Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Containerize your Enthusiasm: Docker and Contai...

Anders Wallgren
August 10, 2017
Technology
0
120

Containerize your Enthusiasm: Docker and Containers as a path to Scaling Agile and DevOps in the Organization

Talk given at Agile 2017, Orlando, FL.
  
To be effective with agile development and with your DevOps implementation, you need to have solid technical practices.
 
Container technology – such as Docker – can be incredibly instrumental in making your developers more Agile, and help you scale your DevOps practices throughout the organization.
 
On the other hand, when not implemented properly, Container initiatives often introduce numerous challenges and requirements – particularly on your Operations teams – and could put your releases at risk.
 
In this talk, we will review the pre-requisites for creating an effective development and delivery pipeline powered by Containers, to enable you to:

- Empower your developers to be self-sufficient and wicked-fast
- Give your Ops team - and the business - confidence in what’s “inside the box”, so they can ensure the containers your developers produce can be managed in Production, at scale.
 
Learn about:
- The implications Containers have on your DevOps processes and Agile implementation
- How to set up a Delivery Pipeline using containers and free tooling that dramatically increases your Agile throughput - from code check in, through Build, CI, testing and Deployment.
- Special considerations for Container-based application pipelines from metadata and NFR validation, Registery, Container --
- Orchestration best practices, and more.
- How to incorporate the right checks and balances – in terms of governance, visibility, security – so your Operations team feels comfortable with what goes inside the containers.
- Some use cases along your pipeline that are prime for starting your container journey
- How to extend your Containers adoption from the lower environments to enabling containers at scale, in production
- Best practices and tips for managing pipelines for container-based applications, alongside ‘traditional’ releases.
- (bonus: Should you go all-in for Continuous Deployments? How to get there?)

Anders Wallgren

August 10, 2017
Tweet

More Decks by Anders Wallgren

See All by Anders Wallgren
The Hard Truths about Microservices and Software Delivery
anders_wallgren
0
28
Microservices and Docker at Scale: the PB&J of Modern Application Delivery
anders_wallgren
0
110
Measuring DevOps: the Key Metrics that Matter
anders_wallgren
1
130
Continuous Delivery of Microservices: Patterns and Processes
anders_wallgren
2
190
From Agile to DevOps to Continuous Delivery – How to Evolve Your Software Delivery”
anders_wallgren
0
94
Connected Teams, Connected Code, and the Connected Device: The Complexities of IoT Development
anders_wallgren
0
43
Orchestrating all the things!
anders_wallgren
1
62

Other Decks in Technology

See All in Technology
ExaDB-D dbaascli で出来ること
oracle4engineer
PRO
0
3.8k
DMARC 対応の話 - MIXI CTO オフィスアワー #04
bbqallstars
1
160
Python(PYNQ)がテーマのAMD主催のFPGAコンテストに参加してきた
iotengineer22
0
470
複雑なState管理からの脱却
sansantech
PRO
1
140
TanStack Routerに移行するのかい しないのかい、どっちなんだい! / Are you going to migrate to TanStack Router or not? Which one is it?
kaminashi
0
590
OTelCol_TailSampling_and_SpanMetrics
gumamon
1
130
誰も全体を知らない ~ ロールの垣根を超えて引き上げる開発生産性 / Boosting Development Productivity Across Roles
kakehashi
1
230
テストコード品質を高めるためにMutation Testingライブラリ・Strykerを実戦導入してみた話
ysknsid25
7
2.6k
Lexical Analysis
shigashiyama
1
150
RubyのWebアプリケーションを50倍速くする方法 / How to Make a Ruby Web Application 50 Times Faster
hogelog
3
940
【令和最新版】AWS Direct Connectと愉快なGWたちのおさらい
minorun365
PRO
5
750
Why App Signing Matters for Your Android Apps - Android Bangkok Conference 2024
akexorcist
0
130

