@Dashrender said in Top Ten Happiest Places on Earth in 2019:

Clearly it doesn't though - taxes are to high - likely due to corruption.

Here we go again. I'm not talking about how high the taxes are, I'm talking about how a combination of taxes and private companies can create healthy competition, while keeping healthcare at a good level and easily accessible.

This is what it looks like:

Under Israel’s health care system, all citizens are entitled to basic medical services. The costs are covered mainly by a national health tax: Wage-earners and self-employed individuals pay 3.1 percent of their monthly salary up to 5,804 shekels (about $1,600), and 5 percent on everything earned beyond that. Women who do not work outside the home are exempt, while students, retirees and others who do not earn a fixed salary are required to pay a small fee of about $25 a month in exchange for coverage. All children are covered free of charge through the army.

In addition, Israelis pay very small co-pays for visits to the doctor and most medicines.

Services are provided through four main health maintenance organizations, known in Israel as kupot holim, which compete for patients. Beyond the basic government-guaranteed services, the HMOs also offer enhanced insurance plans for additional fees.

@Mike-Davis said in Top Ten Happiest Places on Earth in 2019:

I like the Dutch system of health care vouchers. It gives everyone coverage, but is competitive because private companies compete for the voucher money.

It's like that in Israel - there are several private companies competing for customers, each has hospitals and clinics and whatnot. They aren't paid by the customers though, but by the portion of health taxes collected, relevant to their portion of the overall taxpaying population. If they want people subscribing to them, they have to provide good service, so there's healthy competition, and yet as a patient, I'm not paying any premiums, it's all in the tax. The only problem is, in Israel the taxes are insanely high (I was paying 56%) and could be much lower, but the system itself seems to work very well

@Mike-Davis it's all about having a balanced system (note, I'm not saying fair, just balanced). If the tax rate isn't murderous, and that provides me with healthcare I don't get an extra bill for, that works for me. Just like paying car insurance that isn't insanely expensive, and in case of an accident, being covered instead of going out on a limb. In Canada these things are more or less balanced. Again, not perfect, but well balanced enough for me to feel comfortable with.

@Dashrender said in Top Ten Happiest Places on Earth in 2019:

You know this doesn't exist anywhere - right? If it's free - it's paid by taxes.. Now that said - I have no clue what the actual typical tax rate is in Europe say compared to the USA ( I know that my tax rate between state and Fed is around 17% - that doesn't seem right, but this is based on my actual pay, not the post standard deductions pay, which would clearly be much higher.

Thanks you captain obvious. I'm happy to pay higher taxes if it means I can get proper medical care without being presented with a huge bill. I've actually given up on additional paid medical insurance 6 months ago, and the level at which I get medical coverage did not decrease, beyond nice perks, like a few hundred $ per year in massages, physio and new eyeglasses every 2 years. I still pay 0 for covered meds, 0 for children's dental care etc. It could be better, but I'm not here to be sick on someone else's account

@scottalanmiller said in Top Ten Happiest Places on Earth in 2019:

@dyasny said in Top Ten Happiest Places on Earth in 2019:

@Emad-R high income from the outside can make you happy almost anywhere, I doubt it's much of a real factor.

High income.... can make you happy almost anywhere.

High income can make you happy to a point

When I was picking a country to live in, the choice wasn't so great. My criteria were:

• English
• Free-ish medicare
• Affordable higher education
• Actual seasons with real winter and real summer
• A decent market for IT jobs
• A nice overall mentality
• A place where I can raise my kids without worries

It all converges on Canada for me. I've lived and worked in Europe, visited the US quite a bit and spent years in both the Middle East and Eastern Europe, so I have a fair bit of knowledge of what life looks like in other places.

I'm not chasing the big bucks, but I do want to live in a nice house in a nice neighbourhood and be able to afford enough luxury. In 5 years in Canada I got all that and more. Never going to be a millionaire, but that was never the point.

@Emad-R high income from the outside can make you happy almost anywhere, I doubt it's much of a real factor.

