builds  with Cloud Native Buildpacks
Streamlining Your Application Builds with Cloud Native Buildpacks
 
IA Generativa y Grafos de Neo4j: RAG time
IA Generativa y Grafos de Neo4j: RAG timeIA Generativa y Grafos de Neo4j: RAG time
IA Generativa y Grafos de Neo4j: RAG time
 
AI Embracing Every Shade of Human Beauty
AI Embracing Every Shade of Human BeautyAI Embracing Every Shade of Human Beauty
AI Embracing Every Shade of Human Beauty
 
Your Vision, Our Expertise: TECUNIQUE's Tailored Software Teams
Your Vision, Our Expertise: TECUNIQUE's Tailored Software TeamsYour Vision, Our Expertise: TECUNIQUE's Tailored Software Teams
Your Vision, Our Expertise: TECUNIQUE's Tailored Software Teams
 
Fields in Java and Kotlin and what to expect.pptx
Fields in Java and Kotlin and what to expect.pptxFields in Java and Kotlin and what to expect.pptx
Fields in Java and Kotlin and what to expect.pptx
 
eAuditor Audits & Inspections - conduct field inspections
eAuditor Audits & Inspections - conduct field inspectionseAuditor Audits & Inspections - conduct field inspections
eAuditor Audits & Inspections - conduct field inspections
 

