Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Serverless containers on fully managed infrastructure

Ahmet Alp Balkan
May 21, 2020
Technology
1
350

Serverless containers on fully managed infrastructure

Presented at Container Camp 2020 Virtual (https://2020.container.camp/). This talk is about the concept of serverless, whether containers can be serverless and then goes on to explain Knative, Cloud Run and how do these technologies work under the covers.

Ahmet Alp Balkan

May 21, 2020
Tweet

More Decks by Ahmet Alp Balkan

See All by Ahmet Alp Balkan
Scaling Kubernetes controllers (Seattle Kubernetes Meetup)
alp
0
110
Knative: The missing serving layer for Kubernetes
alp
0
140
Cloud Run for Kubernetes users
alp
0
35
Google Cloud Buildpacks projesine giriş
alp
0
91
Cloud Run ve Kubernetes üzerinde sunucusuz uygulamalar
alp
2
290
Making kubectl plugins mainstream
alp
0
430
Modernizing microservices on Kubernetes with Cloud Run for Anthos/GKE
alp
0
280
Serverless AND Containers
alp
0
120
Writing kubectl plugins: Develop, package & distribute
alp
0
140

Other Decks in Technology

See All in Technology
Microsoft Build 2023 で発表された Cosmos DB の注目アップデート / Microsoft Build 2023 Cosmos DB update
miyake
1
110
NAB Show 2023 動画技術関連レポート / NAB Show 2023 Report
cyberagentdevelopers
PRO
1
120
Turbinando Microsserviços com Distributed Cache
jordihofc
1
310
Google I:O 2023 Androidの自動テストアップデートまとめ / Google I:O 2023 Android Testing Update Recap
tkmnzm
0
180
データマイニングと機械学習-K近傍法 & 機械学習のお作法
trycycle
0
180
ChatGPTを聞き手にしよう
niryuu
0
410
MySQL and Vitess (and Kubernetes) at HubSpot
jfg956
0
140
モノリスからの脱却に向けた 物流システムリプレイスの概要紹介 / Towards Decentralized Logistics System Replacement from Monolithic Structure
yumayabe
0
240
WOFFの紹介
mmclsntr
0
110
KEDAによるイベント駆動ジョブスケール / Event-driven job scale by KEDA
kohbis
2
150
Vault Secrets Operator と Dynamic Secrets で安全にシークレットを使おう / Vault Secrets Operator and Dynamic Secrets
nnstt1
2
300
今後の開発規模拡大、QA人材を爆速で立ち上げる
ymty
1
720

Featured

See All Featured
Faster Mobile Websites
deanohume
296
29k
Six Lessons from altMBA
skipperchong
16
2.5k
What’s in a name? Adding method to the madness
productmarketing
PRO
14
2.1k
How to Ace a Technical Interview
jacobian
271
22k
Designing Experiences People Love
moore
130
22k
Building Adaptive Systems
keathley
29
1.5k
ParisWeb 2013: Learning to Love: Crash Course in Emotional UX Design
dotmariusz
101
6.3k
Put a Button on it: Removing Barriers to Going Fast.
kastner
56
2.6k
Stop Working from a Prison Cell
hatefulcrawdad
264
18k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
16
1.3k
Build your cross-platform service in a week with App Engine
jlugia
222
17k
Why Our Code Smells
bkeepers
PRO
327
55k

Transcript

  1. Senior Software Engineer
    google_l Cloud

    View Slide

  2. Working on container-based experiences and services
    such as Kubernetes/GKE, Cloud Run and Knative.
    Maintainer for some popular open source projects
    in the Kubernetes operator productivity space.
    Prior to Google, worked at Microsoft,on porting
    Docker to Windows, bringing docker-{machine,registry}
    to Azure cloud, and was an ex-Docker maintainer.

    View Slide

  3. I can write my code, and “git push”.
    It deploys to a self-scaling managed infrastructure.
    HOW DID WE LOSE THE SIGHT OF THIS?

    View Slide

  4. Heroku and App Engine would later be dubbed as:
    .

    View Slide

  5. Let’s attempt to define serverless...

    View Slide

  6. No infra management,
    Autoscaling based on demand,
    Managed security
    Pay only for usage,
    no cost if unused
    Event-driven or
    request-driven
    services
    PROVOCATIVE FOLLOW-UP QUESTIONS
    Can databases be serverless?
    (Google Cloud Firestore, Google Cloud PubSub, Amazon Aurora DB ...)
    Can containers be serverless?

