SlideShare a Scribd company logo

Technical Introduction to RHEL8

V
vidalinux

This document provides an overview of new features in Red Hat Enterprise Linux 8. It discusses improvements to system management with Cockpit, changes to package management with Application Streams and Flatpak, updated container technologies including Podman and Buildah, and the ability to build custom RHEL images with Image Builder. The document also notes changes to networking with IPVLAN, storage with Stratis, and security with the new nftables firewall.

Technology
1 of 32
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
TECHNICAL INTRODUCTION TO RHEL 8 Antonio C. Vélez Báez Cloud Security Consultant OSCP, RHCE, RHCI, RHCX, RHCSA-RHOS, Linux+ August 30, 2019
AGENDA • What’s new - Overview • Where to get RHEL 8 ? • System management with Cockpit • What is new in package management ? • Container technologies : Podman, Buildah and Skopeo • Build your own RHEL images with Image Builder • Centralized user session recording with System recorder (tlog) • Networking changes • Storage changes • Security changes
:: WHAT’S NEW ?
WHAT’S NEW IN RHEL 8 ? • Cockpit improvements • YUM 4 , Application stream and Flatpak • Python 3.6 (**note on Ansible, 2.8+) • Kernel 4.18 (RHEL 7 : Kernel 3.10) • 5-level page table (up to 4 PB ram) • Networking changes • Security Changes • Nvdimm storage support • Containers : Podman, Buildah and Skopeo • Composer ( build custom RHEL images ) • System purpose ( record the intended use ) • Wayland ( xorg replacement ) • Stratis ( lvm replacement ) • Leapp ( release upgrade tool ) • New patches schedule • And more ...
:: WHERE TO GET RHEL 8 ?
Customer portal: • https://access.redhat.com/products/red-hat-enterprise-linux/ • ISO and KVM images Developer program: • https://developers.redhat.com/rhel8/ • VirtualBox image https://developers.redhat.com/rhel8/install-rhel8- vbox/ Architectures available: • x86_64 • ppc64le • aarch64 (raspberry pi) • S390x DOWNLOAD RHEL 8
:: SYSTEM MANAGEMENT WITH COCKPIT
COCKPIT Cockpit is an interactive server admin interface (https://cockpit-project.org/) • IDM - idm domain admin can manage Cockpit • Manage remote server via dashboard • New Subscription manager gui • Manage users and groups • Manage and configure networks • Install and remove packages • Tlog (session recorder) gui • Composer - gui • Virt manager replacement
:: WHAT IS NEW IN PACKAGE MANAGEMENT ?
APPLICATION STREAM Provides modularity to package management • RHEL 8 content is distributed through the two main repositories: BaseOS and Application Stream (AppStream). BaseOS • The BaseOS repository provides the core set of the underlying OS content in the form of traditional RPM packages. Same lifecycle as RHEL 7 Application Stream • The Application Stream repository provides content with varying life cycles as both modules and traditional packages.
FLATPAK Flatpak is a next-generation technology for building and distributing desktop applications on Linux
:: BUILD YOUR OWN RHEL IMAGES WITH IMAGE BUILDER
Technical Introduction to RHEL8
:: CONTAINER TECHNOLOGIES
Technical Introduction to RHEL8
Technical Introduction to RHEL8
Technical Introduction to RHEL8
Technical Introduction to RHEL8
Technical Introduction to RHEL8
:: BUILD YOUR OWN RHEL IMAGES WITH IMAGE BUILDER
Technical Introduction to RHEL8
:: SYSTEM RECORDER - TLOG
Technical Introduction to RHEL8
:: NETWORKING CHANGES
Technical Introduction to RHEL8
IPVLAN connects containers nested in virtual machines to networking hosts • IPVLAN is a driver for a virtual network device that can be used in a container environment to access the host network • IPVLAN exposes a single MAC address to the external network, regardless the number of IPVLAN devices inside the host network • So even with multiple IPVLAN devices in multiple containers, the local switch will see one single MAC address only.
:: STORAGE CHANGES
Technical Introduction to RHEL8
• Stratis is a new volume management file system that is faster and easier to manage than its predecessors • It is Red Hat’s answer to Btrfs, ZFS and LVM and enables advanced storage features • Thin provisioning • Snapshosts • Cache tire • Programmatic API • Monitoring and Repair • Stratis is not a file system, it’s a solution that helps organizing storage into pools from which multiple independent file systems can be created UNDERSTANDING STRATIS
:: SECURITY NFS TABLES
• nftables is the successor of iptables • In RHEL 8, nftables is used as the back-end to firewalld • Architecture is very similar to iptables syntax Many improvements: • Support for lookup tables, which means that rules no longer a scanned in a linear way • Updates to chains are atomic and don't require a reload of the entire table • Kernel can update applications about rule changes • Using the "inet" protocol family, rules can be applied for IPv4 and IPv6 simultaneously UNDERSTANDING NFTABLES
THANK YOU ! linkedin.com/company/vidalinux youtube.com/vidalinux facebook.com/vidalinux twitter.com/vidalinux

