Updated to use new docs structure WIP

JIRA: COPPER-1 WIP - not sure how to fill in the docs/release/scenarios section Change-Id: I8684e4647e7b943ca05dc77131a54338ff932b78 Signed-off-by: Aimee Ukasick <aimeeu.opensource@gmail.com>
author: Aimee Ukasick <aimeeu.opensource@gmail.com> 2017-02-07 13:23:37 -0600
committer: Aimee Ukasick <aimeeu.opensource@gmail.com> 2017-02-07 13:23:37 -0600
commit: 572ce78c886cf49bd617a2ff3d96491b22a66f88 (patch)
tree: d32e4c9d727ece871ec89f1d47005756ddc2b3c7 /docs/design/usecases.rst
parent: c04ffff59b770ae32c4691bdc3d3b4363604db78 (diff)
1 files changed, 0 insertions, 330 deletions
diff --git a/docs/design/usecases.rst b/docs/design/usecases.rst
deleted file mode 100644
index 431590d..0000000
--- a/docs/design/usecases.rst
+++ /dev/null
@@ -1,330 +0,0 @@
-.. This work is licensed under a
-.. Creative Commons Attribution 4.0 International License.
-.. http://creativecommons.org/licenses/by/4.0
-.. (c) 2015-2017 AT&T Intellectual Property, Inc
-
-Use Cases
-=========
-
-Implemented in Current Release
-------------------------------
-
-Network Bridging
-................
-
-As a service provider, I need to prevent tenants from bridging networks I have
-created with different security levels, e.g. a DMZ network and an Admin
-network.
-
-An example implementation is shown in the Congress use case test "Network
-Bridging" (bridging.sh) in the Copper repo under the tests folder. This test:
-
-  * Identifies VMs that are connected to Service Provider (SP) defined networks via floating IPs
-  * Identifies VMs that are connected to two such networks with different security levels
-  * For VMs that are thus connected, identifies those that are not owned by the Service Provider
-  * Reactively enforces the network bridging rule by pausing VMs found to be in violation of the policy
-
-Note the assumptions related to the following example:
-
-  * "SP" is the service provider tenant, and only the SP can create tenants
-
-As implemented through OpenStack Congress:
-
-.. code::
-
-   sp_dmz_connected(x) :-
-   nova:floating_ips(fixed_ip, id, ip=y, instance_id=x, pool),
-   neutronv2:floating_ips(id, router_id, tenant_id, floating_network_id=z,
-   fixed_ip_address, floating_ip_address=y, port_id, status),
-   neutronv2:networks(id=z, tenant_id=w, name="DMZ", status, admin_state_up, shared),
-   keystone:tenants(enabled, name="SP", id=w)
-
-   sp_admin_connected(x) :-
-   nova:floating_ips(fixed_ip, id, ip=y, instance_id=x, pool),
-   neutronv2:floating_ips(id, router_id, tenant_id, floating_network_id=z,
-   fixed_ip_address, floating_ip_address=y, port_id, status),
-   neutronv2:networks(id=z, tenant_id=w, name="Admin", status, admin_state_up, shared),
-   keystone:tenants(enabled, name="SP", id=w)
-
-   dmz_admin_connnected(x) :-
-   sp_dmz_connected(x), sp_admin_connected(x)
-
-   dmz_admin_bridging_error(id) :-
-   nova:servers(id,name,hostId,status,tenant_id=x,user_id,image,flavor,az,hh),
-   not keystone:tenants(enabled, name="SP", id=x)
-
-   execute[nova:servers.pause(id)] :-
-   dmz_admin_bridging_error(id),
-   nova:servers(id,status='ACTIVE')
-
-DMZ Deployment
-..............
-
-As a service provider, I need to ensure that applications which have not been
-designed for exposure in a DMZ zone are not attached to DMZ networks.
-
-An example implementation is shown in the Congress use case test "DMZ Placement"
-(dmz.sh) in the Copper repo under the tests folder. This test:
-
-  * Identifies VMs connected to a DMZ (currently identified through a specifically-named security group)
-  * Identifies VMs connected to a DMZ, which are by policy not allowed to be (currently implemented through an image tag intended to identify images that are "authorized" i.e. tested and secure, to be DMZ-connected)
-  * Reactively enforces the dmz placement rule by pausing VMs found to be in violation of the policy.
