TELCODOCS-1874: Adding hub cluster RDS - Tech Preview

Author: rohennes

_topic_maps/_topic_map.yml

@@ -3332,6 +3332,8 @@ Topics:
   File: telco-core-rds
 - Name: Telco RAN DU reference design specifications
   File: telco-ran-du-rds
+- Name: Telco hub reference design specifications
+  File: telco-hub-rds
 - Name: Comparing cluster configurations
   Dir: cluster-compare
   Distros: openshift-origin,openshift-enterprise

images/telco-hub-cluster-rds-architecture.png

@@ -0,0 +1,85 @@
+[id="telco-hub-acm-observability"]
+= {rh-rhacm} Observability
+
+Cluster observability is provided by the multicluster engine and {rh-rhacm}.
+
+* Observability storage needs several `PV` resources and an S3 compatible bucket storage for long term retention of the metrics.
+* Storage requirements calculation is complex and dependent on the specific workloads and characteristics of managed clusters.
+Requirements for `PV` resources and the S3 bucket depend on many aspects including data retention, the number of managed clusters, managed cluster workloads, and so on.
+* Estimate the required storage for observability by using the observability sizing calculator in the {rh-rhacm} capacity planning repository.
+See the Red Hat Knowledgebase article link:https://access.redhat.com/articles/7103886[Calculating storage need for MultiClusterHub Observability on telco environments] for an explanation of using the calculator to estimate observability storage requirements.
+The below table uses inputs derived from the telco RAN DU RDS and the hub cluster RDS as representative values.
+
+[NOTE]
+====
+The following numbers are estimated.
+Tune the values for more accurate results.
+Add an engineering margin, for example +20%, to the results to account for potential estimation inaccuracies.
+====
+
+.Cluster requirements
+[cols="42%,42%,16%",options="header"]
+|====
+|Capacity planner input
+|Data source
+|Example value
+
+|Number of control plane nodes
+|Hub cluster RDS (scale) and telco RAN DU RDS (topology)
+|3500
+
+|Number of additional worker nodes
+|Hub cluster RDS (scale) and telco RAN DU RDS (topology)
+|0
+
+|Days for storage of data
+|Hub cluster RDS
+|15
+
+|Total Number of pods per cluster
+|Telco RAN DU RDS
+|120
+
+|Number of namespaces (excl OCP)
+|Telco RAN DU RDS
+|4
+
+|Number of metric samples per hour
+|Default value
+|12
+
+|Number of hours of retention in Receiver PV
+|Default value
+|24
+|====
+
+With these input values, the sizing calculator as described in the Red Hat Knowledgebase article link:https://access.redhat.com/articles/7103886[Calculating storage need for MultiClusterHub Observability on telco environments] indicates the following storage needs:
+
+.Storage requirements
+[options="header"]
+|====
+2+|alertmanager PV 2+|thanos-receive PV 2+|thanos-compactor PV
+
+|*Per replica* |*Total* |*Per replica* |*Total* 2+|*Total*
+
+|10GBi |30GBi |10GBi |30GBi 2+|100GBi
+|====
+
+.Storage requirements
+[options="header"]
+|====
+2+|thanos-rule PV 2+|thanos-store PV 2+|Object bucket^[1]^
+
+|*Per replica* |*Total* |*Per replica* |*Total* |*Per day* |*Total*
+
+|30GBi |90GBi |100GBi |300GBi |15GBi |101GBi
+|====
+[1] For object bucket we assume we disable downsampling, so only need to calculate storage for raw data.
+
+[role="_additional-resources"]
+.Additional resources
+
+* link:https://github.com/stolostron/capacity-planning/blob/main/calculation/ObsSizingTemplate-Rev1.ipynb[Observability sizing calculator]
+* link:https://github.com/stolostron/capacity-planning[{rh-rhacm} capacity planning repository]
+
+

images/telco-hub-cluster-reference-design-components.png

@@ -0,0 +1,7 @@
+[id="telco-hub-acmAgentServiceConfig-yaml"]
+.acmAgentServiceConfig.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/acm/acmAgentServiceConfig.yaml[role=include]
+----
+

modules/telco-hub-acm-observability.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-acmMCH-yaml"]
+.acmMCH.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/acm/acmMCH.yaml[role=include]
+----
+

modules/telco-hub-acmAgentServiceConfig-yaml.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-acmMirrorRegistryCM-yaml"]
+.acmMirrorRegistryCM.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/acm/acmMirrorRegistryCM.yaml[role=include]
+----
+

modules/telco-hub-acmMCH-yaml.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-acmNS-yaml"]
+.acmNS.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/acm/acmNS.yaml[role=include]
+----
+

modules/telco-hub-acmMirrorRegistryCM-yaml.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-acmOperGroup-yaml"]
+.acmOperGroup.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/acm/acmOperGroup.yaml[role=include]
+----
+