@scottalanmiller said in Virt-manager: IDE disks:

They need to just get off of my lawn.

LOL, funny how I'd never have understood the joke before moving to NA and buying a house

@scottalanmiller said in Virt-manager: IDE disks:

The logical choice would be just ATA, since IDE is weird (long ago deprecated) and either SATA/PATA make no sense as they specify parts that don't apply.

Yeah, but kids^W admins these days only ever heard of SATA, so give 'em SATA to keep them happy

@scottalanmiller said in Virt-manager: IDE disks:

Right, ATA basically means IDE. IDE was formalized into ATA and renamed. SATA means ATA over Serial, since the physical piece is meaningless in a VM, definitely some funky marketing to put the physical piece into the name.

Either someone too young became the maintainer or the PMs decided to rebrand. In any case, there was no reason to keep both IDE/PATA and SATA available as options

@FATeknollogee said in Virt-manager: IDE disks:

@dyasny said in Virt-manager: IDE disks:

Why would you even want IDE? Are you running a weird guest OS that doesn't support virtio?

I wouldn't want IDE.
The download (an ova file) came that way, the vendor exported it from ESXi

I see, well, I just started a VM with a SATA disk:

 -drive file=/var/lib/libvirt/images/rhel8-unknown.qcow2,format=qcow2,if=none,id=drive-sata0-0-0 -device ide-hd,bus=ide.0,drive=drive-sata0-0-0,id=sata0-0-0,bootindex=2

Looks like IDE to me, they probably renamed it to SATA for the millenials not to get scared by the older term (and for QEMU, any IDE was always closer to SATA because the access to the disks was always serial, one virtual controller device per disk)

@scottalanmiller said in New Infrastructure to Replace Scale Cluster:

So if a VM dies, oVirt will provide non-FT failover, yes. And by having failover you might achieve HA. And oVirt is a critical part of making that possible. But it itself isn't HA, nor does it guarantee HA. It's just a failover component that you can use to "do" HA.

It's a component you buy (well, this one is opensource, but still), part of a solution that would cover other potential failure points. The solution in general is also something you can buy, in order to achieve a certain level of HA for those VMs

@scottalanmiller said in New Infrastructure to Replace Scale Cluster:

FT does mean instant "transparent" failover, but it isn't without risk. If it was, Boeing wouldn't be having the issues it has today (literally today.) You are right, HA is about improving A, nothing more. It has to be better than SA (standard A) but doesn't imply FT or anything like FT.

It means transparent failover for vmware, but in general in means the service can tolerate a certain amount of resources failing without having downtime.

Ive said many times, a really great vendor hardware agreement can provide HA pretty cheaply in the right circumstances (in Manhattan, HPE has a response time of around 15 minutes to get hardware into datacenters, for real!) That won't work on a farm in Iowa, but it can work in Manhattan.

They won't ship anything until they've done at least a bit of diags anyway, so those 15 minutes aren't really 15 minutes. But that's also nowhere near the topic for this conversation

HA is achieve in any way that results in HA as the final product. FT is a specific type of thing for achieving HA (that's its purpose, better availability) but is very specific in how it tries to do it.

The key difference is...

HA is a concept or term for resulting risk or projected availability. It's just a "rating".
FT is a mechanism or family / class of mechanisms whose intended purpose is to get you to or beyond HA. But if FT doesn't get you HA, and it often doesn't, it doesn't make it not-FT, it just makes it not HA.

Or to put it another way, HA is an end and FT is a means. FT's only goal isn't HA, it is also no service interruption which is not addressed in HA at all. But FT can still fail, and in some cases fail big time, and that can lead to missing HA (or even SA) even with FT.

FT and HA are different techniques achieving different goals. Just like, for example, backup and raid. Yes, in certain situations, FT can replace HA, but that doesn't make one a subset of the other, it makes one a potential replacement for the other, and quite often the replacement isn't the right thing to do.

