Cloud And Virtualization Compuuting (Chapter 7) Flashcards
(30 cards)
Virtualization
A software that allows a host computer to run multiple OS known as Virtual Machines
- Requires a hypervisor (manages virtual machines)
Virtualization Use cases
Client side sandbox
- used for isolated testing environment and over different OS
Server side
- better hardware utilisation by defining hardware requirements
Application virtualization
- software installed on a server that can be streamed to client systems
Container Virtualization
-Run/test applications over different virtual environments
Hypervisor
Virtual machine manager
- Virtual machines run in a protected space
- CPU, Memory, Storage and OS can all be config via hypervisor when setting up
- Network adapter (NIC) are emulated
Functions of Hypervisor
- Emulation
- Guest OS support (OS updates, virus scan)
- Assigning resources for each Guest OS
- Configuring network
- Configuring Security
Type 2 Hypervisor
A host based hypervisor in which you first install the OS then the hypervisor.
- main OS is first loaded then the hypervisor can be loaded to create a VM
Type 1 Hypervisor
A hypervisor that is first installed and loaded when the system boots
- no underlining OS
Virtualization CPU requirements
CPUs need built in instructions sets capable of handling VM
- Intel: VT
- AMD: AMD-V
SLAT (second-level address translation)
- hardware virtualization technology that reduces Hypervisor overhead (memory requires for VM)
- Intel: EPT
- AMD: RVI
Multiple CPU resources
- SMP (symmetric multiprocessing)
- Multi-core
Virtual Networks
VMs can communicate with other VMs by using standard networking protocols (TCP/IP)
- VMs has an emulated a NIC
- Virtual Switch allows VMs to connect to each other
Client-Side Virtualization
Type 2 Hypervisor solution in which a user can access/create a virtual machine directly on Thier desktop.
Uses:
- Virtual Labs (testing)
- legacy software
- development environment
- training
Server-Side Virtualization
Type 1 Hypervisor where a server has multiple virtual machines running in which they each act as a separate machine
Server Consolidation
Allows the full use of all resources on a server to be allocated to multiple VMs
Virtualization Security Requirements
Guest OS
- all VMs must be patched and protected against malware
- Security Software can cause performance issues ( scan during off peak)
- Rogue VM and VM Sprawl are major security issues
VM Sprawl
uncontrolled development of multiple VM
Rogue VM
An unauthorised VM that has been set up
DoS
Denial of Service- an attack that attempt to disrupt a service by overloading is
DoS attack on a Hypervisor host server will cause significant damage to all VMs loaded.
- can be helped with Snapshots
VM escaping
Malware on a VM that is able to hop to another VM or directly to the Host
- ensure Hypervisor is updated with latest security patch
Cloud
Is a computing model for enabling convenient on-demand network access to a shared pool of configurable computing resources (network, server, storage, application and services)
Cloud Computing benefits
Rapid elasticity
Resources pooling
On demand self-service/ pay for use
Measured services
Measured services
A providers ability to control and bill a customers use of resources
Rapid Elasticity
- system ability to adapt to the demand of resources
Cloud models
- Public or multi-tenant
- Hosted private
- Private
- Community
- Hybrid
Cloud Service Option
IaaS (Infrastructure as a Service)
- a service that allows a consumer to outsource computing equipment purchase and running their own data centre
SaaS (Software as a Service)
- Allows a service provider to make applications available over the internet
PaaS (Platform as a Service)
- Allows customer to rent fully configured systems that are set up for a specific purpose ( development environment, testing environment)
IaaS
A cloud service in which the customer rents the equipment required for the network, the network administration is the customer responsibility.
- Server
- Storage
- Network
SaaS
A cloud service that allows a customer to access a service application over the internet (Gmail, YouTube)
SaaS infrastructure:
- Server
- Storage
- Network
- OS & middleware
- Packaged software