More Related Content

What's hot (20)

PPT
RedHat Linux
Apo
 
PDF
Exadata master series_asm_2020
Anil Nair
 
PPT
Linux presentation
Nikhil Jain
 
PDF
OpenShift 4 installation
Robert Bohne
 
PPTX
Docker and kubernetes
Dongwon Kim
 
PPTX
Windows Server 2019.pptx
masbulosoke
 
PDF
Ceph Block Devices: A Deep Dive
Red_Hat_Storage
 
PPT
Windows Architecture
Amrith Krishna
 
PPTX
Qnx os
Student
 
ODP
Introduction to Red Hat
Albert Wong
 
PPTX
Introduction to kubernetes
Rishabh Indoria
 
PDF
Red Hat Insights
Alessandro Silva
 
PDF
Reducing Risk When Upgrading MySQL
Kenny Gryp
 
PDF
Best practices for MySQL High Availability
Colin Charles
 
ODP
ansible why ?
Yashar Esmaildokht
 
PDF
An Introduction to Kubernetes
Imesh Gunaratne
 
PDF
DevOps avec Ansible et Docker
Stephane Manciot
 
PDF
Intel DPDK Step by Step instructions
Hisaki Ohara
 
PDF
Under the Hood of a Shard-per-Core Database Architecture
ScyllaDB
 
PDF
Ceph c01
Lâm Đào
 
RedHat Linux
Apo
 
Exadata master series_asm_2020
Anil Nair
 
Linux presentation
Nikhil Jain
 
OpenShift 4 installation
Robert Bohne
 
Docker and kubernetes
Dongwon Kim
 
Windows Server 2019.pptx
masbulosoke
 
Ceph Block Devices: A Deep Dive
Red_Hat_Storage
 
Windows Architecture
Amrith Krishna
 
Qnx os
Student
 
Introduction to Red Hat
Albert Wong
 
Introduction to kubernetes
Rishabh Indoria
 
Red Hat Insights
Alessandro Silva
 
Reducing Risk When Upgrading MySQL
Kenny Gryp
 
Best practices for MySQL High Availability
Colin Charles
 
ansible why ?
Yashar Esmaildokht
 
An Introduction to Kubernetes
Imesh Gunaratne
 
DevOps avec Ansible et Docker
Stephane Manciot
 
Intel DPDK Step by Step instructions
Hisaki Ohara
 
Under the Hood of a Shard-per-Core Database Architecture
ScyllaDB
 
Ceph c01
Lâm Đào
 

Similar to Technical Introduction to RHEL8 (20)

PDF
Rhel8 Beta - Halifax RHUG
Nicole Maselli
 
PDF
RHEL8-BETA-RHUG.pdf
Harsh Shah
 
PDF
OCP Telco Engineering Workshop at BCE2017
Radisys Corporation
 
PDF
Linux Containers and Docker SHARE.ORG Seattle 2015
Filipe Miranda
 
ODP
ERTS 2008 - Using Linux for industrial projects
Christian Charreyre
 
PPTX
First Look Webcast: OneCore Storage SDK 3.6 Roll-out and Walkthrough
Emulex Corporation
 
