| Table of Contents |
|---|
Introduction to Abiquo and AWS
The Abiquo Amazon EC2 integration is a multi-cloud feature that enables our customers to add Amazon public cloud regions to the Abiquo platform as part of our agnostic public cloud management. With the Abiquo platform you will be able to offer a service that is a federation of Abiquo private clouds and the public cloud. Cloud tenants can deploy virtual resources in public cloud regions or in Abiquo datacenters using the same award-winning user interface.
You can control the use of public cloud resources in the same way as in the Abiquo Datacenter (quotas, limits, viewer roles, etc). And users can also work with Abiquo multi-cloud features such as workload automation with action plans and autoscaling in public cloud. And the platform also obtains price lists and billing data from the provider to use in features such as billing dashboards, cost estimates, budgets with action plans, and a single bill for each cloud tenant. And Abiquo supports reseller accounts in the AWS Partner Network for use with tenant hierarchies.
AWS public cloud regions
Administrators add Amazon regions to the platform as Abiquo public cloud regions. Abiquo manages public cloud regions using a set of the Abiquo Remote Services. The remote services used in a public cloud region can be shared with other datacenters or public cloud regions. Abiquo caches details of AMI templates but it does not store their disks, so no NFS repository is required for a public cloud region. Each Abiquo public cloud region corresponds to a single Region in Amazon EC2. Multiple cloud tenants can then access this region.
Tenants and AWS credentials
Each Abiquo enterprise using the Amazon public cloud region should have its own AWS account. Abiquo will validate your Amazon credentials (Access Key ID and Secret Access Key) with AWS. Each enterprise may register ONE set of credentials for the enterprise's AWS account. You cannot register another set of credentials for the same account in another enterprise. In the case of a tenant hierarchy, the reseller may register the credentials of their partner account. Then each customer will have a set of compute credentials.
...
Some regions, such as those in China, may require separate credentials, and for these regions, the administrator must select a separate provider, for example, "AWS (China)".
Abiquo VDCs and VMs in Amazon
When users create a virtual datacenter in the public cloud region, Abiquo works with Amazon EC2 to create a Virtual Private Cloud (VPC). When users create VMs, the platform creates Amazon Instances.
...
| Warning | ||
|---|---|---|
| ||
Do not rename an Amazon instance in AWS or you will break the link between Abiquo and the VM. If the link is broken, you will not be able to manage the VM with Abiquo again. Do not delete the tags created by Abiquo. If you need to manage your Abiquo Elastic IPs in Amazon, synchronize them to update changes in Abiquo or you may see unexpected results. |
...
How Abiquo
...
creates a virtual private cloud
Abiquo configures VPC networking Scenario 2 as described in the AWS documentation. See http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Scenario2.html.
...
- You can synchronize existing VMs and create new IP addresses through Abiquo, including multiple Elastic IPs
- The maximum number of IP addresses is determined by the AWS hardware profile (instance type). See http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-eni.html#AvailableIpPerENI
- Abiquo adds IPs in the same subnet to the same elastic network interface.
- For information about Elastic Network Interfaces, see http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-eni.html
...
Security groups
Abiquo firewall policies correspond to AWS Security Groups and Abiquo onboards security groups from Amazon VPCs. Abiquo registers the default security group of a VPC as the default firewall policy of the Abiquo virtual datacenter. This firewall policy allows all outbound traffic from VMs. Abiquo users can select another firewall policy as the default. Remember that you must configure a firewall to allow remote access to your VMs in AWS.
See Manage firewalls
...
Load balancers
Abiquo supports Classic load balancers and Application load balancers. Abiquo allows VMs on different subnets to be connected to the same load balancer.
...
Storage
Abiquo supports EBS storage, including encryption and delete on termination volumes.
...
Related links for Abiquo and AWS
- AWS features table: contains details of AWS features supported by Abiquo
- Onboard from Public Cloudpublic cloud: describes how to synchronize AWS resources into the Abiquo cloud platform
- Manage firewalls
- AWS load balancers table: contains details of load balancers features supported by Abiquo
- Manage Load Balancersload balancers
- Manage storage in public cloud: describes how to use AWS storage in Abiquo