modules/telco-hub-acmNS-yaml.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-acmPerfSearch-yaml"]
+.acmPerfSearch.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/acm/acmPerfSearch.yaml[role=include]
+----
+

modules/telco-hub-acmOperGroup-yaml.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-acmProvisioning-yaml"]
+.acmProvisioning.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/acm/acmProvisioning.yaml[role=include]
+----
+

modules/telco-hub-acmPerfSearch-yaml.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-acmSubscription-yaml"]
+.acmSubscription.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/acm/acmSubscription.yaml[role=include]
+----
+

modules/telco-hub-acmProvisioning-yaml.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-agent-config-yaml"]
+.agent-config.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/install/openshift/agent-config.yaml[role=include]
+----
+

modules/telco-hub-acmSubscription-yaml.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-app-project-yaml"]
+.app-project.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/gitops/ztp-installation/app-project.yaml[role=include]
+----
+

modules/telco-hub-agent-config-yaml.adoc

@@ -0,0 +1,33 @@
+[id="telco-hub-architecture-overview"]
+= Hub cluster architecture overview
+
+Use the features and components running on the management hub cluster to manage many other clusters in a hub-and-spoke topology.
+The hub cluster provides a highly-available and centralized interface for managing the configuration, lifecycle, and observability of the fleet of deployed clusters.
+
+[NOTE]
+====
+All management hub functionality can be deployed on a dedicated {product-title} cluster or as applications that are co-resident on an existing cluster.
+====
+
+Managed cluster lifecycle::
+Using a combination of Day 2 Operators, the hub cluster provides the necessary infrastructure to deploy and configure the fleet of clusters by using a GitOps methodology.
+Over the lifetime of the deployed clusters, further management of upgrades, scaling the number of clusters, node replacement, and other lifecycle management functions can be declaratively defined and rolled out.
+You can control the timing and progression of the rollout across the fleet.
+
+Monitoring::
++
+--
+The hub cluster provides monitoring and status reporting for the managed clusters through the Observability pillar of the {rh-rhacm} Operator.
+This includes aggregated metrics, alerts, and compliance monitoring through the Governance policy framework.
+--
+
+The Telco management hub reference design specifications (RDS) and the associated reference CRs describe the telco engineering and QE validated method for deploying, configuring and managing the lifecycle of telco managed cluster infrastructure.
+The reference configuration includes the installation and configuration of the hub cluster components on top of {product-title}.
+
+
+.Hub cluster reference design components
+image::telco-hub-cluster-reference-design-components.png[]
+
+.Hub cluster reference design architecture
+image::telco-hub-cluster-rds-architecture.png[]
+

modules/telco-hub-app-project-yaml.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-argocd-openshift-gitops-patch-yaml"]
+.argocd-openshift-gitops-patch.json
+[source,json]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/gitops/ztp-installation/argocd-openshift-gitops-patch.json[role=include]
+----
+

modules/telco-hub-architecture-overview.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-argocd-ssh-known-hosts-cm-yaml"]
+.argocd-ssh-known-hosts-cm.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/gitops/argocd-ssh-known-hosts-cm.yaml[role=include]
+----
+

modules/telco-hub-argocd-openshift-gitops-patch-yaml.adoc

@@ -0,0 +1,27 @@
+[id="telco-hub-assisted-service"]
+= Assisted Service
+
+The Assisted Service is deployed with the multicluster engine and {rh-rhacm}.
+
+.Assisted Service storage requirements
+[cols="1,2", options="header"]
+|====
+|Persistent volume resource
+|Size (GB)
+
+|`imageStorage`
+|50
+
+|`filesystemStorage`
+|700
+
+|`dataBaseStorage`
+|20
+|====
+
+
+[role="_additional-resources"]
+.Additional resources
+
+* link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/clusters/cluster_mce_overview#enable-cim-disconnected[Enabling central infrastructure management in disconnected environments]
+

modules/telco-hub-argocd-ssh-known-hosts-cm-yaml.adoc

@@ -0,0 +1,23 @@
+[id="telco-hub-cluster-topology"]
+= Cluster topology
+
+In production settings, the {product-title} hub cluster must be highly available to maintain high availability of the management functions.
+
+Limits and requirements::
+Use a highly available cluster topology for the hub cluster, for example:
+* Compact (3 nodes combined control plane and compute nodes)
+* Standard (3 control plane nodes + N compute nodes)
+
+Engineering considerations::
+* In non-production settings, a {sno} cluster can be used for limited hub cluster functionality.
+* Certain capabilities, for example {rh-storage}, are not supported on {sno}.
+In this configuration some hub cluster features might not be available.
+* The number of optional compute nodes can vary depending on the scale of the specific use case.
+* Compute nodes can be added later as required.
+
+[role="_additional-resources"]
+.Additional resources
+
+* link:https://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/architecture/architecture[{product-title} architecture]
+* link:https://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/postinstallation_configuration/post-install-node-tasks[Postinstallation node tasks]
+

