Upgrade to Pro — share decks privately, control downloads, hide ads and more …

From source to Kubernetes in 30 minutes

8e82eb7e128a14a16d642ae55227339b?s=47 Bastian Hofmann
October 21, 2019
Programming
0
97

From source to Kubernetes in 30 minutes

8e82eb7e128a14a16d642ae55227339b?s=128

Bastian Hofmann

October 21, 2019
Tweet

More Decks by Bastian Hofmann

See All by Bastian Hofmann
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
160
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
68
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
1
93
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
1
84
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
120
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
1
210
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
2
120
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
120
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
400

Other Decks in Programming

See All in Programming
140494d272a4d89883a94fdfdb29dea2?s=48 oracle4engineer
PRO
3
260
E876ea77f9fb4d686befb6e69eec9a7e?s=48 miyayou
2
390
20ddbe9b7cfdde5e2dfeb8d8714d5de8?s=48 tarugoconf
0
1.7k
Ca7e4f1680e175e6462a039923e71fc5?s=48 kyokonishito
0
180
399e7330fa2a9ed06cbe81308ba8db6e?s=48 yug1224
0
200
3fe5b2de229709072a61ccc3c6ac9be0?s=48 tsuchinoko
0
100
18c5d6e2413dc02665fd4210bf5d094b?s=48 roothybrid7
0
370
50443a0c666aa1020f2f757582e6e45c?s=48 suzukiot
0
120
B61a8b5e5ce71ea4796afaea614bbb19?s=48 nein37
1
2.5k
C951afc0782b7d3d4800e25b4a4938a9?s=48 shinnoki
0
190
6afbe110d33ef7e859fb8649b86bae55?s=48 mashabow
0
770
50443a0c666aa1020f2f757582e6e45c?s=48 suzukiot
0
110

Featured

See All Featured
719435d98d452de7ac367c828266cf01?s=48 erikaheidi
30
5.4k
E76911cbe088e5b850d966de3fc7435b?s=48 robhawkes
56
4.2k
D67fff74178013024d833b3eec6cf27f?s=48 lynnandtonic
277
17k
Aff5641764408271f7bc398f2097edd0?s=48 denniskardys
224
120k
B3ace07412a5178ea778e7eec161fc0a?s=48 jcasabona
11
820
7cbd3f5f922d798cc312eaf596de7ae6?s=48 iamctodd
33
3.2k
9952dfcd5d338f8a8e7175c8a8f65fb5?s=48 wjessup
342
16k
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
780
240k
1ce0eb06fd6a9e9566a0cb310cfee635?s=48 jrick
PRO
2
20k
5b6a2bd86ef643786a381a212e0ef2f1?s=48 geoffreycrofte
44
3.7k
828ace851b606e1206900f26459f55ad?s=48 speakerdeck
PRO
2
570
B83d5b590577969ee79a5ad845411a7d?s=48 ammeep
660
55k

Transcript

  1. @BastianHofmann From source to Kubernetes In 30 Minutes Bastian Hofmann

    mail@bastianhofmann.de

  2. CI/CD

  3. None
  4. None
  5. None

  6. Container orchestration platform

  7. Deploy, run and scale your services in isolated containers

  8. Your application is bundled in an image

  9. The image contains everything the application needs to run

  10. The image is started in an isolated container

  11. No vendor lock in

  12. Standardized APIs

  13. Your laptop

  14. Bare metal

  15. Cloud Providers

  16. And if you don't want to install and maintain Kubernetes

    yourself

  17. Managed Kubernetes

  18. None

  19. So we have code, how do we get this into

    Kubernetes?

  20. Angular demo application

  21. Demo

  22. We have to

  23. Build a docker image

  24. Contains everything that the service needs to run

  25. Make the build as fast as possible

  26. Make the image as small as possible

  27. Demo

  28. Tell Kubernetes to

  29. Start containers

  30. In Kubernetes

  31. • A group of 1 or more containers • Same

    port space • Within a Pod: communication over localhost • Every container has their own filesystem • Every Pod has it's own IP • All Pods can talk with each other • IPs change all the time Pod

  32. Deployment

  33. LoadBalancer

  34. Everything in Kubernetes is a resource (document) defined in YAML

  35. Demo

  36. Also all those YAML files are not nice

  37. Helm

  38. Also we need

  39. DNS

  40. TLS

  41. Monitoring

  42. CI/CD pipeline

  43. Make use of Kubernetes "magic"

  44. Demo

  45. Magic recap

  46. LoadBalancers

  47. Automatically creates a highly available LoadBalancer with a public IP

    address

  48. Ingress controller

  49. The ingress controller (nginx) listens on routing rules in Ingress

    Resources and configures itself to route incoming traffic to the correct running and healthy pods

  50. cert-manager

  51. Cert-manager listens on Ingress Resources and if they need TLS,

    requests a certificate from LetsEncrypt

  52. external-dns

  53. External-DNS listens on Ingress Resources and creates DNS entries

  54. Sealed Secrets

  55. Secrets are stored encrypted in Git and decrypted inside of

    the cluster

  56. Prometheus

  57. Kubernetes and Node metrics are automatically included

  58. Kubernetes and Node alerts are automatically included

  59. Kubernetes and Node dashboards are automatically included

  60. Scraping targets can be automatically discovered

  61. Service Meshes

  62. None

  63. Recommendation: Start playing around with Kubernetes

  64. Alternatives

  65. Flux

  66. None

  67. Knative

  68. Kubernetes-based platform to deploy and manage modern serverless workloads

  69. Tekton CD

  70. CI that runs completely within Kubernetes with Kubernetes Custom Resources

  71. Resources

  72. https:/ /gitlab.com/bashofmann/ angular-test-app

  73. https:/ /gitlab.com/bashofmann/ angular-test-app-finished

  74. https:/ /github.com/syseleven/ golem-workshop

  75. mail@bastianhofmann.de https:/ /twitter.com/BastianHofmann http:/ /speakerdeck.com/u/bastianhofmann