You can't really buy HA for that. You need to encompass not just the storage and app server, but the network it is attached to, the datacenter(s) it is in, the data shuffling between data centers, the generators, the people and processes around all of it, maintenance schedules, and on and on. Theoretically you can buy anything as a service, but in reality, you have to essentially outsource IT, HR, Facilities, Purchasing and maybe some others to get HA for the service as there are so many internal pieces that have to come together to make it all work. The ability to make the system HA simply requires such scope and authorization that a vendor basically can never do it unless that vendor is an IT outsourcer, in which case, we call it "doing" not "buying" because it is the same as internal staff and not productized.

Well, I call anything you pay for "buying". Unless instead of money I give a goat away for it, then it's "bartering". Now, jokes aside, you keep to keep an eye on the scope for the HA and the budget for it. You can, of course, cover every possible corner case failure scenario and buy more tech to protect against it, but you can only go so far. Which means, following your own logic, that nothing you ever buy or "do" will ever give you real true veritable HA, only slightly hightened A, and no more, because there's always the ever fleeting chance of yet another potential disaster that can still cause an outage no matter what you do.

Starting small, you buy a server and install an app. The app has a watchdog to make sure it hadn't crashed and start it again if it has. That's a very minor HA protecting against a very small scope of failure. You set up raid1 in that server - you just increased the HA by covering disk failure. Keep growing that by small steps, and you have a cluster with redundant everything and DR sites across the universe, everything replicating using an ansible device and whatnot. Whoops, a new big bang happens, wiping out the universe (albeit very slowly), that's an event you still haven't covered, so, following your logic - you never had HA.

Why would you even want IDE? Are you running a weird guest OS that doesn't support virtio?

Thanks for the zeroteer link, haven't heard of it before.

What I do is use sshuttle. It basically does exactly the same thing as a VPN, but through an SSH tunnel. I use Linux everywhere, so it's easy, but afaik, OpenSSH can be installed on Windows these days as well.

@scottalanmiller said in New Infrastructure to Replace Scale Cluster:

That might be a way to achieve HA, but it isn't the definition of it. The definition of it comes from the level of availability, nothing to do with the mechanisms or attempts at it. You are correct that people often confuse HA (a level of availability) with FT (a physical type of protection whose purpose is to help provide HA, or at least "better A".)

No, FT is about zero service interruptions, you're basically running multiple copies of the same service in either standby or load-balanced manner, and if one of a few (depends on the SLA) service instances go down, overall service availability is not harmed. With HA, the service availability is higher than with none, but it's not meant to be zero downtime in case of failure. All HA does is monitor the service and use technical means of making sure it stays up as much as possible, by failing the service over to another resource (a DR site, a standby host, a DC on Mars - doesn't matter).

With today's advent of distributed services, FT is what is usually being run, since it does make more sense, but HA is still used for the bulkier services, like VMs or large service nodes (e.g. openstack controllers)

But it is also incredibly true. You can't "just buy" HA, doesn't work. No product anywhere can do HA if you don't treat it properly or make the things around it support HA as well. It doesn't require "inventing anything", it's just obvious common sense.

I don't see it that way. If you want HA for a service, you pay for a solution to make it HA, that includes all the components that will protect it from various types of failure as well as provide SBA (several layers of SBA if you have the money). But in the end, it all translates to dollars. You level of paranoia (or the list of stuff you want to protect the service from) vs your budget.

Sure, but that is 1) almost always untrue, very few vendors actually do anything to achieve HA 2) when they do, they are becoming the IT department and building, not buying, HA.

1. All the vendors dealing with IT infrastructure have tons of HA oriented solutions. From hardware vendors selling RAID controllers, power management devices and redundant PSUs, to software vendors building support for HA into their products. I find it hard to think of any IT product I've used recently that didn't have HA or FT built in.

