DOCSLIB.ORG

Container Technologies on IBM Z and Linuxone and Their Orchestration

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Container Technologies on IBM Z and Linuxone and Their Orchestration Container technologies on IBM Z and LinuxONE and their Orchestration Wilhelm Mild IBM Executive IT Architect for Mobile, IBM Z and Linux IBM R&D Lab, Germany Agenda ➢ Container technologies and Ecosystem ➢ Container Orchestration Kubernetes © Copyright IBM Corporation 2017. Technical University/Symposia materials may not be reproduced in whole or in 2 part without the prior written permission of IBM. 2 IBM Z Virtualization options and Container Server virtualization. There are typically Application isolation. There are typically dozens or hundreds of Linux servers in a thousands Containers in Linux on IBM Z. LPAR virtualized using z/VM or KVM. IBM Z Linux Linux SSC Linux Linux 2 Linux Virtual Secure Linux Linux CPUs z/OS or Linux ServiceLinux (cores) z/TPF or Container KVM Linux z/VM zCX Linux (SSC) z/VSE or Virtual CPUs Server Linux (cores) virtualization KVM z/VM LPAR LPAR1 LPAR2 LPAR3 LPAR4 virtualization Logical (PR/SM or DPM) CPUs (cores) Real P1 P2 P3 P5 P6 P7 P8 P4 CPUs* (cores) P1 – P8 are Central Processor Units (CPU -> core) or Integrated Facility for Linux (IFL) Processors (IFL -> core) * - One shared Pool of cores per System only 3 Note: - LPARs can be managed by traditional PR/SM 2020 IBM Corporation Linux Containers - based on control groups and namespaces for isolation The goal was to offer a Linux distro and vendor neutral environment for the development of Linux container technologies. ⚫ To simplify: − “cgroups” will allocate & control resources in your container ⚫ CPU ⚫ Memory Container 1 Container 2 ⚫ Disk I/O throughput Kernel Kernel Namespaces Namespaces − “namespace” will isolate App App ⚫ process IDs ⚫ Hostnames cgroups cgroups ⚫ User IDs App App App ⚫ network access Kernel ⚫ interprocess communication ⚫ filesystems Linux Guest © Copyright IBM Corporation 2017. Technical University/Symposia materials may not be reproduced in whole or in 4 part without the prior written permission of IBM. Linux Containers vs. virtual server Virtualization, usually provides a high level of isolation and security as all communication between the guest and host is through the hypervisor. ➢ It is usually slower and incurs some overhead due to the infrastructure emulation. Containers, reduce the virtualization overhead, the level of virtualization called "container virtualization" was introduced which allows to run multiple isolated user space instances on the same kernel. ➢ Container is a layered approach and uses copy-on-write filesystems Container 1 Container 2 ADD APACHE ADD MySQL ADD VIM - Image ADD VIM - Image SUSE - Base Image UBI – Base Image Kernel © Copyright IBM Corporation 2017. Technical University/Symposia materials may not be reproduced in whole or in 5 part without the prior written permission of IBM. Docker and Containers In 2014, Docker teamed with Canonical, Google, Red Hat, and Parallels to create a standardized open-source program libcontainer that allows containers to work within Linux namespaces and control groups (cgroups) without needing administrator access. Docker is one implementation of Linux containers and their management with the goal to: ➢ Open, portable, light-weight run-time and packaging tool ➢ Easy build and ship complex application, without worrying about infrastructure differences or interference from other software stacks ➢ Quickly and reliably deploy and run applications on many infrastructures ➢ Essential for horizontally scaling apps in the cloud © Copyright IBM Corporation 2017. Technical University/Symposia materials may not be reproduced in whole or in 6 part without the prior written permission of IBM. IBM Secure Service Container (SSC) – Hyper Protect services everywhere • SSC is a special LPAR and provides simplified mechanism