Red Hat OpenStack Platform 17.1 delivers modern networks and enhanced security features

This week, Red Hat is attending OpenInfra Summit to share the news that Red Hat OpenStack Platform 17.1 will be released in the coming weeks. This release will deliver enhanced flexibility, efficiency and security features with new management and operation tools that enable OpenStack users to further manage their infrastructure at the edge. 

Last year, we announced continued efforts for service providers to rely on Red Hat OpenStack Platform as they build out massive, modern 5G network infrastructures. This year - we’re extending this work by helping service providers bridge existing 4G investments with new 5G networks. This helps realize advanced use cases like 5G standalone (SA) core, network, storage and compute and open virtualized radio access networks with increased resilience from the core to the edge. 

Red Hat OpenStack Platform 17.1 will enable service providers to scale faster and maximize their resources through a virtualized control plane running on Red Hat OpenShift. This is designed to drive optimized network capacity and performance, greater efficiency and further simplify deployments at scale, allowing for the management of both 4G virtualized and 5G containerized workloads from the same environment. This helps better position service providers to future-proof investments without leaving workloads behind and progress on their cloud-native journey more easily. Service providers can expect:

• Multi-version support for Red Hat Enterprise Linux (RHEL) that allows Red Hat OpenStack Platform 17.1 compute nodes to run on either RHEL 8.4 and/or RHEL 9.2 to provide service providers with flexibility in their choice of hardware platform while increasing compatibility across a wide range of workloads;
• An enhanced upgrade experience from Red Hat OpenStack Platform 16.2 to 17.1.
  • Red Hat OpenStack Platform content upgrade and RHEL upgrades have been separated into distinct steps, aimed at  improving flexibility and easing troubleshooting. With multi-version support for RHEL, service providers can now delay the RHEL compute nodes reboot to a later stage.
• Logical volume management partitioning, which provides short-lived snapshot and revert functionalities. This enables service providers to revert back to a previous state during the upgrade process;
• Domain Name System as a Service (DNSaaS), also known as Designate, which includes a REST API for domain and record management, is multi-tenanted, and integrates with OpenStack Identity Service (keystone) for authentication. DNSaaS includes a framework for integration with Compute (nova) and OpenStack Networking (neutron) notifications, allowing auto-generated DNS records. In addition, DNSaaS includes integration support for Bind9;
• Open Virtual Networking (OVN) capabilities to innovate network infrastructure services and quality of service metering, providing for bandwidth measurement in specific functions. These new capabilities also help improve OVN migration time for large scale deployments within maintenance windows;
• Octavia load balancer to further scalability by increasing the number of connections that can be directed simultaneously;
• Virtual data path acceleration for a more efficient hardware offloading mechanism in both physical and virtual environments.

A more flexible and open platform 

From the beginning, OpenStack has been the open source private cloud that provides a public sector stack with a greater security posture. Red Hat OpenStack Platform 17.1 continues this approach with a number of key systems and network security enhancements aimed at helping service providers’ ability to exert control over their own digital infrastructure, data and technology. Red Hat OpenStack Platform is an adaptable solution for these projects, built on an open source software foundation that Red Hat has been practicing for more than 25 years. From healthcare, the public sector, telecommunications and more, Red Hat OpenStack Platform has security features that can meet the growing need to be ‘in control’ of your IT environment. Our latest release includes:

• Improved security features with roles-based access control (RBAC) for expanded and more granular enforcement across OpenStack services to help deliver increased functionality, improved suitability and a reduced attack surface;  
• Support for FIPS-140 (ISO/IEC 19790) compatibility^* to help meet service providers’ security requirements;
• Federation through OpenID Connect to use an external identity provider (IdP) to manage user authentication and authorization;
• Fernet tokens help protect users’ confidential information and enable their experience with the platform to be fast, convenient, and trusted.

With open source, there is a transparent and demonstrated trust in the communities building these solutions. Red Hat is able to extend our leadership on open standards and interoperability beyond technology to include operations and data, and provide demonstrated architecture patterns for an open hybrid sovereign cloud, from cloud to edge and back.
 

^*OpenStack 17.1 is based on Red Hat Enterprise Linux (RHEL) 9.2. RHEL 9.2 has not yet been submitted for FIPS validation. Red Hat expects, though cannot commit to a specific timeframe, to obtain FIPS validation for RHEL 9.0 and RHEL 9.2 modules, and later even minor releases of RHEL 9.x. Updates will be available in Compliance Activities and Government Standards