From source to Kubernetes in 30 minutes

Ded87c77266697ee6981c2277bb97633?s=47 Bastian Hofmann
October 21, 2019
Programming
0
74

From source to Kubernetes in 30 minutes

Ded87c77266697ee6981c2277bb97633?s=128

Bastian Hofmann

October 21, 2019
Tweet

More Decks by Bastian Hofmann

See All by Bastian Hofmann
Ded87c77266697ee6981c2277bb97633?s=48 bastianhofmann
0
68
Ded87c77266697ee6981c2277bb97633?s=48 bastianhofmann
0
52
Ded87c77266697ee6981c2277bb97633?s=48 bastianhofmann
1
73
Ded87c77266697ee6981c2277bb97633?s=48 bastianhofmann
1
39
Ded87c77266697ee6981c2277bb97633?s=48 bastianhofmann
0
97
Ded87c77266697ee6981c2277bb97633?s=48 bastianhofmann
1
190
Ded87c77266697ee6981c2277bb97633?s=48 bastianhofmann
2
98
Ded87c77266697ee6981c2277bb97633?s=48 bastianhofmann
0
98
Ded87c77266697ee6981c2277bb97633?s=48 bastianhofmann
0
370

Other Decks in Programming

See All in Programming
9eed44f137609e6ce3b6f1e14f80b9e1?s=48 izumin5210
6
3k
0fb2ce77513181750c384115cd0bc937?s=48 ksukenobe
2
260
404139d782ec666acea93dffc86e089f?s=48 sylph01
1
950
B3f560d34c14a9113e5024bc34ac26a0?s=48 heyitsmohit
1
110
51f4d2341131b6b9bfa996bdb9b8dfa8?s=48 showmant
3
560
0b8ad408b31cb9d5cff2828086c65d58?s=48 temoki
5
2.5k
8ec2b967e38f000eb63ae345cd7c58e6?s=48 minodriven
25
4.2k
B471eb2445c405a8d33f5777816550e3?s=48 lukle
2
200
E76754f592fecf0116c53b2bc39ff135?s=48 kthoms
0
210
C6296f654b1cc6886aabe5b9703cbe67?s=48 ishiitetsuji
1
610
70adfe7679427fa498899769e632b672?s=48 itok
1
230
Fa5fd3405808cc6a9fe4b126b1ec39bd?s=48 gianarb
1
500

Featured

See All Featured
3ab1249be442027903e1180025340b3f?s=48 reverentgeek
24
1.7k
5ce91fa49a613cbc3e20d5f96856473f?s=48 edds
55
9.2k
E43f8dfd01057f8304f5f8fb9a294d7d?s=48 jeffersonlam
325
14k
C1daf20e5c49ff910745198ef9869ac2?s=48 hatefulcrawdad
257
16k
Fde6c3a50ca518a909ef35c22c0ee0e4?s=48 destraynor
145
19k
9cde37f47e4a800ea081ea42de8d749a?s=48 dougneiner
119
7.7k
Af6a12710770ad9a7cfd08c97efd40d3?s=48 pedronauck
649
110k
56c4053438af8e8b90d6f53cbb7573be?s=48 jakevdp
770
190k
245cee81a9c424266e5e401d844ea881?s=48 lara
169
9.3k
B3d6434763caa0ef5dc4b792662c49f7?s=48 smashingmag
227
17k
Aebc2d07a50011e2a30d38435fde564a?s=48 jrom
113
7k
6804f1775cb4babfcc3851298566fbce?s=48 tanoku
85
8.4k

Transcript

  1. @BastianHofmann From source to Kubernetes In 30 Minutes Bastian Hofmann

    mail@bastianhofmann.de

  2. CI/CD

  3. None
  4. None
  5. None

  6. Container orchestration platform

  7. Deploy, run and scale your services in isolated containers

  8. Your application is bundled in an image

  9. The image contains everything the application needs to run

  10. The image is started in an isolated container

  11. No vendor lock in

  12. Standardized APIs

  13. Your laptop

  14. Bare metal

  15. Cloud Providers

  16. And if you don't want to install and maintain Kubernetes

    yourself

  17. Managed Kubernetes

  18. None

  19. So we have code, how do we get this into

    Kubernetes?

  20. Angular demo application

  21. Demo

  22. We have to

  23. Build a docker image

  24. Contains everything that the service needs to run

  25. Make the build as fast as possible

  26. Make the image as small as possible

  27. Demo

  28. Tell Kubernetes to

  29. Start containers

  30. In Kubernetes

  31. • A group of 1 or more containers • Same

    port space • Within a Pod: communication over localhost • Every container has their own filesystem • Every Pod has it's own IP • All Pods can talk with each other • IPs change all the time Pod

  32. Deployment

  33. LoadBalancer

  34. Everything in Kubernetes is a resource (document) defined in YAML

  35. Demo

  36. Also all those YAML files are not nice

  37. Helm

  38. Also we need

  39. DNS

  40. TLS

  41. Monitoring

  42. CI/CD pipeline

  43. Make use of Kubernetes "magic"

  44. Demo

  45. Magic recap

  46. LoadBalancers

  47. Automatically creates a highly available LoadBalancer with a public IP

    address

  48. Ingress controller

  49. The ingress controller (nginx) listens on routing rules in Ingress

    Resources and configures itself to route incoming traffic to the correct running and healthy pods

  50. cert-manager

  51. Cert-manager listens on Ingress Resources and if they need TLS,

    requests a certificate from LetsEncrypt

  52. external-dns

  53. External-DNS listens on Ingress Resources and creates DNS entries

  54. Sealed Secrets

  55. Secrets are stored encrypted in Git and decrypted inside of

    the cluster

  56. Prometheus

  57. Kubernetes and Node metrics are automatically included

  58. Kubernetes and Node alerts are automatically included

  59. Kubernetes and Node dashboards are automatically included

  60. Scraping targets can be automatically discovered

  61. Service Meshes

  62. None

  63. Recommendation: Start playing around with Kubernetes

  64. Alternatives

  65. Flux

  66. None

  67. Knative

  68. Kubernetes-based platform to deploy and manage modern serverless workloads

  69. Tekton CD

  70. CI that runs completely within Kubernetes with Kubernetes Custom Resources

  71. Resources

  72. https:/ /gitlab.com/bashofmann/ angular-test-app

  73. https:/ /gitlab.com/bashofmann/ angular-test-app-finished

  74. https:/ /github.com/syseleven/ golem-workshop

  75. mail@bastianhofmann.de https:/ /twitter.com/BastianHofmann http:/ /speakerdeck.com/u/bastianhofmann