PPTX
A First Look at HPCC Systems 7.0, Innovation in Action
HPCC Systems
 
PDF
OpenShift_Installation_Deep_Dive_Robert_Bohne.pdf
ssuser9e06a61
 
PPTX
Webinar: OpenEBS - Still Free and now FASTEST Kubernetes storage
MayaData Inc
 
PDF
December 2020 CIALUG: Local Kubernetes for Dummies-So you want to move on fro...
Andrew Denner
 
PDF
Architecture of Cisco Container Platform: A new Enterprise Multi-Cloud Kubern...
Sanjeev Rampal
 
PPTX
Ceph Day SF 2015 - Deploying flash storage for Ceph without compromising perf...
Ceph Community
 
PDF
Wheeler w 0450_linux_file_systems1
sprdd
 
PDF
Wheeler w 0450_linux_file_systems1
sprdd
 
PPTX
Cloudexpowest opensourcecloudcomputing-1by arun kumar
Arun Kumar
 
PPTX
Cloudexpowest opensourcecloudcomputing-1by arun kumar
Arun Kumar
 
PDF
Build Your Own PaaS, Just like Red Hat's OpenShift from LinuxCon 2013 New Orl...
OpenShift Origin
 
PDF
2010-01-28 NSA Open Source User Group Meeting, Current & Future Linux on Syst...
Shawn Wells
 
PPTX
Hitchhiker's guide to Cloud-Native Build Pipelines and Infrastructure as Code
Robert van Mölken
 
PPTX
VMworld 2015: The Future of Software- Defined Storage- What Does it Look Like...
VMworld
 
Rhel8 Beta - Halifax RHUG
Nicole Maselli
 
RHEL8-BETA-RHUG.pdf
Harsh Shah
 
OCP Telco Engineering Workshop at BCE2017
Radisys Corporation
 
Linux Containers and Docker SHARE.ORG Seattle 2015
Filipe Miranda
 
ERTS 2008 - Using Linux for industrial projects
Christian Charreyre
 
First Look Webcast: OneCore Storage SDK 3.6 Roll-out and Walkthrough
Emulex Corporation
 
A First Look at HPCC Systems 7.0, Innovation in Action
HPCC Systems
 
OpenShift_Installation_Deep_Dive_Robert_Bohne.pdf
ssuser9e06a61
 
Webinar: OpenEBS - Still Free and now FASTEST Kubernetes storage
MayaData Inc
 
December 2020 CIALUG: Local Kubernetes for Dummies-So you want to move on fro...
Andrew Denner
 
Architecture of Cisco Container Platform: A new Enterprise Multi-Cloud Kubern...
Sanjeev Rampal
 
Ceph Day SF 2015 - Deploying flash storage for Ceph without compromising perf...
Ceph Community
 
Wheeler w 0450_linux_file_systems1
sprdd
 
Wheeler w 0450_linux_file_systems1
sprdd
 
Cloudexpowest opensourcecloudcomputing-1by arun kumar
Arun Kumar
 
Cloudexpowest opensourcecloudcomputing-1by arun kumar
Arun Kumar
 
Build Your Own PaaS, Just like Red Hat's OpenShift from LinuxCon 2013 New Orl...
OpenShift Origin
 
2010-01-28 NSA Open Source User Group Meeting, Current & Future Linux on Syst...
Shawn Wells
 
Hitchhiker's guide to Cloud-Native Build Pipelines and Infrastructure as Code
Robert van Mölken
 
VMworld 2015: The Future of Software- Defined Storage- What Does it Look Like...
VMworld
 
Ad

Recently uploaded (20)

PDF
GDG Cloud Southlake #44: Eyal Bukchin: Tightening the Kubernetes Feedback Loo...
James Anderson
 