Featured

See All Featured
Embracing the Ebb and Flow
colly
84
4.5k
The Pragmatic Product Professional
lauravandoore
31
6.3k
We Have a Design System, Now What?
morganepeng
50
7.2k
Making the Leap to Tech Lead
cromwellryan
133
8.9k
Large-scale JavaScript Application Architecture
addyosmani
510
110k
Why You Should Never Use an ORM
jnunemaker
PRO
54
9.1k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
250
21k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
364
24k
Build The Right Thing And Hit Your Dates
maggiecrowley
33
2.4k
Performance Is Good for Brains [We Love Speed 2024]
tammyeverts
6
410
10 Git Anti Patterns You Should be Aware of
lemiorhan
654
59k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
28
2k

Transcript

  1. © Electric Cloud | electric-cloud.com Containerize Your Enthusiasm: Docker and

    Containers as a Path to Scaling Agile and DevOps in the Organization Anders Wallgren | CTO, Electric Cloud @anders_wallgren Avan Mathur | Product Manager, Electric Cloud @avantika_ec

  2. © Electric Cloud | electric-cloud.com Every business is a software

    business Embedded/IoT Mobile Enterprise, Web/IT “Software is eating the world” Marc Andreessen, Aug 2011

  3. © Electric Cloud | electric-cloud.com Software is now the primary

    driver of innovation & disruption.

  4. © Electric Cloud | electric-cloud.com Can we deliver? FINSERV building

    software to deliver better service RETAIL building platforms for online sales and support AUTOMOTIVE building services for the connected car FEDERAL delivering on time and with higher quality HEALTHCARE building applications to improve care TELECOM building embedded and online services 100% of those surveyed 58% want fast software delivery (one of top 3 goals) 12% can do it Survey completed by Forrester and 155 F1000 senior IT execs 100 90 80 70 60 50 40 30 20 10 0

  5. © Electric Cloud | electric-cloud.com What Is The One Question

    That Predicts Software Team Performance With Startling Accuracy?

  6. © Electric Cloud | electric-cloud.com “To what degree do we

    fear doing deployments?” Source: Puppet Labs 2015 State Of DevOps: https://puppetlabs.com/2015-devops-report

  7. © Electric Cloud | electric-cloud.com High-Performing IT Organizations Do It

    More Often From: IT Revolution and Puppet Labs’ 2016/2017 State of DevOps 2017: 5x lower change failure rate, 96x faster recovery from failures.

  8. © Electric Cloud | electric-cloud.com But I was told this

    talk was about containers?

  9. © Electric Cloud | electric-cloud.com “What are Containers?” in one

    slide • Container Image • Binary artifact that includes an application/service and everything required to run that app/service • Images are built from a descriptor file (e.g. dockerfile) • Primary purpose is to run a single service • Container Runtime • Execution environment for containers • Each container gets its own process space, network stack, and file system • Underlying OS resources are shared among containers • Container Registry • Repository for container images – can be public or private • Container Orchestration Platforms • Registry + Runtime + Lots of other features

  10. © Electric Cloud | electric-cloud.com How do Containers help with

    Agile/DevOps/CD? Containers help increase velocity, quality, and repeatability of software delivery by providing a uniform means of application distribution (the container image) that includes not only the application artifact, but all its dependencies and environment as well.

  11. © Electric Cloud | electric-cloud.com Why we love containers, specifically

    • Faster startup & shutdown • Not booting the whole OS every time • Smaller than VMs • Usually…beware of image bloat • Portable – build once, run anywhere • Great for distributing build environments to devs • Better environment fidelity throughout the pipeline • No need for ops to use the Magic 8 Ball as much • Great match for microservices • Separation of concerns • Applications are decoupled from the infrastructure they run on • Higher density • Better resource utilization at scale • Orchestration platforms provide scaling, resiliency • License savings (one license per host, multiple containers on the host)

  12. © Electric Cloud | electric-cloud.com But I heard containers aren’t

    secure? • Container security has come a long way, quickly • Applications deployed in containers are arguably more secure than applications deployed on the bare OS/VMs • Containers present a smaller attack surface and more isolation in case the application itself is compromised • Images are built programmatically, so less snowflakes and environment drift • Environments can be secured earlier in the software pipeline since the environment is part of the container • Easier to provide immutable configurations • Software pipeline can (and should) be configured to inspect containers for security issues

  13. © Electric Cloud | electric-cloud.com Really? That all sounds too

    good to be true!