-
-As implemented through OpenStack Congress:
-
-.. code::
-
-   dmz_server(x) :-
-   nova:servers(id=x,status='ACTIVE'),
-   neutronv2:ports(id, device_id, status='ACTIVE'),
-   neutronv2:security_group_port_bindings(id, sg),
-   neutronv2:security_groups(sg,name='dmz')"
-
-   dmz_placement_error(id) :-
-   nova:servers(id,name,hostId,status,tenant_id,user_id,image,flavor,az,hh),
-   not glancev2:tags(image,'dmz'),
-   dmz_server(id)"
-
-   execute[nova:servers.pause(id)] :-
-   dmz_placement_error(id),
-   nova:servers(id,status='ACTIVE')"
-
-Configuration Auditing
-......................
-
-As a service provider or tenant, I need to periodically verify that resource
-configuration requirements have not been violated, as a backup means to proactive
-or reactive policy enforcement.
-
-An example implementation is shown in the Congress use case test "SMTP Ingress"
-(smtp_ingress.sh) in the Copper repo under the tests folder. This test:
-
-  * Detects that a VM is associated with a security group that allows SMTP
-    ingress (TCP port 25)
-  * Adds a policy table row entry for the VM, which can be later investigated
-    for appropriate use of the security group
-
-As implemented through OpenStack Congress:
-
-.. code::
-
-   smtp_ingress(x) :-
-   nova:servers(id=x,status='ACTIVE'),
-   neutronv2:ports(port_id, status='ACTIVE'),
-   neutronv2:security_groups(sg, tenant_id, sgn, sgd),
-   neutronv2:security_group_port_bindings(port_id, sg),
-   neutronv2:security_group_rules(sg, rule_id, tenant_id, remote_group_id,
-    'ingress', ethertype, 'tcp', port_range_min, port_range_max, remote_ip),
-   lt(port_range_min, 26),
-   gt(port_range_max, 24)
-
-Reserved Resources
-..................
-
-As an NFV Infrastructure provider, I need to ensure that my admins do not inadvertently
-enable VMs to connect to reserved subnets.
-
-An example implementation is shown in the Congress use case test "Reserved Subnet"
-(reserved_subnet.sh) in the Copper repo under the tests folder. This test:
-
-  * Detects that a subnet has been created in a reserved range
-  * Reactively deletes the subnet
-
-As implemented through OpenStack Congress:
-
-.. code::
-
-   reserved_subnet_error(x) :-
-   neutronv2:subnets(id=x, cidr='10.7.1.0/24')
-
-   execute[neutronv2:delete_subnet(x)] :-
-   reserved_subnet_error(x)
-
-
-For Further Analysis and Implementation
----------------------------------------
-
-Affinity
-........
-
-Ensures that the VM instance is launched "with affinity to" specific resources,
-e.g. within a compute or storage cluster. Examples include: "Same Host Filter",
-i.e. place on the same compute node as a given set of instances, e.g. as defined
-in a scheduler hint list.
-
-As implemented by OpenStack Heat using server groups:
-
-*Note: untested example...*
-
-.. code::
-
-  resources:
-    servgrp1:
-    type: OS::Nova::ServerGroup
-    properties:
-      policies:
-      - affinity
-      serv1:
-      type: OS::Nova::Server
-      properties:
-        image: { get_param: image }
-        flavor: { get_param: flavor }
-        networks:
-          - network: {get_param: network}
-      serv2:
-      type: OS::Nova::Server
-      properties:
-        image: { get_param: image }
-        flavor: { get_param: flavor }
-        networks:
-          - network: {get_param: network}
-
-Anti-Affinity
-.............
-
-Ensures that the VM instance is launched "with anti-affinity to" specific resources,
-e.g. outside a compute or storage cluster, or geographic location.
-Examples include: "Different Host Filter", i.e. ensures that the VM instance is
-launched on a different compute node from a given set of instances, as defined
-in a scheduler hint list.