2. That doesn't make any sense.

See, this is where it all falls apart. Your example proves our point. In your example with the IPOD, you aren't even trying to make HA. oVirt's HA option is actually terrible here because it tricks the humans into thinking there is protection where there is not and makes people often (where makes = allows their brains to accept) introduce more risk, lowing their availability below standard, by seeing the term HA applies to one isolated layer of the stack and ignoring the increased risk of the overall stack.

No, the solution provides protection against a hypervisor failure. You also want to protect against switch failure - buy another switch, you also want to protect against storage failure - make the storage HA. oVirt isn't a networking or storage platform, it uses storage and networking. What oVirt does do is run VMs and control hypervisors. So if a VM dies or a hypervisor dies - oVirt will provide the HA. If all you have are three hosts, what I advised on isn't the safest solution, but it is the easiest to build and run, as well as expand upon later, when budget is available for covering the SPOFs in the setup. It will also provide better performance than using gluster, and there might be more advantages in terms of disk space availability, depending on the hardware the OP has.

I'm not arguing it is safer this way, I'm saying it is easier to build and reasonably safe if backups are done, especially if there is more budget to come in later in the game. Something to get started with.

The user has to be aware of the SPOFs in the system, I'm not saying there are none. The user also has to work at eliminating them, but again, you're applying the logic of a large company with large resources to a tiny little shop with 3 machines. At this level, they might as well just run everything locally on 3 disparate hosts and be done, that's even easier. The point of oVirt here is to start a proper virtual DC from some small set of available boxes and grow it into a proper solution. Nothing involving 3 hosts and a switch can provide real HA in any case.

So please stop running away into depths that are irrelevant to this particular setup. We already know you're an IT bigshot, there's no need to keep showing off.

Integrator is industry speak for the vendor advocate. When anyone in IT says vendor, they mean integrator. It's just accepted that they are the channel arm for their vendors and to the IT side they are one and the same. Both are vendor advocates, both are sales people, one just repeats the marketing of the other.

Sure, but that integrator will do everything for you - networking, HVAC, servers, storage, software - all designed and built as per your requirements, as one single product - you DC.

The marketing trick ...

So much text with nothing actually said. That's actually a marketing trick. Or a politician's trick, whatever.

When you deal with an integrator/vendor/consultant/etc you go over the proposed solution, and it is up to you to see where you're being oversold on stuff and where the proposed parts of the system are actually needed. If you haven't done your due diligence - it's your fault and you should leave the profession, instead of blaming "marketing tricks". All this talk of marketing tricks is basically an attempt at shifting the blame at not having done proper due diligence when signing the purchase contract, nothing more.

When I did freelance DC design, I always pointed out the specific points which could be an SPOF and agreed with the customer on whether they want and can afford to address them or not, instead of just trying to milk them for money. That usually got my overall solution prices to be much lower than what large vendors and integrators offered. I ended up making less money, but having loyal customers who trusted me and kept coming back. If I just came in and started pushing a small enterprise into building wall street level solutions, I'd have been kicked out of the building. But when the solution was up, with known, budget related issues, we always had a plan for the next few years to address these issues, as well as a backup plan to protect the really important aspects of the business. In a few years, gradually, the issues got addressed and the setup grew more reliable, as budget permitted. Had I come in demanding everything was covered from the start, there wouldn't have been any setup to grow and improve in the first place.

Again, I'm not saying there is perfect HA in the solution, I'm not saying it's totally reliable. I'm saying it's a start with some protection against known failures, and a set of SPOFs to be aware of and address in the future. I'm not trying to sell any false promises. For a small business with 3 servers, this is as much as they can hope for anyway.

If you eliminate the storage SPOF, you still have a network SPOF in place, and you're running a badly performing storage system, driving the amount of network traffic up as well as tripling the storage consumption. And you're adding a lot more software into the mix, software that can break, have bugs etc etc etc. All of that without actually having the perfect HA - there's no redundant networking, no redundant HVAC and no DR site. OMG, we're all gonna die!

@Dashrender said in New Infrastructure to Replace Scale Cluster:

Started? That's not HA. At least at this very moment I wouldn't consider it HA, I'd consider it SA (Standard Availability).