  14. © Electric Cloud | electric-cloud.com Teams are realizing the benefits

    https://dzone.com/guides/orchestrating-and-deploying-containers

  15. © Electric Cloud | electric-cloud.com But there are challenges https://dzone.com/guides/orchestrating-and-deploying-containers

  16. © Electric Cloud | electric-cloud.com A brief diversion into micro-

    services (or: why application architecture matters)

  17. © Electric Cloud | electric-cloud.com Microservices Architecture A suite of

    services, each focused on doing one thing well • Running in its own process • Exposing an API • Independently developed • Independently deployable Loosely coupled architectures are the strongest predictor of continuous delivery “Gather together those things that change for the same reason, and separate those things that change for different reasons.” – Robert Martin

  18. © Electric Cloud | electric-cloud.com What’s cool about Microservices? Divide

    and conquer complex distributed applications Loose coupling Makes it easier to adopt new technologies Smaller more autonomous teams are more productive – better resource utilization

  19. © Electric Cloud | electric-cloud.com Monolithic Apps The good, the

    bad, the ugly… Pros • Can be easier to develop • Can be easier to test • Can be easier to deploy Cons • Easier to produce spaghetti code • Can be harder to integrate new technologies • Can be harder to learn and understand the code • You have to scale everything to scale anything • Can’t deploy anything until you deploy everything

  20. © Electric Cloud | electric-cloud.com Why Microservices in Containers? •

    2002: One service per metal box • “I remember my first dual-core box, too!” • “Why is that 32-core server idle all the time? Can I have it?” • 2007: Hypervisor + 1 VM + Multiple services in that VM • “Yeah, can’t run ServiceA and ServiceB side by side, conflicting versions of…” • “Yeah, we did that until ServiceC filled up /tmp and took down ServiceD" • “Yeah, we tend to run ServiceE by itself once we’re past QA” • 2012: Hypervisor + Multiple VMs + 1 Service in each VM • “Yeah, each VM OS has a copy of that in memory, so…” • 2013: Containers: run multiple services in isolation without the OS overhead

  21. © Electric Cloud | electric-cloud.com Enterprise Container & Microservices Needs

    • Heterogeneous Architectures • Traditional Monolith • Microservice Only • Hybrid • End-to-end Pipelines • Model Containers & Microservices • Container Pipeline Orchestration 21

  22. © Electric Cloud | electric-cloud.com And now back to containers…

  23. © Electric Cloud | electric-cloud.com Containers: Bet You Can’t Run

    Just One… If you just want to run a couple of containers on your laptop, that’s easy. But if you want to operationalize containers for production use and enterprise scale, you’re going to need container orchestration.

  24. © Electric Cloud | electric-cloud.com Container Orchestration Container orchestration platforms

    typically provide a container runtime, registry, plus features that help you manage containers at scale

  25. © Electric Cloud | electric-cloud.com What Does Container Orchestration Help

    With? • Container lifecycle management • Auto scaling • Self-healing • Networking, routing, load balancing, ingress control • Service binding/discovery • Namespaces (including DNS) • QOS, node affinity/anti-affinity • Storage (persistent and otherwise)

  26. © Electric Cloud | electric-cloud.com Software Pipeline Best Practices for

    Container Delivery

  27. © Electric Cloud | electric-cloud.com Software Delivery has changed… Large

    App  Few Releases Small & Modular App(s)  Many Releases

  28. © Electric Cloud | electric-cloud.com Best Practices for CD Pipelines

    of Container-based Apps • Your Automated Software Pipeline Is Your Friend™ • Ideally, one platform handles all your software delivery • Are your tests automated? Really automated? • How’s your test coverage? • Self-service automation/ChatOps approaches • Reduce onboarding time, waiting, complexity • Your solution should provide a real-time view of all the pipelines’ statuses and any dependencies or exceptions. • Make sure your deployment pipeline plugs into your monitoring so that alerts can trigger automatic processes such as rolling back a service, switching between blue/green deployments, scaling and so on.