for fast deployment and management of packaged solution • Provides tamper protection during installation and runtime • Ensures confidentiality of data and code -at flight and at rest • Management provided via Remote APIs (RESTful) and web interfaces only Container Environment • Enables containers to be delivered via distribution channels IBM Secure Service Container Application Interfaces Appliance Management Backend Deploy your container workload in a ManagementUI / REST API Base Operating System highly secure environment 7 Enterprise IBM Hyper protect services based on Containers in SSC IBM Cloud Hyper Protect Crypto Services IBM Blockchain Platform Infuse the highest level of security with data Deploy Blockchain on IBM Cloud in a encryption and key management capabilities into Hyper Secure environment on LinuxONE. your apps. http://ibm.biz/hpcrypto https://www.ibm.com/blockchain/platform IBM Cloud Hyper Protect DBaaS Retain your data in a fully encrypted client database without the need for IBM Hyper Protect Virtual Servers specialized skills. Create Linux VMs with own public ssh http://ibm.biz/hpdbaas key to maintain exclusive access to code and data IBM Db2® Analytics Accelerator is a high-performance http://ibm.biz/hpvserv component tightly integrated with Db2 for z/OS® for high-speed processing for complex Db2 queries and analytic workloads. https://www.ibm.com/products/db2-analytics-accelerator IBM Secure Service Container for ICP Deploy Kubernetes workloads on a highly Hyper secure services are based on IBM secure platform built for confidential computing. Secure Service Containers, https://www.ibm.com/support/knowledgecenter/SSUPZ7 a special type of Hyper protect LPAR in IBM Z. https://www.ibm.com/cloud/hyper-protect-services IBM Cloud Hyper Protect Virtual Servers ssh ssh ssh − Rapidly provision a Virtual Server running on LinuxONE in the IBM Cloud − Authentication is done via ssh keys → No password is exposed to IBM VS 1 VS 2 VS n − Our system administrators do not have access to the data within the Virtual Servers and the hosting OS Virtual Server Host/Management System − Ubuntu Operating System − Built on IBM Secure Service Container to enforce confidentiality Application Interfaces − Available now Management Backend Base Operating System Management Management UI / REST API https://www.ibm.com/cloud/virtual-servers IBM Cloud Hyper Protect Virtual Servers (HPVS) https://www.ibm.com/cloud/virtual-servers Application isolation is long tradition in IBM Z z/OS and Linux virtualization Docker Container deployment in Linux Container Container Container Container Container App Space Space Space Space Space App1 Space App1 Space App1 Space 4 App2 App2 App3 Addr Addr Addr Addr Addr App1’ Addr App2 Addr Addr Bins/Libs Bins/Libs Bins/Libs Bins/Libs Bins/Libs MQ1 MQ1 MQ2 MQ2 MQ2 MQ2 App2’ Batch MQ1 MQ1 Batch DB2 DB2 App3 DB2 DB2 z/OS z/OS Extension Container DockerContainer Engine Container Engine z/OS z/OS Linux1 Linux2 environmentLinux Guest 1 Linux guest 2 z/OS Hypervisor Hypervisor LPAR LPAR IBM z System Infrastructure IBM z System Infrastructure Virtualization: Containers: ➢ Infrastructure oriented ➢ Service oriented ➢ Virtual server resource management ➢ Application management via container ➢ Several applications per server ➢ Solution decomposed into several units ➢ Isolation per virtual server ➢ Dynamic, isolation in container © Copyright IBM Corporation 2017. Technical University/Symposia materials may not be reproduced in whole or in 11 part without the prior written permission of IBM. New Container in IBM z/OS Version 2 Release 4 ➢ z/OS V2.4 introduced IBM z/OS Container Extensions, ➢ execute Linux® on IBM Z Docker container in z/OS, alongside existing z/OS applications and data. ➢ z/OS Container Extensions: ➢ enable application developers to develop and data centers to operate popular open source packages, Linux applications, IBM software, and third-party software