Unleashing the Power of LOKI: Linux, OpenStack and Kubernetes Infrastructure

In the dynamic landscape of cloud infrastructure, the convergence of Linux, OpenStack and Kubernetes is shaping a formidable infrastructure stack known as LOKI. The 2022 OpenStack User Survey revealed that Kubernetes is now deployed on over 85% of OpenStack deployments, which points to how these technologies are increasingly harmonizing, contrary to the notion of an either-or choice. The rise in OpenStack and Kubernetes production integrations is further documented by an increase to 21% (up from just 16% in 2022) of users running production workloads with Magnum, the OpenStack service for container orchestration.

Linux: The Solid Foundation

At the base of the LOKI stack is Linux, providing a unified way to manage both physical and virtual devices. As an open source operating system standard, Linux serves as the crucial layer where hardware and software seamlessly meet. It’s the de facto standard for operating systems.

Step 1 of 7

14%

Which of the following best describes how you currently monitor and manage systems across your hybrid cloud environment?(Required)

Multiple separate tools for different environments

Multiple separate tools for different monitoring and management functions

Single consolidated dashboard

Custom built monitoring and management solution

No full monitoring and management solution

Don’t know

How valuable would it be for your monitoring and management solution to incorporate predictive analytics to help you identify and address system issues that are critical and not waste time or effort working through all the data and “noise” that is not critical?(Required)

Extremely valuable

Moderately valuable

Somewhat valuable

Slightly valuable

Not valuable

How do you most typically address potential system issues BEFORE they impact your operations?(Required)

Automated workflows and playbooks to remediate potential issues as soon as they are detected

An orchestrated response process that leverages automation, AI, and human expertise to rapidly respond to potential issues

Advanced monitoring tools such as predictive analytics and anomaly detection to proactively identify and address potential issues

Respond to issues as they arise, using manual processes and troubleshooting techniques

A combination of automated remediation, orchestrated response, and/or proactive monitoring to address potential system issues

Don’t know

Other

What methods does your organization use to control and monitor cloud/IT spending?(Required)

Centralized procurement processes

Pre-approved budget thresholds

Automated cost monitoring tools

Department-level spending controls

Regular cost audits and reviews

Cloud cost optimization platform

Approval workflows for resource provisioning

Native financial operations tools provided by the cloud provider

No formal controls in place

Don’t know

Other

Please specify:

Which methods do you rely on most to detect security vulnerabilities in your systems?(Required)

Automated scanning tools

Manual assessments

Vendor notifications

Threat modeling (for early detection)

None of these

Don’t know

Other

Please specify:

What are the TWO most common ways you prioritize vulnerabilities to address within your environment?(Required)

Based on potential impact

Based on exploitability

Regulatory compliance requirements

Based on CVSS scores

Risk-based analysis of multiple factors

First-in-first-out approach

No formal prioritization process

Don’t know

How do you typically handle system updates and security patches?(Required)

Automated updates and patches

Manually review and apply updates and patches on a regular schedule

A combination of automation and manual review

Apply updates and patches on an as-needed basis.

Outsourced update and patch management

No defined process

Don’t know

Other

Δ

OpenStack: Orchestrating Cloud Resources

Born in 2010 as a collaborative effort between Rackspace and NASA, OpenStack has become the go-to open source cloud standard. Written in Python and continually evolving with regular six-month releases (like the current Bobcat and upcoming Caracal), OpenStack manages sets of servers, be they physical or virtual, and plays a pivotal role in LOKI’s infrastructure. OpenStack provides the cloud operating system on top of Linux in the LOKI stack to provide the space for the application layer.

Kubernetes: Container Orchestration Excellence

Kubernetes, an open source container orchestration standard written in Go, was handed over to the Cloud Native Computing Foundation by Google in 2014. With its latest release, version 1.28, Kubernetes empowers the re-architecting of applications into microservices, automating deployment, scaling and management of containerized applications. Kubernetes used to be thought of as the replacement for OpenStack when, in fact, Kubernetes requires something like OpenStack that can provide the required infrastructure abstraction that Kubernetes needs to run.   

Integrating LOKI Components

The integration of OpenStack and Kubernetes within the LOKI stack provides a multifaceted approach to enhance agility, security and flexibility. Here are three ways they synergize:

OpenStack in a Kubernetes Container

OpenStack-Helm allows the containerization of the OpenStack control plane, easing deployment, maintenance and upgrading of individual OpenStack services. This approach provides flexibility in managing complex environments. OpenStack Helm is just one of the possible life cycle management tools to help orchestrate the LOKI stack. While it’s closely coupled with the OpenStack project, there are a number of developing open source solutions in this space that can be leveraged.

Kubernetes Containers on OpenStack

Utilizing OpenStack Magnum with the Kubernetes Cluster API (CAPI), Kubernetes can run seamlessly within an OpenStack cloud environment. This approach facilitates multi-tenant isolation between Kubernetes clusters, offering a robust solution for deploying container frameworks.

Cloud Provider OpenStack Plugins for Kubernetes

OpenStack services like Cinder and Manila can operate independently from an OpenStack cloud, providing storage solutions to containers without relying on Nova (the compute service within OpenStack). Additional OpenStack service plugins enhance Kubernetes functionality, including auto-healing (Magnum), ingress load balancing (Octavia) and secrets/authentication management (Barbican and Keystone) through the use of cloud provider openstack, which is maintained inside the Kubernetes community under SIG Cloud Provider.

Real-World Deployments

The adoption of LOKI is evident in the statistics—Kubernetes is deployed on over 85% of OpenStack setups, with a notable 21% running production workloads using Magnum for container orchestration. CERN, for instance, manages over 200 Kubernetes installations using Magnum on its OpenStack cloud.

Getting Involved

For those intrigued by LOKI’s potential, I encourage you to get involved in community projects. The Cluster API (CAPI) and OpenStack Magnum are actively seeking contributions, with ongoing efforts in conformance testing and merging drivers.

Exploring LOKI Further

From discussions by industry leaders like Red Hat and Canonical to live demos at OpenInfra Summits, the LOKI stack is gaining momentum as the open infrastructure standard.

As we venture into the era of cloud-native computing, the LOKI stack stands as a testament to the collaborative power of Linux, OpenStack and Kubernetes—forging an open source, end-to-end infrastructure stack capable of meeting diverse use cases and workloads.