It doesn't matter what you consider. Automatic monitoring of a service and making sure it always runs (so if it stops running, the system starts it) is the definition of HA. Nobody ever promised 0 downtime, just a lot of 9's after the dot. Don't confuse HA with FT

As for your reasoning that people buy solutions - oh, if only that were true more often than not. But one look at Spice--- oh you know that place, you can see that people buy a SAN and think they have HA. period.

I don't care what people think, there are standards and definitions available.

Also to more points you made - You simply can't have HA without having ALL of those other parts. It's great that you have HA at the server level, but what are the chances that's where your issue is going to be and not at the electrical power level? It's great that the servers have HA, but if your internet doesn't is the solution really HA?
No - it's not.

HA is about avoiding a failure. The best HA solutions target all possible points of failure, and how many of those you want to cover is up to you and your budget. No solution is ever perfect, even the solutions that are meant to address solution imperfections

@Dashrender said in New Infrastructure to Replace Scale Cluster:

In general "buying" HA is generally though of as just by VMWare with the HA feature and tada you have HA. which of course is wrong. If you don't have redundant power and redundant switches, and storage, and HVAC, etc, etc - then you don't have real HA - you have one tiny piece that's HA, but you don't have HA for the the likely end goal.

Everything you mentioned is something you can buy, and is usually specified as a prerequisite for an HA solution.

At least this is what I take from Scott's comments.

VMWare won't sell you the solution that includes all the switches and internet and power and HVAC, etc, etc.. they will only sell you the things they sell. But HA requires so much more than they can provide.

I frankly don't remember the last time I actually bought anything from a vendor. People usually go to an integrator, and pay for building a solution for them. That integrator should provide all the prerequisites, and you pay for a solution not a single standalone product.

Everyone wants to sell solutions, not products, to the point where these solutions in turn become productized. And an HA solution can be bought.

Now, if we stop the pissing contest (yes Scott, you are the god of IT, you are always right and everyone else is always wrong, even when you don't drop your 2c in every conversation) and think rationally for a second here, we are talking about a small setup with just a few hosts. We already established we have brand name hardware, which means IPMI can be used as SBA. Out of the box with oVirt, this provides us with the ability to make VMs highly available, just configure the hosts, and mark the VMs as HA, nothing else. Assuming networking was done properly, and we have switch redundancy, and hoping the building has a generator and the storage is also reliable is nice, but out of scope for this particular scenario. All the OP wanted was VM HA, where if a VM dies or the host carrying it stops being able to host it, it gets safely started elsewhere. It isn't hard to grasp the concept, really.

@scottalanmiller said in Replication Options for KVM to DR Site:

But that was my point, what's considered a reasonable, rational risk scenario to an invest bank sounds to normal people to be similar to meteor level extinction events. Hence why the "backups have to cover everything possible" rule can't work, even if you add the caveat of "within rational scope", it is clear that Fortune 100 rational is SMB crazy. And what is F100 crazy, is still Wall St. rational. And what is Wall St crazy, is big government rational.

Backups shouldn't stop being backups based on the impression of rational scope. A backup is a backup, the scope that it covers is its coverage scope. Otherwise no SMB's backups would be a backup to the enterprise, for example. But the viewpoint of the observer should not be the determination of what is or isn't a backup, but rather an intrinsic property of the backup itself. Otherwise, you force a crazy scope to happen and someone mentions meteors - which was my point.

Lets agree on DR solutions being able (or striving to at least) cover disasters of whatever the scoped level is for a given business. With this in mind, avoidance techniques still have to target specific errors, while recovery solutions cover data loss from all of those, plus any other failure (within the scope, yes. Nothing will cover the failure of Earth remaining a livable planet).

@scottalanmiller said in Replication Options for KVM to DR Site:

You can use any other vendor, just not hat one.

Wasn't aware of that, anywhere I can read about it (and maybe zerto's response as well)