together with z/OS applications and data-leveraging industry standard skills. ➢ Enables the capability to integrate z/OS more easily into private and multicloud environments ➢ with improvements to deliver a more robust and highly available IBM Cloud™ Provisioning and Management for z/OS and cloud storage access for z/OS data https://www-01.ibm.com/common/ssi/cgi-bin/ssialias?subtype=ca&infotype=an&supplier=897&letternum=ENUS219-344 © Copyright IBM Corporation 2017. Technical University/Symposia materials may not be reproduced in whole or in 12 part without the prior written permission of IBM. z/OS Container Extensions– A turn-key Virtual Docker Server New Pre-packaged Docker Environment provided by IBM • Includes Linux and Docker Engine components z/OS • Supported directly by IBM zCX Virtual Docker Address Space • Can include clustering and registry capabilities Regular z/OS Address Spaces • Initial focus is on base Docker capabilities Linux Linux Linux Container Container Container • Competitive price/performance (Exploits zIIPs) ….. Application developers can deploy software using Linux Docker interface software Standard • Any software available as a Docker image (s390x) - Linux Docker Engine Docker growing ecosystem available on Docker Hub APIs • Any home-grown Linux on Z container images z/OS Linux Kernel • Using standard Docker interfaces software Limited visibility into Linux environment • No root access TCP/IP • Access as defined by Docker interfaces • Limited Linux administrative overhead • Secure virtual network - SAMEHOST Also provides IBM and ISVs a means of delivering solutions into this environment Docker CLI • Requires packaging of software as Docker images IBM zCX – z/OS Storage Integration z/OS Linux Virtualization Layer: z/OS • Allows virtual access to z/OS Storage, Regular z/OS Address Spaces zCX Virtual Docker Server Address Space Network Linux Linux Linux
Load more

Recommended publications
  • Industrial Control Via Application Containers: Migrating from Bare-Metal to IAAS
    Industrial Control via Application Containers: Migrating from Bare-Metal to IAAS Florian Hofer, Student Member, IEEE Martin A. Sehr Antonio Iannopollo, Member, IEEE Faculty of Computer Science Corporate Technology EECS Department Free University of Bolzano-Bozen Siemens Corporation University of California Bolzano, Italy Berkeley, CA 94704, USA Berkeley, CA 94720, USA fl[email protected] [email protected] [email protected] Ines Ugalde Alberto Sangiovanni-Vincentelli, Fellow, IEEE Barbara Russo Corporate Technology EECS Department Faculty of Computer Science Siemens Corporation University of California Free University of Bolzano-Bozen Berkeley, CA 94704, USA Berkeley, CA 94720, USA Bolzano, Italy [email protected] [email protected] [email protected] Abstract—We explore the challenges and opportunities of control design full authority over the environment in which shifting industrial control software from dedicated hardware to its software will run, it is not straightforward to determine bare-metal servers or cloud computing platforms using off the under what conditions the software can be executed on cloud shelf technologies. In particular, we demonstrate that executing time-critical applications on cloud platforms is viable based on computing platforms due to resource virtualization. Yet, we a series of dedicated latency tests targeting relevant real-time believe that the principles of Industry 4.0 present a unique configurations. opportunity to explore complementing traditional automation Index Terms—Industrial Control Systems, Real-Time, IAAS, components with a novel control architecture [3]. Containers, Determinism We believe that modern virtualization techniques such as application containerization [3]–[5] are essential for adequate I. INTRODUCTION utilization of cloud computing resources in industrial con- Emerging technologies such as the Internet of Things and trol systems.
