Upgrade to Pro — share decks privately, control downloads, hide ads and more …

From source to Kubernetes in 30 minutes

8e82eb7e128a14a16d642ae55227339b?s=47 Bastian Hofmann
October 21, 2019
Programming
0
87

From source to Kubernetes in 30 minutes

8e82eb7e128a14a16d642ae55227339b?s=128

Bastian Hofmann

October 21, 2019
Tweet

More Decks by Bastian Hofmann

See All by Bastian Hofmann
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
120
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
62
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
1
85
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
1
39
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
110
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
1
200
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
2
110
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
110
8e82eb7e128a14a16d642ae55227339b?s=48 bastianhofmann
0
390

Other Decks in Programming

See All in Programming
0ed10d1154c696886ca483fe827cb299?s=48 thatjeffsmith
0
120
F6baf93a0833a98bdc8184c214f4c468?s=48 rgoswami
1
150
2350801025b8e8592dbaa8dd98a24cbb?s=48 ewolff
0
300
Df3a0444cb4726fd231a5d5ea4fe0a34?s=48 hiddenest12
0
280
15934fa2aa7b2ce21f091e9b7cffa856?s=48 manfredsteyer
PRO
1
180
85401912c23c7d5e656c08e7a751e95c?s=48 cocoatomo
0
300
Bbb17eeeecd3d9d06f4db310ab630a12?s=48 borkdude
1
210
744f1c2c6cbea2ff5104b0ac512936bd?s=48 hpgrahsl
0
100
Fc358d63dcdcbad7a5c29198785dec2c?s=48 naototty
1
220
828bebe205894e1aa5f75a1fc6935a9c?s=48 ganchan11
0
210
Dbab5e5a1fd54531e1119ede6b3b9e65?s=48 horie1024
2
330
270b0c7883545117a9a618dc7ca7cc83?s=48 xrdnk
0
390

Featured

See All Featured
C86443373fbfe92996aa882d0d7a59f8?s=48 imathis
479
150k
D8fc2580cfaca035f666d9e4ee79a7f7?s=48 mongodb
23
3.9k
6bb82b13cda86d3b821fa44100335ddf?s=48 thoeni
4
680
78b475797a14c84799063c7cd073962f?s=48 holman
288
130k
E195ae45320d9202eaa01c9f1d31a416?s=48 marktimemedia
8
490
64827b31aef81498662e8af4bd6d5157?s=48 jonrohan
1021
390k
C4de88ea47538e4594750e3861a341c8?s=48 brettharned
93
3.1k
282d599b414022eba5096510f675b6e2?s=48 chrislema
231
16k
C0b42577cfc2b321be3474618107e933?s=48 samanthasiow
59
6.5k
E190023b66e2b8aa73a842b106920c93?s=48 zenorocha
298
40k
F383c6a4dc55e331bbe2987b622cee6b?s=48 stephaniewalter
262
11k
168ccec72eee0530b818d44f3fedaacf?s=48 shlominoach
176
7.6k

Transcript

  1. @BastianHofmann From source to Kubernetes In 30 Minutes Bastian Hofmann

    mail@bastianhofmann.de

  2. CI/CD

  3. None
  4. None
  5. None

  6. Container orchestration platform

  7. Deploy, run and scale your services in isolated containers

  8. Your application is bundled in an image

  9. The image contains everything the application needs to run

  10. The image is started in an isolated container

  11. No vendor lock in

  12. Standardized APIs

  13. Your laptop

  14. Bare metal

  15. Cloud Providers

  16. And if you don't want to install and maintain Kubernetes

    yourself

  17. Managed Kubernetes

  18. None

  19. So we have code, how do we get this into

    Kubernetes?

  20. Angular demo application

  21. Demo

  22. We have to

  23. Build a docker image

  24. Contains everything that the service needs to run

  25. Make the build as fast as possible

  26. Make the image as small as possible

  27. Demo

  28. Tell Kubernetes to

  29. Start containers

  30. In Kubernetes

  31. • A group of 1 or more containers • Same

    port space • Within a Pod: communication over localhost • Every container has their own filesystem • Every Pod has it's own IP • All Pods can talk with each other • IPs change all the time Pod

  32. Deployment

  33. LoadBalancer

  34. Everything in Kubernetes is a resource (document) defined in YAML

  35. Demo

  36. Also all those YAML files are not nice

  37. Helm

  38. Also we need

  39. DNS

  40. TLS

  41. Monitoring

  42. CI/CD pipeline

  43. Make use of Kubernetes "magic"

  44. Demo

  45. Magic recap

  46. LoadBalancers

  47. Automatically creates a highly available LoadBalancer with a public IP

    address

  48. Ingress controller

  49. The ingress controller (nginx) listens on routing rules in Ingress

    Resources and configures itself to route incoming traffic to the correct running and healthy pods

  50. cert-manager

  51. Cert-manager listens on Ingress Resources and if they need TLS,

    requests a certificate from LetsEncrypt

  52. external-dns

  53. External-DNS listens on Ingress Resources and creates DNS entries

  54. Sealed Secrets

  55. Secrets are stored encrypted in Git and decrypted inside of

    the cluster

  56. Prometheus

  57. Kubernetes and Node metrics are automatically included

  58. Kubernetes and Node alerts are automatically included

  59. Kubernetes and Node dashboards are automatically included

  60. Scraping targets can be automatically discovered

  61. Service Meshes

  62. None

  63. Recommendation: Start playing around with Kubernetes

  64. Alternatives

  65. Flux

  66. None

  67. Knative

  68. Kubernetes-based platform to deploy and manage modern serverless workloads

  69. Tekton CD

  70. CI that runs completely within Kubernetes with Kubernetes Custom Resources

  71. Resources

  72. https:/ /gitlab.com/bashofmann/ angular-test-app

  73. https:/ /gitlab.com/bashofmann/ angular-test-app-finished

  74. https:/ /github.com/syseleven/ golem-workshop

  75. mail@bastianhofmann.de https:/ /twitter.com/BastianHofmann http:/ /speakerdeck.com/u/bastianhofmann