SWsoft - Parallels relationship unveiled

Many of you have probably seen the article in Fortune magazine — http://money.cnn.com/2007/01/19/technology/fastforward_parallels.fortune/index.htm?postversion=2007012206 — about SWsoft and Parallels. I would like to make few comments about this:

·         With Parallels server products coming soon, SWsoft now provides a full range of server virtualization products. SWsoft customers don’t have to make a hard choice between hardware and OS virtualization. They can have both, and from the same vendor. SWsoft/Parallels is the only company in the world to provide a complete suite of virtualization software across Windows, Linux and MacOS.

·         We have always believed – and I blogged about it – that hardware and OS virtualization technologies complement each rather than compete. We don’t see Parallels product line competing with Virtuozzo or with VMware. We believe that Virtuozzo is the best technology for large-scale production installations – such as enterprise and service provider data centers – where it successfully competes with VMware. Parallels is better suited for small business and departmental applications, where flexibility and ease of use are more important that ultimate performance and density.

·         We are working on making Parallels and Virtuozzo interoperate and integrate with each other so that they can be a part of one solution, rather than two separate technologies. It’s a bit too early for technical details, but for starters, Virtuozzo Tools will support Parallels products

·         Even though Parallels is owned by SWsoft, they will remain different companies – different brands, different web sites – for quite a while. For example, SWsoft will continue using the recently introduced “red-and-white” branding and you’ll still find Parallels people at conferences in those crazy orange shirts.

How do you feel about this?

Comparing Isolation in Hardware and OS Virtualization

In our recent discussions with customers and analysts, the question of isolation has come up again. The reason is that whenever an article in the press needs a one-sentence explanation of OS virtualization it is something like ’OS virtualization provides better density and performance but cannot run different operating systems simultaneously and does not provide as much isolation between partitions as hardware virtualization technologies such as Xen or VMware.’ The two “not” statements require some clarification.

The statement about different operating systems is generally correct, but one needs to understand that Virtuozzo can run different Linux distributions – such as Red Hat, SuSE and Debian - as long as they use the same kernel.

The issue of isolation requires a more detailed explanation. There are several aspects of isolation:

·         Namespace isolation - Each partition provides a complete virtual copy of the entire system namespace – file system, registry, processes, users, IP addresses, port numbers, routing table, etc. Virtuozzo fully virtualizes all system namespaces and provides the same level of isolation as hardware virtualization.

·         Functional isolation - Each partition and the applications it hosts can be configured independently from other partitions and applications. Each Virtuozzo partition has a complete OS environment in it and provides the same level of isolation as hardware virtualization technology.

·         Fault isolation - A fault in one partition does not affect others. Here, hardware virtualization has a theoretical advantage – a fault in the OS would crash all virtual environments on a given machine, although an OS crash in one virtual machine would leave other VMs intact. In practice, though, more than 90% of OS crashes are related to hardware drivers, which always run in the host partition – the one that manages the physical hardware. So, when the driver crashes, the entire machine goes down regardless of which virtualization technology is used.

·         Performance isolation - A partition cannot monopolize resources of the entire machine and hamper performance of other partitions, yet will receive resources required for its execution. Here, Virtuozzo has an advantage over existing hardware technologies because it provides much more granular control of, and intelligent policies for, allocation of system resources.

·         Security isolation - A partition cannot breach security of other partitions, even if its own security was compromised. Each partition has an independent set of local users, including the administrative account. Because of the reasons mentioned above, Virtuozzo is at least as good as hardware virtualization.

However good these logical conclusions are, the best argument is experience. As of now, there are over 500,000 Virtuozzo virtual environments out there running on the public networks, without firewall protection, typically with about a hundred virtual environments on a single machine. In my opinion, these numbers speak for themselves.

What do you think?