    [Show full text]
  • Kubernetes Security Guide Contents
    Kubernetes Security Guide Contents Intro 4 CHAPTER 1 Securing your container images and CI/CD pipeline 6 Image scanning 6 What is image scanning 7 Docker image scanning open source tools 7 Open source Docker scanning tool: Anchore Engine 8 Securing your CI/CD pipeline 9 Image scanning in CI/CD 10 CHAPTER 2 Securing Kubernetes Control Plane 14 Kubelet security 14 Access to the kubelet API 15 Kubelet access to Kubernetes API 16 RBAC example, accessing the kubelet API with curl 16 Kubernetes API audit and security log 17 Audit log policies configuration 19 Extending the Kubernetes API using security admission controllers 20 Securing Kubernetes etcd 23 PKI-based authentication for etcd 23 etcd peer-to-peer TLS 23 Kubernetes API to etcd cluster TLS 24 Using a trusted Docker registry 24 Kubernetes trusted image collections: Banning non trusted registry 26 Kubernetes TLS certificates rotation and expiration 26 Kubernetes kubelet TLS certificate rotation 27 Kubernetes serviceAccount token rotation 28 Kubernetes user TLS certificate rotation 29 Securing Kubernetes hosts 29 Kubernetes 2 Security Guide Using a minimal host OS 30 Update system patches 30 Node recycling 30 Running CIS benchmark security tests 31 CHAPTER 3 Understanding Kubernetes RBAC 32 Kubernetes role-based access control (RBAC) 32 RBAC configuration: API server flags 34 How to create Kubernetes users and serviceAccounts 34 How to create a Kubernetes serviceAccount step by step 35 How to create a Kubernetes user step by step 37 Using an external user directory 40 CHAPTER 4 Security
    [Show full text]
  • IBM Z Systems Introduction May 2017
    IBM z Systems Introduction May 2017 IBM z13s and IBM z13 Frequently Asked Questions Worldwide ZSQ03076-USEN-15 Table of Contents z13s Hardware .......................................................................................................................................................................... 3 z13 Hardware ........................................................................................................................................................................... 11 Performance ............................................................................................................................................................................ 19 z13 Warranty ............................................................................................................................................................................ 23 Hardware Management Console (HMC) ..................................................................................................................... 24 Power requirements (including High Voltage DC Power option) ..................................................................... 28 Overhead Cabling and Power ..........................................................................................................................................30 z13 Water cooling option .................................................................................................................................................... 31 Secure Service Container .................................................................................................................................................
    [Show full text]
  • Portability: Containers, Cloud
    JEDI Portability Across Platforms Containers, Cloud Computing, and HPC Mark Miesch, Rahul Mahajan, Xin Zhang, David Hahn, Francois Vandenberg, Jim Rosinski, Dan Holdaway, Yannick Tremolet, Maryam Abdioskouei, Steve Herbener, Mark Olah, Benjamin Menetrier, Anna Shlyaeva, Clementine Gas Academy website http://academy.jcsda.org/june2019 ‣ Instructions for accessing AWS ‣ Activity instructions ‣ Presentation slides ‣ Doxygen documentation for fv3-bundle We will add further content throughout the week Outline I) JEDI Portability Overview ✦ Unified vision for software development and distribution II) Container Fundamentals ✦ What are they? How do they work? ✦ Docker, Charliecloud, and Singularity III) Using the JEDI Containers ✦ How they are built and deployed ✦ Mac and Windows (Vagrant) IV) HPC and Cloud Computing ✦ Environment modules ✦ Containers in HPC? V) Summary and Outlook JEDI Software Dependencies ‣ Essential ✦ Compilers, MPI ✦ CMake Common versions among users ✦ SZIP, ZLIB and developers minimize ✦ LAPACK / MKL, Eigen 3 stack-related debugging ✦ NetCDF4, HDF5 ✦ udunits ✦ Boost (headers only) ✦ ecbuild, eckit, fckit ‣ Useful ✦ ODB-API, eccodes ✦ PNETCDF ✦ Parallel IO ✦ nccmp, NCO ✦ Python tools (py-ncepbufr, netcdf4, matplotlib…) ✦ NCEP libs ✦ Debuggers & Profilers (ddt/TotalView, kdbg, valgrind, TAU…) The JEDI Portability Vision I want to run JEDI on… Development ‣ My Laptop/Workstation/PC ✦ We provide software containers ✦ Mac & Windows system need to first establish a linux environment (e.g. a Vagrant/VirtualBox virtual machine) Development
    [Show full text]
  • Running Legacy VM's Along with Containers in Kubernetes!
