Upgrade to Pro — share decks privately, control downloads, hide ads and more …

From source to Kubernetes in 30 minutes

8e82eb7e128a14a16d642ae55227339b?s=47 Bastian Hofmann
October 21, 2019
Programming
0
76

From source to Kubernetes in 30 minutes

8e82eb7e128a14a16d642ae55227339b?s=128

Bastian Hofmann

October 21, 2019
Tweet

More Decks by Bastian Hofmann

See All by Bastian Hofmann
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
91
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
59
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
1
75
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
1
39
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
100
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
1
190
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
2
99
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
99
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
380

Other Decks in Programming

See All in Programming
1623dd1adf096ba35ba33727d933e14c?s=48 nbkouhou
1
1.2k
E473e5af1263c050599921981db46068?s=48 akatsukinewgrad
0
210
Dbab5e5a1fd54531e1119ede6b3b9e65?s=48 horie1024
1
390
Ca91df01df9ee53c57b8c5a81aeec889?s=48 kazuki19992
0
450
1623dd1adf096ba35ba33727d933e14c?s=48 nbkouhou
9
4.8k
7eca3e06edc3c69004aaf57de51900c2?s=48 ajstarks
2
550
04df7340898eac3a0536d3b47c55501c?s=48 hirotokirimaru
1
430
027cabf82b6860498e5107f500bed48f?s=48 nanimonodemonai
2
1.4k
De266761b955b2636e454a1bc7a99ed4?s=48 masayaaoyama
3
620
Ad4c3c738e57a9bbcb800871e81c232d?s=48 itosho525
1
380
4d40d82cc3c676e8a67ffc2a473bf423?s=48 kyoheig3
0
440
Eae7b6aeee72d3081b01d09a2d675f9a?s=48 akkeylab
0
360

Featured

See All Featured
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
780
240k
2bb923c57a1fdc3a2eb484bb8d565fd2?s=48 ufuk
56
5.4k
95d9f37115fbb0d13135d0f77132f856?s=48 morganepeng
17
1.1k
A60068bce2e73de3a37ca9d2dbe36092?s=48 bryan
30
3.3k
F68cb25ae3e5c2106997454b13b7737d?s=48 brad_frost
156
6.4k
95d9f37115fbb0d13135d0f77132f856?s=48 morganepeng
92
14k
6804f1775cb4babfcc3851298566fbce?s=48 tanoku
258
24k
5f83ef806155b403c3393160ce51f955?s=48 jlugia
216
16k
9cde37f47e4a800ea081ea42de8d749a?s=48 dougneiner
119
7.8k
1177e050db6bafe62885362edf6e3537?s=48 lauravandoore
437
28k
245cee81a9c424266e5e401d844ea881?s=48 lara
590
61k
Ecdea9b9714877b86cee08458f085481?s=48 trallard
13
640

Transcript

  1. @BastianHofmann From source to Kubernetes In 30 Minutes Bastian Hofmann

    mail@bastianhofmann.de

  2. CI/CD

  3. None
  4. None
  5. None

  6. Container orchestration platform

  7. Deploy, run and scale your services in isolated containers

  8. Your application is bundled in an image

  9. The image contains everything the application needs to run

  10. The image is started in an isolated container

  11. No vendor lock in

  12. Standardized APIs

  13. Your laptop

  14. Bare metal

  15. Cloud Providers

  16. And if you don't want to install and maintain Kubernetes

    yourself

  17. Managed Kubernetes

  18. None

  19. So we have code, how do we get this into

    Kubernetes?

  20. Angular demo application

  21. Demo

  22. We have to

  23. Build a docker image

  24. Contains everything that the service needs to run

  25. Make the build as fast as possible

  26. Make the image as small as possible

  27. Demo

  28. Tell Kubernetes to

  29. Start containers

  30. In Kubernetes

  31. • A group of 1 or more containers • Same

    port space • Within a Pod: communication over localhost • Every container has their own filesystem • Every Pod has it's own IP • All Pods can talk with each other • IPs change all the time Pod

  32. Deployment

  33. LoadBalancer

  34. Everything in Kubernetes is a resource (document) defined in YAML

  35. Demo

  36. Also all those YAML files are not nice

  37. Helm

  38. Also we need

  39. DNS

  40. TLS

  41. Monitoring

  42. CI/CD pipeline

  43. Make use of Kubernetes "magic"

  44. Demo

  45. Magic recap

  46. LoadBalancers

  47. Automatically creates a highly available LoadBalancer with a public IP

    address

  48. Ingress controller

  49. The ingress controller (nginx) listens on routing rules in Ingress

    Resources and configures itself to route incoming traffic to the correct running and healthy pods

  50. cert-manager

  51. Cert-manager listens on Ingress Resources and if they need TLS,

    requests a certificate from LetsEncrypt

  52. external-dns

  53. External-DNS listens on Ingress Resources and creates DNS entries

  54. Sealed Secrets

  55. Secrets are stored encrypted in Git and decrypted inside of

    the cluster

  56. Prometheus

  57. Kubernetes and Node metrics are automatically included

  58. Kubernetes and Node alerts are automatically included

  59. Kubernetes and Node dashboards are automatically included

  60. Scraping targets can be automatically discovered

  61. Service Meshes

  62. None

  63. Recommendation: Start playing around with Kubernetes

  64. Alternatives

  65. Flux

  66. None

  67. Knative

  68. Kubernetes-based platform to deploy and manage modern serverless workloads

  69. Tekton CD

  70. CI that runs completely within Kubernetes with Kubernetes Custom Resources

  71. Resources

  72. https:/ /gitlab.com/bashofmann/ angular-test-app

  73. https:/ /gitlab.com/bashofmann/ angular-test-app-finished

  74. https:/ /github.com/syseleven/ golem-workshop

  75. mail@bastianhofmann.de https:/ /twitter.com/BastianHofmann http:/ /speakerdeck.com/u/bastianhofmann