Debian Cloud - building the Debian AMIs

  • 1. Debian-Cloud: EC2 AMIs James Bromberger <jeb@debian.org>
  • 2. Agenda • What is Debian • What is AWS EC2 • A meander through block storage for EC2 instances • Types of images • Generating & distributing Debian’s AMIs • Debuab Image lifecycle and security • If there is time: Debian via Cloudfront CDN
  • 4. What is Debian • Computer Operating System – 14 CPU/kernel architectures – 37,500 packages of software – Translated into a bunch of languages
  • 5. What is Debian • Primarily of free and open-source software – GNU General Public License and many other licenses
  • 6. What is Debian • Started 1993 – 21 years old now • Democratic, volunteer organisation - ~1,000 people (please join!) – Zero payed employees
  • 8. What is AWS and EC2 • AWS = Amazon Web Services • EC2 = Elastic Compute Cloud – Virtual servers running Linux, Windows, BSD • Started 2006 • Now with 11 Regions and 52 Edge Locations • Compute, storage, platform, infrastructure – as-a-service – typically billed by the hour or by the month Amazon EC2
  • 9. What is EC2 • Compute requires: – CPU, Memory (RAM) – Block Storage (disk) – Network – Automation & bootstrapping – Self-service instance Amazon EBS Amazon VPC
  • 10. What is EC2 • Amount of CPU & Memory is combined into “instance type”: – Small – Medium – Large – ... instance instance instance
  • 11. What is EC2 • Several instance types are grouped into an “instance family”: – General Purpose (balanced memory:cpu) – Memory Optimised (more memory:cpu) – CPU Optimised (more cpu:memory) – Storage Optimised (more ‘ephemerial’ storage) – GPU (CUDA, OpenCL) – Cluster Nodes (10 GB/sec networking and more)
  • 12. What is EC2 • EC2 instance run on real servers! instance instance instance instance Total number of (hyperthread) CPU cores, each dedicated* to an instance Disk inside the physical server is deemed ‘ephemeral’. Not raid, but is local to CPU and Memory. Different amounts of storage depending on instance type RAM is dedicated to each instance Each instance can send a certain number of packets per second
  • 13. A MEANDER THROUGH STORAGE
  • 14. Ephemeral (instance) Storage instance instance instance instance
  • 15. Persistent (EBS) Storage instance instance instance instance Amazon EBS
  • 16. Persistent (EBS) Storage instance instance instance instance Amazon EBS
  • 17. Persistent (EBS) Storage Amazon EBS Mechanical disk General Purpose SSD (GP2) Provisioned IOPS (SSD) Amazon S3
  • 18. Persistent (EBS) Storage Amazon EBS Mechanical disk General Purpose SSD (GP2) Provisioned IOPS (SSD) Amazon S3 AFR of a typical standard HDD Designed for 99.999% availability (5.26 min/yr) Single instance attach only (currently) 1GB..1TB (currently) Your choice of file-system Optional transparent encryption by AWS Network attached to your instance back in the EC2 environment 99.999999999% durability Replicated multiple times within the same Region Check-summed and re-check- summed periodically Designed for 99.99% availability (SLA at 99.9%) Can be shared with other customers (specific, or all) unless AWS-encrypted Can be used to create a new EBS volume EBS snapshots cannot be seen in your S3 buckets
  • 19. Persistent (EBS) Storage Amazon EBS Mechanical disk General Purpose SSD (GP2) Provisioned IOPS (SSD) Amazon S3 AFR of a typical standard HDD Designed for 99.999% availability (5.26 min/yr) Single instance attach only (currently) 1GB..1TB (currently) Your choice of file-system Optional transparent encryption by AWS Network attached to your instance back in the EC2 environment 99.999999999% durability Replicated multiple times within the same Region Check-summed and re-check- summed periodically Designed for 99.99% availability (SLA at 99.9%) Can be shared with other customers (specific, or all) unless AWS-encrypted Can be used to create a new EBS volume EBS snapshots cannot be seen in your S3 buckets
  • 20. Persistent (EBS) Storage instance instance instance instance Amazon EBS
  • 21. Instance stop w/EBS instance instance instance Amazon EBS
  • 22. Instance restart w/EBS instance instance instance Amazon EBS instance instance instance instance EBS volume(s) reattached, ephemeral volume(s) blank
  • 24. Amazon Machine Images • AMI is “golden master” • Start as many instances as you like* AMI instance instance instance instance instance instance
  • 25. Ephemeral and EBS • Why is the Ephemeral and EBS storage options important in AMIs? Your root volume / -> persistent (EBS) / -> transitory (Ephemeral)
  • 26. Ephemeral and EBS • Why is the Ephemeral and EBS storage options important in AMIs? Your root volume 1,000 systems for 24 hours, 8 GB EBS each in SYD: ~$30.85
  • 27. Ephemeral and EBS • Why is the Ephemeral and EBS storage options important in AMIs? Your root volume 1,000 systems for 24 hours, Ephemeral in SYD: $0
  • 28. Ephemeral and EBS • Why is the Ephemeral and EBS storage options important in AMIs? Amazon S3 S3 backed AMI snapshot EBS backed AMI
  • 29. CPU Architectures • EC2 currently supports 2 architectures: EBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMI
  • 30. Virtualisation Types • EC2 uses (highly customised) Xen, and supports two virtualisation types: Para- Virtualization (threads) Hardware Virtualization (emulation) EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI
  • 31. Each Region is independent Para- Virtualization (threads) Hardware Virtualization (emulation) EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI EBS backed AMI S3 backed AMIEBS backed AMI S3 backed AMI AP... US West 1 US East 1