    Running Legacy VM’s along with containers in Kubernetes Delusion or Reality? Kunal Kushwaha NTT Open Source Software Center Copyright©2019 NTT Corp. All Rights Reserved. About me • Work @ NTT Open Source Software Center • Collaborator (Core developer) for libpod (podman) • Contributor KubeVirt, buildkit and other related projects • Docker Community Leader @ Tokyo Chapter Copyright©2019 NTT Corp. All Rights Reserved. 2 Growth of Containers in Companies Adoption of containers in production has significantly increased Credits: CNCF website Copyright©2019 NTT Corp. All Rights Reserved. 3 Growth of Container Orchestration usage Adoption of container orchestrator like Kubernetes have also increased significantly on public as well private clouds. Credits: CNCF website Copyright©2019 NTT Corp. All Rights Reserved. 4 Infrastructure landscape app-2 app-2 app-M app-1 app-2 app-N app-1 app-1 app-N VM VM VM kernel VM Platform VM Platform Existing Products New Products • The application infrastructure is fragmented as most of old application still running on traditional infrastructure. • Fragmentation means more work & increase in cost Copyright©2019 NTT Corp. All Rights Reserved. 5 What keeps applications away from Containers • Lack of knowledge / Too complex to migrate in containers. • Dependency on custom kernel parameters. • Application designed for a custom kernel. • Application towards the end of life. Companies prefer to re-write application, rather than directly migrating them to containers. https://dzone.com/guides/containers-orchestration-and-beyond Copyright©2019 NTT Corp. All Rights Reserved. 6 Ideal World app-2 app-2 app-M app-1 app-2 app-N app-1 app-1 app-N VM VM VM kernel VM Platform • Applications in VM and containers can be managed with same control plane • Management/ Governance Policies like RBAC, Network etc.
    [Show full text]
  • Introducing Linux on IBM Z Systems IT Simplicity with an Enterprise Grade Linux Platform
    Introducing Linux on IBM z Systems IT simplicity with an enterprise grade Linux platform Wilhelm Mild IBM Executive IT Architect for Mobile, z Systems and Linux © 2016 IBM Corporation IBM Germany What is Linux? . Linux is an operating system – Operating systems are tools which enable computers to function as multi-user, multitasking, and multiprocessing servers. – Linux is typically delivered in a Distribution with many useful tools and Open Source components. Linux is hardware agnostic by design – Linux runs on multiple hardware architectures which means Linux skills are platform independent. Linux is modular and built to coexist with other operating systems – Businesses are using Linux today. More and more businesses proceed with an evolutionary solution strategy based on Linux. 2 © 2016 IBM Corporation What is IBM z Systems ? . IBM z Systems is the family name used by IBM for its mainframe computers – The z Systems families were named for their availability – z stands for zero downtime. The systems are built with spare components capable of hot failovers to ensure continuous operations. IBM z Systems paradigm – The IBM z Systems family maintains full backward compatibility. In effect, current systems are the direct, lineal descendants of System/360, built in 1964, and the System/370 from the 1970s. Many applications written for these systems can still run unmodified on the newest z Systems over five decades later. IBM z Systems variety of Operating Systems – There are different traditional Operating Systems that run on z Systems like z/OS, z/VSE or TPF. With z/VM IBM delivers a mature Hypervisor to virtualize the operating systems.
    [Show full text]
  • Adding Generic Process Containers to the Linux Kernel
    Adding Generic Process Containers to the Linux Kernel Paul B. Menage∗ Google, Inc. [email protected] Abstract Technically resource control and isolation are related; both prevent a process from having unrestricted access to even the standard abstraction of resources provided by the Unix kernel. For the purposes of this paper, we While Linux provides copious monitoring and control use the following defintions: options for individual processes, it has less support for applying the same operations efficiently to related Resource control is any mechanism which can do either groups of processes. This has led to multiple proposals or both of: for subtly different mechanisms for process aggregation for resource control and isolation. Even though some of these efforts could conceptually operate well together, • tracking how much of a resource is being com- merging each of them in their current states would lead sumed by a set of processes to duplication in core kernel data structures/routines. • imposing quantative limits on that consumption, ei- The Containers framework, based on the existing ther absolutely, or just in times of contention. cpusets mechanism, provides the generic process group- ing features required by the various different resource Typically resource control is visible to the processes be- controllers and other process-affecting subsystems. The ing controlled. result is to reduce the code (and kernel impact) required for such subsystems, and provide a common interface Namespace isolation1 is a mechanism which adds an with greater scope for co-operation. additional indirection or translation layer to the nam- ing/visibility of some unix resource space (such as pro- This paper looks at the challenges in meeting the needs cess ids, or network interfaces) for a specific set of pro- of all the stakeholders, which include low overhead, cesses.
