Managing Kubernetes and OpenShift with ManageIQ - CloudOpen Europe

Transcript

1. Managing Kubernetes and OpenShift with ManageIQ Alissa Bonas, Dublin 2015

2. The stages of containers world

3. Containerizing an app Alissa Bonas @ Cloud Open Dublin 2015

4. Run a container Alissa Bonas @ Cloud Open Dublin 2015

5. Run multiple containers Alissa Bonas @ Cloud Open Dublin 2015

6. • Orchestrate containers • Run many containers on multiple hosts

   • Manage a containers based environment Run multiple containers Alissa Bonas @ Cloud Open Dublin 2015

7. Today we’ll focus on Kubernetes OpenShift ManageIQ Alissa Bonas @

   Cloud Open Dublin 2015

8. Kubernetes • Deployment, scaling and orchestration of containers across clusters

   of hosts. • 1.0 release - July 2015 Developed in Go Alissa Bonas @ Cloud Open Dublin 2015

9. Kubernetes concepts • Node - a machine that containers run

   on • Pod - a group of containers • Replication controller - ensures there are always X replicas of pods Alissa Bonas @ Cloud Open Dublin 2015

10. Kubernetes concepts • Service - a base load balancer that

    provides traffic to pods • Namespace - partitioning resources created by users into logical groups Alissa Bonas @ Cloud Open Dublin 2015

11. OpenShift • Platform as a service for building and running

    applications - for developers • Built on top of Kubernetes • 3.0 release - June 2015 Developed in Go Alissa Bonas @ Cloud Open Dublin 2015

12. OpenShift concepts • Provides additional capabilities ◦ application lifecycle ◦

    routing - extends service ◦ projects - extension of namespaces Build Deploy Run Alissa Bonas @ Cloud Open Dublin 2015

13. • How many containers exist in my environment? • Does

    a specific node have enough resources? • How many distinct images are used? • Which registries are used? Insight and control Alissa Bonas @ Cloud Open Dublin 2015

14. ManageIQ • A cloud management platform ◦ supports multiple virtualization

    providers • Insight and control ◦ inventory overview and events ◦ smart state analysis ◦ workflow/orchestration a Ruby on Rails project Alissa Bonas @ Cloud Open Dublin 2015

15. New in upstream ManageIQ • Providers for container management •

    Supported providers ◦ Kubernetes ◦ OpenShift Alissa Bonas @ Cloud Open Dublin 2015

16. Container management providers Alissa Bonas @ Cloud Open Dublin 2015

17. Working together ManageIQ Kubernetes / Openshift Master REST Node A

    Node B Alissa Bonas @ Cloud Open Dublin 2015

18. Inventory • Entities • Relationships • Additional information Alissa Bonas

    @ Cloud Open Dublin 2015

19. Creating more insights • Modelling additional entities as first class

    citizens • Deducing relationships Alissa Bonas @ Cloud Open Dublin 2015

20. Kubernetes provider summary Alissa Bonas @ Cloud Open Dublin 2015

21. Kubernetes provider relationships Alissa Bonas @ Cloud Open Dublin 2015

22. OpenShift provider summary

23. OpenShift provider relationships Alissa Bonas @ Cloud Open Dublin 2015

24. Nodes • OS and Software versions • How many entities

    are on a node • Capacity and utilization • Which infrastructure is it running on Alissa Bonas @ Cloud Open Dublin 2015

25. Node summary page Alissa Bonas @ Cloud Open Dublin 2015

26. What do we know about nodes? Capacity Docker and Kubernetes

    info OS info Alissa Bonas @ Cloud Open Dublin 2015

27. What do we know about nodes? Alissa Bonas @ Cloud

    Open Dublin 2015

28. Cross providers insight • Connect all layers of infrastructure, cloud

    and containers • Currently supports cross linking with ◦ OpenStack ◦ oVirt / RHEV ◦ VMware vCenter Alissa Bonas @ Cloud Open Dublin 2015

29. Cross linking demystified Virtual Machines Hosts Nodes Pods Containers Alissa

    Bonas @ Cloud Open Dublin 2015

30. Cross linking zoom out Virtual Machines Hosts Nodes Pods Containers

    Images Storage Network Services Routes Alissa Bonas @ Cloud Open Dublin 2015

31. Cross provider example - Node Alissa Bonas @ Cloud Open

    Dublin 2015

32. Cross provider - VM side Alissa Bonas @ Cloud Open

    Dublin 2015

33. Nodes capacity and utilization

34. Alissa Bonas @ Cloud Open Dublin 2015

35. Alissa Bonas @ Cloud Open Dublin 2015

36. Resource quotas and limit ranges • Limit the number of

    pods, containers, etc. ◦ tracked per a project/namespace scope • Limit CPU and memory ◦ tracked per pod, container Alissa Bonas @ Cloud Open Dublin 2015

37. Container • Traceability - node, container id, image Alissa Bonas

    @ Cloud Open Dublin 2015

38. Image from a known registry Alissa Bonas @ Cloud Open

    Dublin 2015

39. Image from an unknown source Alissa Bonas @ Cloud Open

    Dublin 2015

40. Registries

41. Pods • Which containers are part of it • Which

    services work with it • Which node does it run on • Is it controlled by a replicator? Alissa Bonas @ Cloud Open Dublin 2015

42. Pod Alissa Bonas @ Cloud Open Dublin 2015

43. Replicators Searches for pods with this label Alissa Bonas @

    Cloud Open Dublin 2015

44. Services • A portal IP and source/target port pairs •

    Redirects traffic to relevant pods based on a labels selector Alissa Bonas @ Cloud Open Dublin 2015

45. Service example Alissa Bonas @ Cloud Open Dublin 2015

46. OpenShift Routes • Exposes a service by giving it an

    externally reachable hostname • Can be fine tuned by /path • Can be also secured Alissa Bonas @ Cloud Open Dublin 2015

47. Events / Timeline • Node ◦ ready / not ready

    / rebooted • Pod ◦ scheduled • More to come... Alissa Bonas @ Cloud Open Dublin 2015

48. Tagging • Leveraging ManageIQ tags Alissa Bonas @ Cloud Open

    Dublin 2015

49. • “A picture is worth a thousand words” • Includes

    cross provider relationships • Status color indication Topology view Alissa Bonas @ Cloud Open Dublin 2015

50. Topology live demo Alissa Bonas @ Cloud Open Dublin 2015

51. A glimpse into the future

52. Dashboard - providers overview

53. Dashboard - a single provider view

54. Dashboard of a project Alissa Bonas @ Cloud Open Dublin

    2015

55. Smart State Analysis • Inspect the packages included in an

    image • Combined with vulnerabilities db, generate alerts for important security issues on running containers Alissa Bonas @ Cloud Open Dublin 2015

56. Analysis of an image Alissa Bonas @ Cloud Open Dublin

    2015

57. An image after analysis

58. ManageIQ community • http://talk.manageiq.org • https://github.com/ManageIQ/manageiq ◦ Follow label #providers/containers

    • #manageiq IRC on freenode Alissa Bonas @ Cloud Open Dublin 2015

59. Projects info • http://www.openshift.org/ • http://kubernetes.io/ • http://manageiq.org/ Alissa Bonas

    @ Cloud Open Dublin 2015

60. Icons Credits • The Go gopher - Renee French •

    Diamond by MarkieAnn Packer, the Noun Project • Rails by Luis Martins, the Noun Project • Light Bulb by artworkbean, the Noun Project • Sherlock by James Keuning, the Noun Project • Twitter by Lubos Volkov, the Noun Project • Link by Vitor Fernandes, the Noun Project

61. Thank you! @mikeyteva