PPTX
CapCut Pro PC Crack Latest Version Free Free
josanj305
 
PPTX
01_Approach Cyber- DORA Incident Management.pptx
FinTech Belgium
 
PDF
FME in Overdrive: Unleashing the Power of Parallel Processing
Safe Software
 
PDF
Deploy Faster, Run Smarter: Learn Containers with QNAP
QNAP Marketing
 
PPTX
Enabling the Digital Artisan – keynote at ICOCI 2025
Alan Dix
 
PDF
Understanding The True Cost of DynamoDB Webinar
ScyllaDB
 
PDF
Pipeline Industry IoT - Real Time Data Monitoring
Safe Software
 
PDF
How to Comply With Saudi Arabia’s National Cybersecurity Regulations.pdf
Bluechip Advanced Technologies
 
PDF
NLJUG Speaker academy 2025 - first session
Bert Jan Schrijver
 
PDF
Kit-Works Team Study_20250627_한달만에만든사내서비스키링(양다윗).pdf
Wonjun Hwang
 
PPTX
Securing Model Context Protocol with Keycloak: AuthN/AuthZ for MCP Servers
Hitachi, Ltd. OSS Solution Center.
 
PDF
TrustArc Webinar - Navigating APAC Data Privacy Laws: Compliance & Challenges
TrustArc
 
PDF
Draugnet: Anonymous Threat Reporting for a World on Fire
treyka
 
PDF
Introducing and Operating FME Flow for Kubernetes in a Large Enterprise: Expe...
Safe Software
 
PDF
Java 25 and Beyond - A Roadmap of Innovations
Ana-Maria Mihalceanu
 
PDF
Governing Geospatial Data at Scale: Optimizing ArcGIS Online with FME in Envi...
Safe Software
 
PDF
ICONIQ State of AI Report 2025 - The Builder's Playbook
Razin Mustafiz
 
PDF
Quantum Threats Are Closer Than You Think – Act Now to Stay Secure
WSO2
 
PPTX
MARTSIA: A Tool for Confidential Data Exchange via Public Blockchain - Pitch ...
Michele Kryston
 
GDG Cloud Southlake #44: Eyal Bukchin: Tightening the Kubernetes Feedback Loo...
James Anderson
 
CapCut Pro PC Crack Latest Version Free Free
josanj305
 
01_Approach Cyber- DORA Incident Management.pptx
FinTech Belgium
 
FME in Overdrive: Unleashing the Power of Parallel Processing
Safe Software
 
Deploy Faster, Run Smarter: Learn Containers with QNAP
QNAP Marketing
 
Enabling the Digital Artisan – keynote at ICOCI 2025
Alan Dix
 
Understanding The True Cost of DynamoDB Webinar
ScyllaDB
 
Pipeline Industry IoT - Real Time Data Monitoring
Safe Software
 
How to Comply With Saudi Arabia’s National Cybersecurity Regulations.pdf
Bluechip Advanced Technologies
 
NLJUG Speaker academy 2025 - first session
Bert Jan Schrijver
 
Kit-Works Team Study_20250627_한달만에만든사내서비스키링(양다윗).pdf
Wonjun Hwang
 
Securing Model Context Protocol with Keycloak: AuthN/AuthZ for MCP Servers
Hitachi, Ltd. OSS Solution Center.
 
TrustArc Webinar - Navigating APAC Data Privacy Laws: Compliance & Challenges
TrustArc
 
Draugnet: Anonymous Threat Reporting for a World on Fire
treyka
 
Introducing and Operating FME Flow for Kubernetes in a Large Enterprise: Expe...
Safe Software
 
Java 25 and Beyond - A Roadmap of Innovations
Ana-Maria Mihalceanu
 
Governing Geospatial Data at Scale: Optimizing ArcGIS Online with FME in Envi...
Safe Software
 
ICONIQ State of AI Report 2025 - The Builder's Playbook
Razin Mustafiz
 
Quantum Threats Are Closer Than You Think – Act Now to Stay Secure
WSO2
 
MARTSIA: A Tool for Confidential Data Exchange via Public Blockchain - Pitch ...
Michele Kryston
 