    [Show full text]
  • Ovirt and Docker Integration
    oVirt and Docker Integration October 2014 Federico Simoncelli Principal Software Engineer – Red Hat oVirt and Docker Integration, Oct 2014 1 Agenda ● Deploying an Application (Old-Fashion and Docker) ● Ecosystem: Kubernetes and Project Atomic ● Current Status of Integration ● oVirt Docker User-Interface Plugin ● “Dockerized” oVirt Engine ● Docker on Virtualization ● Possible Future Integration ● Managing Containers as VMs ● Future Multi-Purpose Data Center oVirt and Docker Integration, Oct 2014 2 Deploying an Application (Old-Fashion) ● Deploying an instance of Etherpad # yum search etherpad Warning: No matches found for: etherpad No matches found $ unzip etherpad-lite-1.4.1.zip $ cd etherpad-lite-1.4.1 $ vim README.md ... ## GNU/Linux and other UNIX-like systems You'll need gzip, git, curl, libssl develop libraries, python and gcc. *For Debian/Ubuntu*: `apt-get install gzip git-core curl python libssl-dev pkg- config build-essential` *For Fedora/CentOS*: `yum install gzip git-core curl python openssl-devel && yum groupinstall "Development Tools"` *For FreeBSD*: `portinstall node, npm, git (optional)` Additionally, you'll need [node.js](http://nodejs.org) installed, Ideally the latest stable version, be careful of installing nodejs from apt. ... oVirt and Docker Integration, Oct 2014 3 Installing Dependencies (Old-Fashion) ● 134 new packages required $ yum install gzip git-core curl python openssl-devel Transaction Summary ================================================================================ Install 2 Packages (+14 Dependent
    [Show full text]
  • 2020 Linux on IBM Z and Linuxone Client Workshop November 9-13
    2020 Linux on IBM Z and LinuxONE Client Workshop November 9-13 Securing Workloads with Red Hat OpenShift Container Platform on IBM Z / LinuxONE — Pradeep Parameshwaran Security & Compliance Lead, Linux on IBM Z & LinuxONE [email protected] Linux on IBM Z and LinuxONE Client WS 2020 / © 2020 IBM Corporation Contents • Why OpenShift on IBM Z ? • The cloud with the Privacy and Security • Deployment architecture: OpenShift on IBM Z • Security blueprint: OpenShift on IBM Z • Summary of native and augmented security capabilities IDC estimates that 71% of organizations are in the process of implementing containers and orchestration or are already using them regularly. Containers are the next generation of software-defined compute that enterprises will leverage to accelerate their digital transformation initiatives,” says Gary Chen, Research Director at IDC. “IDC estimates that 71% of organizations are in the process of implementing containers and orchestration or are already using them regularly, and IDC forecasts that the worldwide container infrastructure software opportunity is growing at a 63.9 % 5-year CAGR and is predicted to reach over $1.5B by 2022. 3 Why Red Hat OpenShift on IBM Z? OpenShift a smart Kubernetes platform 5 Build once • Fully integrated and automated architecture • Seamless Kubernetes deployment on any cloud or on-premises environment • Fully automated installation, from cloud infrastructure to OS to application services • One click platform and application updates • Auto-scaling of cloud resources • Enterprise-grade security
    [Show full text]
  • Container and Kernel-Based Virtual Machine (KVM) Virtualization for Network Function Virtualization (NFV)
    Container and Kernel-Based Virtual Machine (KVM) Virtualization for Network Function Virtualization (NFV) White Paper August 2015 Order Number: 332860-001US YouLegal Lines andmay Disclaimers not use or facilitate the use of this document in connection with any infringement or other legal analysis concerning Intel products described herein. You agree to grant Intel a non-exclusive, royalty-free license to any patent claim thereafter drafted which includes subject matter disclosed herein. No license (express or implied, by estoppel or otherwise) to any intellectual property rights is granted by this document. All information provided here is subject to change without notice. Contact your Intel representative to obtain the latest Intel product specifications and roadmaps. The products described may contain design defects or errors known as errata which may cause the product to deviate from published specifications. Current characterized errata are available on request. Copies of documents which have an order number and are referenced in this document may be obtained by calling 1-800-548-4725 or by visiting: http://www.intel.com/ design/literature.htm. Intel technologies’ features and benefits depend on system configuration and may require enabled hardware, software or service activation. Learn more at http:// www.intel.com/ or from the OEM or retailer. Results have been estimated or simulated using internal Intel analysis or architecture simulation or modeling, and provided to you for informational purposes. Any differences in your system hardware, software or configuration may affect your actual performance. For more complete information about performance and benchmark results, visit www.intel.com/benchmarks. Tests document performance of components on a particular test, in specific systems.
