Posts

Showing posts from 2016

Learning OpenStack - The Easy Way

Image
Dear Friends, Our Dream has come true! It takes 9 months for a mother to bring another life. That is the amount of time it has taken me to demystify the otherwise terse and abstract cloud computing concepts. And thanks to Packt Publishing I for helping me impart this knowledge in the most engaging way. The Full video course is out you can get more details about it here . You can get more details about the course here without registering. The Overview video is out for all. It was a tough negotiation with publisher to give out this valuable video for free I hope that it will get you started on your "Infrastructure as Code" journey. Three points I would like to share, which might help you are:- People are watching us! Packt publishing approached me watching the screencasts I had posted on Youtube. (Which until then I was certain that nobody was watching). Good news is Video course royalty is 3 times that of a book! Bad news is because its 3 times the

Creating an SSL certificate and adding it to Apache

Just a brain dump, will format it latter https://letsencrypt.org/getting-started/ ~/letsencrypt$ sudo ./letsencrypt-auto certonly -d venumurthy.com -d www.venumurthy.com Congratulations! Your certificate and chain have been saved at   https://letsencrypt.org/getting-started/  /etc/letsencrypt/live/obhiyo.com/fullchain.pem cert.pem  chain.pem  fullchain.pem  privkey.pem vim sites-enabled/000-default.conf <VirtualHost 54.169.00.52:443>         ServerName www.venumurtyy.com         ServerAdmin contact@venumurty.com         DocumentRoot /var/www/venumurthy         SSLEngine on         SSLCertificateFile /etc/letsencrypt/live/vm.com/cert.pem         SSLCertificateKeyFile /etc/letsencrypt/live/vm.com/privkey.pem         SSLCertificateChainFile /etc/letsencrypt/live/vm.com/fullchain.pem         ErrorLog ${APACHE_LOG_DIR}/error.log         CustomLog ${APACHE_LOG_DIR}/access.log combined </VirtualHost> vim /etc/apache2/sites-available/default-ssl.conf            

Choosing Apache mod_wsgi over Eventlet in OpenStack Kilo and Liberity

While installing OpenStack Liberty release you disable the keystone service from starting up automatically and we also see a note such as " In Kilo and Liberty releases, the keystone project deprecates eventlet in favor of a separate web server with WSGI extensions. This guide uses the Apache HTTP server with   mod_wsgi   to serve Identity service requests on port 5000 and 35357. By default, the keystone service still listens on ports 5000 and 35357. Therefore, this guide disables the keystone service. The keystone project plans to remove eventlet support in Mitaka."   The reason behind this is Eventlet by design performs well in networked environments and handles everything in a single thread. Due to Apache's ability to do multi-threading it was better to use it as the frontend. Keystone depends on apache/web-server modules to handle federated identity (validation of SAML and etc) and similar Single Sign On type authentication. Eventlet has proven problemati