modules/telco-hub-assisted-service.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-clusterLogNS-yaml"]
+.clusterLogNS.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/optional/logging/clusterLogNS.yaml[role=include]
+----
+

modules/telco-hub-cluster-topology.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-clusterLogOperGroup-yaml"]
+.clusterLogOperGroup.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/optional/logging/clusterLogOperGroup.yaml[role=include]
+----
+

modules/telco-hub-clusterLogNS-yaml.adoc

@@ -0,0 +1,8 @@
+[id="telco-hub-clusterLogSubscription-yaml"]
+.clusterLogSubscription.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/optional/logging/clusterLogSubscription.yaml[role=include]
+----
+
+

modules/telco-hub-clusterLogOperGroup-yaml.adoc

@@ -0,0 +1,7 @@
+[id="telco-hub-clusters-app-yaml"]
+.clusters-app.yaml
+[source,yaml]
+----
+link:https://raw.githubusercontent.com/openshift-kni/telco-reference/release-4.19/telco-hub/configuration/reference-crs/required/gitops/ztp-installation/clusters-app.yaml[role=include]
+----
+

modules/telco-hub-clusterLogSubscription-yaml.adoc

@@ -0,0 +1,59 @@
+[id="telco-hub-engineering-considerations"]
+= Hub cluster engineering considerations
+
+The follwing sections describe the engineering considerations for hub cluster resource scaling targets and utilization.
+
+Reference configuration scaling target::
++
+--
+The resource requirements for the hub cluster are directly dependent on the number of clusters being managed by the hub, the number of policies used for each managed cluster, and the set of features that are configured in {rh-rhacm}.
+
+The hub cluster reference configuration can support up to 3500 managed {sno} clusters under the following conditions:
+
+* 5 policies for each cluster with hub-side templating configured with a 10 minute evaluation interval.
+
+* Only the following {rh-rhacm} add-ons are enabled:
+
+** Policy controller
+** Observability with the default configuration
+
+* You deploy managed clusters by using {ztp} in batches of up to 500 clusters at a time.
+
+The reference configuration is also validated for deployment and management of a mix of managed cluster topologies.
+The specific limits depend on the mix of cluster topologies, enabled {rh-rhacm} features, and so on.
+In a mixed topology scenario, the reference hub configuration is validated with a combination of 1200 {sno} clusters, 400 compact clusters (3 nodes combined control plane and compute nodes), and 230 standard clusters (3 control plane and 2 worker nodes).
+
+[NOTE]
+====
+Specific dimensioning requirements are highly dependent on the cluster topology and workload.
+See "Storage requirements" for details.
+Adjust cluster dimensions for the specific characteristics of your fleet of managed clusters.
+====
+--
+
+Resource utilization::
++
+--
+Resource utilization was measured for hub clusters in the following scenario:
+
+* Under reference load managing 3500 {sno} clusters
+* 3-node compact cluster for management hub running on dual socket bare-metal servers.
+* Network impairment of 50ms round-trip latency, 100Mbps bandwidth limit and 0.02% packet loss.
+
+.Resource utilization values
+[options="header"]
+|====
+|Metric |Peak Measurement
+|OpenShift Platform CPU |106 cores (52 cores per node)
+|OpenShift Platform memory |504G (168G per node)
+|Persistent storage |<pending data from scale test>
+|====
+--
+
+
+[role="_additional-resources"]
+.Additional resources
+
+* link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.12/html-single/governance/index#template-comparison-table[Comparison of hub cluster and managed cluster templates]
+
+

modules/telco-hub-clusters-app-yaml.adoc

@@ -0,0 +1,26 @@
+[id="telco-hub-git-repository"]
+= Git repository
+
+The telco management hub cluster supports a GitOps driven methodology for installing and managing the configuration of OpenShift clusters for various telco applications.
+This methodology requires an accessible Git repository that serves as the authoritative source of truth for cluster definitions and configuration artifacts.
+
+Red Hat does not offer a commercially supported Git server.
+An existing Git server provided in the production environment can be used.
+Gitea and Gogs are examples of self-hosted Git servers that you can use.
+
+The Git repository is typically provided in the production network external to the hub cluster.
+In a large-scale deployment, multiple hub clusters can use the same Git repository for maintaining the definitions of managed clusters. Using this approach, you can easily review the state of the complete network.
+As the source of truth for cluster definitions, the Git repository should be highly available and recoverable in disaster scenarios.
+
+[NOTE]
+====
+For disaster recovery and multi-hub considerations, run the Git repository separately from the hub cluster.
+====
+
+Limits and requirements::
+* A Git repository is required to support the {ztp} functions of the hub cluster, including installation, configuration, and lifecycle management of the managed clusters.
+* The Git repository must be accessible from the management cluster.
+
+Engineering considerations::
+* The Git repository is used by the GitOps Operator to ensure continuous deployment and a single source of truth for the applied configuration.
+