    [Show full text]
  • IBM Cloud Private with Linux on Z
    IBM Cloud Solution Brief IBM Cloud Private with Linux on IBM Z Empower how you build, deploy and manage cloud-native applications Introduction Highlights Many organizations have unique data sensitivity needs, such as internal policies, government regulations or industry compliance requirements. • Offers the benefits of a public cloud on a security-rich, scalable private cloud As a result, these organizations typically require private cloud. Yet in a platform for developing and delivering world of changing business demands, they also need to run demanding cloud-native apps applications and use multiple services both on-premise and on multiple • Helps make heritage applications cloud- clouds for the sake of agility. ready • Helps protect confidential and proprietary IBM Cloud™ Private with Linux® on IBM Z® provides the advantages of a Kubernetes and Docker workloads with IBM Secure Service Containers private cloud on a server platform optimized for data and cognitive • Enables organizations to build new services, and is designed to deliver the benefits of a public cloud in a microservice-based apps for improved security-rich, scalable and reliable environment. It enables enterprises to agility and innovation accelerate innovation using modern agile processes, integrates with • Designed to more securely use data and existing systems, and provides a strategic platform for multi-cloud services from external private cloud integration while maintaining the control and compliance that sources organizations need. • Supports heavy workloads with thousands of parallel users and thousands of Linux servers–in one box Connect almost anything on premise and in cloud IBM Cloud Private gives developers and IT operations a combination of critical capabilities to transform the enterprise.
    [Show full text]
  • Ubuntu Server Guide Basic Installation Preparing to Install
    Ubuntu Server Guide Welcome to the Ubuntu Server Guide! This site includes information on using Ubuntu Server for the latest LTS release, Ubuntu 20.04 LTS (Focal Fossa). For an offline version as well as versions for previous releases see below. Improving the Documentation If you find any errors or have suggestions for improvements to pages, please use the link at thebottomof each topic titled: “Help improve this document in the forum.” This link will take you to the Server Discourse forum for the specific page you are viewing. There you can share your comments or let us know aboutbugs with any page. PDFs and Previous Releases Below are links to the previous Ubuntu Server release server guides as well as an offline copy of the current version of this site: Ubuntu 20.04 LTS (Focal Fossa): PDF Ubuntu 18.04 LTS (Bionic Beaver): Web and PDF Ubuntu 16.04 LTS (Xenial Xerus): Web and PDF Support There are a couple of different ways that the Ubuntu Server edition is supported: commercial support and community support. The main commercial support (and development funding) is available from Canonical, Ltd. They supply reasonably- priced support contracts on a per desktop or per-server basis. For more information see the Ubuntu Advantage page. Community support is also provided by dedicated individuals and companies that wish to make Ubuntu the best distribution possible. Support is provided through multiple mailing lists, IRC channels, forums, blogs, wikis, etc. The large amount of information available can be overwhelming, but a good search engine query can usually provide an answer to your questions.
    [Show full text]