  • 32. Now multiply that by: • Wheezy • Jessie • Sarge • ...
  • 33. • 2 architectures • 2 virtualisation types • 2 root volume types • 11 Regions • 3 Debian releases = 198 images (Plus images currently being end-of-lifed, experimented with, and used for other purposes)
  • 34. Current Debian AMIs: Squeeze (6) Architecture EBS Backed S3 Backed 32 bit PVM Yes 64 bit PVM Yes 32 bit HVM 64 bit HVM
  • 35. Current Debian AMIs: Wheezy (7) Architecture EBS Backed S3 Backed 32 bit PVM Yes 64 bit PVM Yes Yes 32 bit HVM 64 bit HVM Yes (experimental)
  • 36. Future Debian AMIs: Jessie (8) Architecture EBS Backed S3 Backed 32 bit PVM 64 bit PVM Yes 32 bit HVM 64 bit HVM Yes Yes*
  • 37. Two ways of creating AMIs Start from scratch • Uses a fresh, blank volume, install as a debootstrap Update existing • Start existing instance, customise, create new image
  • 38. EBS Backed AMI overview instance volume / volume /target snapshot EC2 API Endpoint AMI
  • 39. Let’s create a Jessie image • Fire up an existing instance (easiest is to use an existing Debian AMI) • Install git, debootstrap, python-boto, python-jsonschema, and some other python bits – Configure your AWS IAM credentials for boto • Grab bootstrap-vz from Github
  • 40. DEMO
  • 41. Distributing images globally Each region has separate copies of AMIs
  • 42. Distributing images Three “groups” of Regions: • GovCloud • Beijing • Everywhere else*
  • 43. Debian AWS Accounts Region AWS Account ID Beijing 673060587306* Gov Cloud 256493402735** Standard Regions 379101102735
  • 45. Community Shared AMIs • Un-vetted by AWS – Trojan horses – Left over SSH keys in other accounts – Cron jobs that go bump in the night • Anyone can share any AMI under their control (provided they have access within their AWS account to do so – IAM Policy) – Caveat emptor
  • 48. Pushing images to Marketplace Vendor AWS Account ID Vendor Display Name Product ID Version ID ASIN SKU Software by Title Version Title Release Notes Short Description Description Highlight1
  • 51. AMI Lifecycle Our aim is to keep the final point release AMI available for each Debian major release, starting from Squeeze: • 6.0.10 • 7.7
  • 52. AMI Lifecycle Wheezy 7.4 Wheezy 7.5 Try to keep a 2 – 5 week overlap for point releases, then un-share Wheezy 7.6 for a period, Wheezy 7.6.aws. 1 Wheezy 7.6.aws.2 Wheezy 7.7 then delete Time Occasionally security releases that are urgent in BASE images (AMIs) force additional version numbers out of step with Debian. This was shellshock,
  • 53. Security in base images • EC2 instances may be deployed such that they don’t have direct access to fetch updates • Administrators may chose not to install updates unattended
  • 54. Debian AMIs in US East 1
  • 55. Workflow overview 1. Generate AMIs in US East 1 2. Tag AMIs and Snapshot 3. Test image in US East 1 4. Copy to all Standard Regions (python script) 5. Mark AMI and Snapshot as Public (python script) 6. Generate in Beijing and Gov Cloud, tag, mark public 7. Generate signed message to the Debian-cloud mailing list, update wiki 8. Wait a few days (for bugs to surface), then push to AWS Marketplace 9. Announce deprecation of previous versions (typically 3 – 5 weeks notice) in signed email to Debian-cloud ML 10. After elapsed period, remove public sharing from AMI and Snapshots (python script) 11. A day or so later, deregister the AMI and delete the snapshot (python script)
  • 56. What’s new in Jessie EC2 images • Single Root IO Virtualisation (Enhanced Networking) • Multiple Network Interfaces (ENI) • Multiple sub-interfaces • AWS CLI and python-boto installed in base image • Cloud-init (since Wheezy 7.4)
  • 57. Cloud-init • Insert this as “User Data” • Can be embedded into CloudFormation templates #cloud-config package_update: true package_upgrade: true package_reboot_if_required: true packages: - pwgen - less locale: fr_FR.UTF-8 ssh_authorized_keys: - ssh-rsa AAAAB3Nz....89dGp5 me@mykey1 - ssh-rsa AAAAB3Nz....89dGp5 me@mykey2 final_message: "The system is finally up, after $UPTIME seconds"
  • 59. Debian Archive via CDN • Default apt sources.list for EC2 images uses cloudfront.debian.net • Primarily for EC2 instances, but is active in all 52 Cloudfront locations world-wide CloudFront
  • 60. Cloudfront.debian.net • Each edge location is independent of all others edge location edge location edge location traditional server
  • 61. Cloudfront.debian.net • However, Debian HTTP servers don’t put any cache advisory headers on how long objects (files) may be cached for; some of these are quite volatile, and some are very stable edge location edge location edge location traditional server
  • 62. Cloudfront.debian.net • Luickly, Cloudfront supports “Cache behaviours”, mapping different URL paths to alternate origin servers edge location edge location edge location traditional server
  • 63. Cloudfront.debian.net • Default: => S3 bucket • /debian/ => ftp.us.debian.org • /debian/dists => my proxy server edge location edge location edge location bucket http://ftp.us.debian.org Elastic Load instances Balancing
  • 68. Jessie on Ice (ie, Jessie is frozen)
  • 69. Debian 9: Stretch Debian 10: Buster 1.1 (‘96) 1.2 1.3 2 2.1 2.2 3 (2002) 3.1 4 5 6 7 8 (2015)
  • 70. James Bromberger E: jeb@debian.org T: @JamesBromberger L: https://www.linkedin.com/in/jamesbromberger Perth, Australia GPG: 4096R/9D85C53C 2011-11-29 Key fingerprint = 8591 20FE 0D9F A6A5 B054 C775 AEC8 2874 9D85 C53C https://github.com/JamesBromberger/bootstrap-vz https://wiki.debian.org/Cloud/AmazonEC2Image https://aws.amazon.com/marketplace/pp/B00AA27RK4 https://lists.debian.org/debian-cloud/