-
-As implemented by OpenStack Heat using scheduler hints:
-
-*Note: untested example...*
-
-.. code::
-
-  heat template version: 2013-05-23
-  parameters:
-    image:
-    type: string
-    default: TestVM
-    flavor:
-    type: string
-    default: m1.micro
-    network:
-    type: string
-    default: cirros_net2
-  resources:
-    serv1:
-    type: OS::Nova::Server
-    properties:
-      image: { get_param: image }
-      flavor: { get_param: flavor }
-      networks:
-        - network: {get_param: network}
-      scheduler_hints: {different_host: {get_resource: serv2}}
-    serv2:
-    type: OS::Nova::Server
-    properties:
-      image: { get_param: image }
-      flavor: { get_param: flavor }
-      networks:
-        - network: {get_param: network}
-      scheduler_hints: {different_host: {get_resource: serv1}}
-
-Network Access Control
-......................
-
-Networks connected to VMs must be public or owned by someone in the VM owner's group.
-
-This use case captures the intent of the following sub-use-cases:
-
-  * Link Mirroring: As a troubleshooter,
-    I need to mirror traffic from physical or virtual network ports so that I
-    can investigate trouble reports.
-  * Link Mirroring: As a NFVaaS tenant,
-    I need to be able to mirror traffic on my virtual network ports so that I
-    can investigate trouble reports.
-  * Unauthorized Link Mirroring Prevention: As a NFVaaS tenant,
-    I need to be able to prevent other tenants from mirroring traffic on my
-    virtual network ports so that I can protect the privacy of my service users.
-  * Link Mirroring Delegation: As a NFVaaS tenant,
-    I need to be able to allow my NFVaaS SP customer support to mirror traffic
-    on my virtual network ports so that they can assist in investigating trouble
-    reports.
-
-As implemented through OpenStack Congress:
-
-*Note: untested example...*
-
-.. code::
-
-   error :-
-   nova:vm(vm),
-   neutron:network(network),
-   nova:network(vm, network),
-   neutron:private(network),
-   nova:owner(vm, vm-own),
-   neutron:owner(network, net-own),
-   -same-group(vm-own, net-own)
-
-   same-group(user1, user2) :-
-   ldap:group(user1, g),
-   ldap:group(user2, g)
-
-
-Storage Access Control
-......................
-
-Storage resources connected to VMs must be owned by someone in the VM owner's group.
-
-As implemented through OpenStack Congress:
-
-*Note: untested example...*
-
-.. code::
-
-  error :-
-  nova:vm(vm),
-  cinder:volumes(volume),
-  nova:volume(vm, volume),
-  nova:owner(vm, vm-own),
-  neutron:owner(volume, vol-own),
-  -same-group(vm-own, vol-own)
-
-  same-group(user1, user2) :-
-  ldap:group(user1, g),
-  ldap:group(user2, g)
-
-Resource Reclamation
-....................
-
-As a service provider or tenant, I need to be informed of VMs that are under-utilized
-so that I can reclaim the VI resources. (example from `RuleYourCloud blog <http://ruleyourcloud.com/2015/03/12/scaling-up-congress.html>`_)
-
-As implemented through OpenStack Congress:
-
-*Note: untested example...*
-
-.. code::
-
-  reclaim_server(vm) :-
-  ceilometer:stats("cpu_util",vm, avg_cpu),
-  lessthan(avg_cpu, 1)
-
-  error(user_id, email, vm_name) :-
-  reclaim_server(vm),
-  nova:servers(vm, vm_name, user_id),
-  keystone:users(user_id, email)
-
-Resource Use Limits
-...................
-
-As a tenant or service provider, I need to be automatically terminate an instance
-that has run for a pre-agreed maximum duration.
-
-As implemented through OpenStack Congress:
-
-*Note: untested example...*
-
-.. code::
-
-  terminate_server(vm) :-
-  ceilometer:statistics("duration",vm, avg_cpu),
-  lessthan(avg_cpu, 1)
-
-  error(user_id, email, vm_name) :-
-  reclaim_server(vm),
-  nova:servers(vm, vm_name, user_id),
-  keystone:users(user_id, email)
author	Aimee Ukasick <aimeeu.opensource@gmail.com>	2017-02-07 13:23:37 -0600
committer	Aimee Ukasick <aimeeu.opensource@gmail.com>	2017-02-07 13:23:37 -0600
commit	572ce78c886cf49bd617a2ff3d96491b22a66f88 (patch)
tree	d32e4c9d727ece871ec89f1d47005756ddc2b3c7 /docs/design/usecases.rst
parent	c04ffff59b770ae32c4691bdc3d3b4363604db78 (diff)