Ad

Technical Introduction to RHEL8

  • 1. TECHNICAL INTRODUCTION TO RHEL 8 Antonio C. Vélez Báez Cloud Security Consultant OSCP, RHCE, RHCI, RHCX, RHCSA-RHOS, Linux+ August 30, 2019
  • 2. AGENDA • What’s new - Overview • Where to get RHEL 8 ? • System management with Cockpit • What is new in package management ? • Container technologies : Podman, Buildah and Skopeo • Build your own RHEL images with Image Builder • Centralized user session recording with System recorder (tlog) • Networking changes • Storage changes • Security changes
  • 4. WHAT’S NEW IN RHEL 8 ? • Cockpit improvements • YUM 4 , Application stream and Flatpak • Python 3.6 (**note on Ansible, 2.8+) • Kernel 4.18 (RHEL 7 : Kernel 3.10) • 5-level page table (up to 4 PB ram) • Networking changes • Security Changes • Nvdimm storage support • Containers : Podman, Buildah and Skopeo • Composer ( build custom RHEL images ) • System purpose ( record the intended use ) • Wayland ( xorg replacement ) • Stratis ( lvm replacement ) • Leapp ( release upgrade tool ) • New patches schedule • And more ...
  • 5. :: WHERE TO GET RHEL 8 ?
  • 6. Customer portal: • https://access.redhat.com/products/red-hat-enterprise-linux/ • ISO and KVM images Developer program: • https://developers.redhat.com/rhel8/ • VirtualBox image https://developers.redhat.com/rhel8/install-rhel8- vbox/ Architectures available: • x86_64 • ppc64le • aarch64 (raspberry pi) • S390x DOWNLOAD RHEL 8
  • 7. :: SYSTEM MANAGEMENT WITH COCKPIT
  • 8. COCKPIT Cockpit is an interactive server admin interface (https://cockpit-project.org/) • IDM - idm domain admin can manage Cockpit • Manage remote server via dashboard • New Subscription manager gui • Manage users and groups • Manage and configure networks • Install and remove packages • Tlog (session recorder) gui • Composer - gui • Virt manager replacement
  • 9. :: WHAT IS NEW IN PACKAGE MANAGEMENT ?
  • 10. APPLICATION STREAM Provides modularity to package management • RHEL 8 content is distributed through the two main repositories: BaseOS and Application Stream (AppStream). BaseOS • The BaseOS repository provides the core set of the underlying OS content in the form of traditional RPM packages. Same lifecycle as RHEL 7 Application Stream • The Application Stream repository provides content with varying life cycles as both modules and traditional packages.
  • 11. FLATPAK Flatpak is a next-generation technology for building and distributing desktop applications on Linux
  • 12. :: BUILD YOUR OWN RHEL IMAGES WITH IMAGE BUILDER
  • 20. :: BUILD YOUR OWN RHEL IMAGES WITH IMAGE BUILDER
  • 26. IPVLAN connects containers nested in virtual machines to networking hosts • IPVLAN is a driver for a virtual network device that can be used in a container environment to access the host network • IPVLAN exposes a single MAC address to the external network, regardless the number of IPVLAN devices inside the host network • So even with multiple IPVLAN devices in multiple containers, the local switch will see one single MAC address only.
  • 29. • Stratis is a new volume management file system that is faster and easier to manage than its predecessors • It is Red Hat’s answer to Btrfs, ZFS and LVM and enables advanced storage features • Thin provisioning • Snapshosts • Cache tire • Programmatic API • Monitoring and Repair • Stratis is not a file system, it’s a solution that helps organizing storage into pools from which multiple independent file systems can be created UNDERSTANDING STRATIS
  • 30. :: SECURITY NFS TABLES
  • 31. • nftables is the successor of iptables • In RHEL 8, nftables is used as the back-end to firewalld • Architecture is very similar to iptables syntax Many improvements: • Support for lookup tables, which means that rules no longer a scanned in a linear way • Updates to chains are atomic and don't require a reload of the entire table • Kernel can update applications about rule changes • Using the "inet" protocol family, rules can be applied for IPv4 and IPv6 simultaneously UNDERSTANDING NFTABLES