  29. © Electric Cloud | electric-cloud.com Best Practices for CD Pipelines

    of Container-based Apps • One repository per micro-service, if you’re using them • Independent CI and Deployment pipelines per container • “Automate all the things”: plug in your toolchain to orchestrate the entire pipeline (CI, testing, configuration, infrastructure provisioning, deployments, application release processes, and production feedback loops.) • Your pipeline must be tools/environment agnostic to support each team’s workflow and tool chain • Test automation tools and service virtualization are critical

  30. © Electric Cloud | electric-cloud.com Best Practices for CD Pipelines

    of Container-based Apps • Track artifacts/images through the pipeline (who checked-in the code, what tests were run, pass/fail results, on which environment it was deployed, which configuration was used, who approved it and so on) • Bake in compliance into the pipeline by binding certain security checks and acceptance tests • Allow for both automatic and manual approval gates into and out of pipeline stages • Create reusable models/processes/automation for your various pipelines

  31. © Electric Cloud | electric-cloud.com The Importance of Monitoring

  32. © Electric Cloud | electric-cloud.com https://neo4j.com/blog/managing-microservices-neo4j/

  33. © Electric Cloud | electric-cloud.com Using Containers in the Software

    Pipeline

  34. © Electric Cloud | electric-cloud.com End-to-End Container Delivery Management

  35. © Electric Cloud | electric-cloud.com Model-driven approach for containers and

    Microsevices based applications • Model Any type of application: Monolithic, Microservices or Hybrid • Application definition is independent of the runtime environment • Deploy individual microservices/containers independently

  36. © Electric Cloud | electric-cloud.com Flexiblity and Error Handling in

    Deployment Processes • Conditional execution • Error handling and complexity in deployment process • Automated Rollback on Failures

  37. © Electric Cloud | electric-cloud.com Model-driven approach for container runtime

    platforms • Avoid lock-in to a single platform • Model the dynamic creation of clusters on your runtime platform • Model hybrid environments • Enable scaling policies supported by the runtime platform

  38. © Electric Cloud | electric-cloud.com DevOps Release pipeline orchestrating container

    deployments across environments • Coordinate container releases across environments, ensuring repeatability & consistency • Orchestrate all deployment activities as part of each stage of the pipeline. • Incorporate approvals and compliance checks in your automated, data-driven pipeline • Deploy individual containers or coordinate multiple deployments in one pipeline

  39. © Electric Cloud | electric-cloud.com Orchestrate all of your tools

    processes as part of your DevOps Release Pipeline • Shift-Left Monitoring • Vulnerability tracking • Testing tools • Including Test Data Management and Service Virtualization • ITSM approvals and compliance • Approvals and Gates

  40. © Electric Cloud | electric-cloud.com Container Release Pipeline Automated or

    Manual Approval Gates

  41. © Electric Cloud | electric-cloud.com Resources https://dzone.com/guides/orchestrating-and-deploying- containers https://techbeacon.com/5-best-practices-container- orchestration-it-production

    https://puppet.com/state-of-devops-report https://www.itcentralstation.com/categories/docker- container-monitoring

  42. © Electric Cloud | electric-cloud.com Questions?

  43. © Electric Cloud | electric-cloud.com Thank You! Anders Wallgren |

    CTO, Electric Cloud @anders_wallgren Avan Mathur | Product Manager, Electric Cloud @avantika_ec