    View Slide

  7. Containers
    Flexibility
    Serverless
    Velocity

    View Slide

  8. Can be ?

    View Slide

  9. developer
    experience
    ● Build a container image
    ● Deploy the application
    ● Expose at an endpoint
    ● Request-level load balancing
    ● Set up SSL/TLS
    ● Scale up based on demand
    ● Scale down to zero
    ● Canary deployments
    ● Monitor metrics

    View Slide

  10. developer
    experience
    ● Build a container image→ Dockerfile/pack
    ● Deploy the application → Deployment
    ● Expose at an endpoint → ClusterIP svc
    ● Request-level load balancing → Ingress
    ● Set up SSL/TLS → Ingress+cert-manager?
    ● Scale up based on demand → HPA (CPU/mem)
    ● Scale down to zero → ???
    ● Canary deployments → DIY?
    ● Monitor metrics → DIY Prometheus

    View Slide

  11. Bringing “serverless-like”
    features to Kubernetes

    View Slide

  12. ● Source-to-URL deploys
    Kubernetes needs container images built/pushed
    ● Request-based load balancing and rapid autoscaling
    Kubernetes load-balancing only happens at TCP layer among Pods
    Overloaded pods will crash during traffic spikes, dropping other traffic
    ● Scale-to-zero
    Kubernetes cannot do natively
    ● Canary deployments, rollouts/rollbacks
    Kubernetes cannot natively split traffic (lack of L7 HTTP load balancing)
    Kubernetes has no notion of immutable revisions to cleanly rollback
    ● Out-of-the box application monitoring metrics
    Kubernetes doesn’t provide monitoring signals beyond CPU/memory

    View Slide

  13. AHMET’S DEFINITION:
    Open source implementation (and API) that
    supercharges Kubernetes cluster to run
    stateless services more effectively.
    Heavily customizable and pluggable.
    Strong open source community involving Google,
    Red Hat, IBM, VMware, SAP and others.

    View Slide

  14. ● Rapid autoscaling w/ request-layer load balancing
    Knative performs request/RPC-level (Layer 7) load balancing.
    Knative is designed to handle without overloading pods.
    ● Can scale-to-zero
    Knative can shut down unused applications, and wake them up on first request
    ● Can do canary deployments, rollouts/rollbacks
    Each Knative deployment creates a new “immutable” Revision.
    You can split traffic among Revisions based on percentages.
    ● Out-of-the box application monitoring metrics
    Knative exposes HTTP golden signals (request count, latency, error codes
    metrics) for all applications over Prometheus or other telemetry drivers.
    ● Still Kubernetes. :)
    Knative Kubernetes

    View Slide

  15. But is still
    and is not ?

    View Slide

  16. View Slide

  17. Container image
    to production URL
    in a few seconds
    Runs applications or
    binaries in any
    language
    Fully-managed,
    rapid autoscaling
    Cloud Run
    Pay during requests,
    idle time is free

    View Slide

  18. DEMO

    View Slide

  19. ● Container must be serving on given $PORT
    Single port number, but you can customize the port number)
    ● Container must serve plain HTTP.
    (or unencrypted h2c for gRPC)
    ● Container should do things only while serving requests.
    Background CPU usage is throttled to ~0.
    ● Only Linux x86_64 executables.
    No 32-bit support.

    View Slide

  20. concurrency = 1 concurrency = 50
    Most serverless platforms Cloud Run

    View Slide

  21. View Slide

  22. Cloud Run (fully managed) Cloud Run for Anthos
    • Implements Knative API
    • Runs on Google’s infrastructure
    • Pay per request
    • Designed go from 0 qps to tens of
    thousands of qps very quickly.
    • Hosted open source Knative
    • Runs next to other Kubernetes workloads
    in your GKE clusters anywhere
    (GCP/AWS/Azure/on-prem)
    • Same serverless developer experience
    • Tunable/extensible for your needs, as
    Knative is heavily customizable and
    pluggable.

    View Slide

  23. GKE on AWS
    or Azure
    GKE
    On-prem
    Google’s infra
    Cloud Run for Anthos
    Knative
    Anthos/GKE (Kubernetes)
    UI CLI YAML
    Cloud Run
    Developer & Operator
    GKE on GCP
    Knative API
    gVisor

    View Slide

  24. e.g. Azure Container Instances (ACI) and AWS Fargate
    ● Cloud Run only runs stateless HTTP server workloads
    Only HTTP or event-triggered, no background batch processing.
    ● Cloud Run has rapid autoscaling out of the box.
    No network configuration, autoscaling configuration etc.
    ● Pricing model is “pay only during requests”.

    View Slide

  25. DEMO

    View Slide

  26. ● Knative
    ○ Domain name per service
    ○ Automatic TLS for domains
    ○ Configurable min/max instances
    ○ Declarative events support
    ● Cloud Run
    ○ Configurable max instances
    ○ gRPC/streaming support
    ○ Support for VPC networks, CDN, configurable L7 LB
    ● Google Cloud Buildpacks
    github.com/GoogleCloudPlatform/buildpacks

    View Slide


  27. Get started to deploy your serverless containers to Cloud Run.

    Learn more about the Knative open source project.
    ● github.com/ahmetb/
    Answers to most of your questions about Cloud Run.
    twitter.com/ahmetb
    github.com/ahmetb

    View Slide