Q4 CNCF Eastern Canada MEetups

Transcript

1. © 2019 Cloud Native Computing Foundation 1 Bienvenue! Welcome!

2. © 2019 Cloud Native Computing Foundation 2 MEETUPS ACROSS EASTERN

   CANADA Montreal 1600 Members Up to 250 Attendees each Meetup Quebec City 450 Members Up to 50 Attendees each Meetup Toronto 1200 Members Up to 150 Attendees each Meetup Ottawa 650 Members Up to 85 Attendees each Meetup Kitchener-Waterloo 300 Members Up to 35 Attendees each Meetup

3. © 2019 Cloud Native Computing Foundation 3 Thank you to

   our sponsors!

4. © 2019 Cloud Native Computing Foundation 4 New sponsors joined

   us!

5. © 2019 Cloud Native Computing Foundation 5 Thank you for

   hosting us!

6. © 2019 Cloud Native Computing Foundation 6 Congrats to Shopify!!!

   $2.9+ billion in worldwide sales over!!! Powered by

7. © 2019 Cloud Native Computing Foundation 7 http://K8scanadaslack.herokuapp.com Joignez-vous au

   Slack K8s Canada!

8. © 2019 Cloud Native Computing Foundation 8 CFP Open for

   Q1 CNCF Meetups! • Ottawa CNCF Meetup Q1 https://www.papercall.io/cncf-ottawa Other Cities: • Montreal - https://www.papercall.io/cncf-montreal • Quebec - https://www.papercall.io/cncf-quebec • Toronto - https://www.papercall.io/cncf-toronto • Waterloo - https://www.papercall.io/cncf-waterloo

9. © 2019 Cloud Native Computing Foundation 9 Join us !

   • We always looking for: ◦ Sponsors ◦ Venues • Looking for Volunteers • Looking for Co-organizers • Looking for Speak!

10. © 2019 Cloud Native Computing Foundation 10 Q4 CNCF &

    Kubernetes Meetup - Kubecon Recap

11. © 2019 Cloud Native Computing Foundation 11 Ayrat “Archy” Chris

    Carty Meet Ottawa Meetup Organizers Jonathan Pulsifer

12. © 2019 Cloud Native Computing Foundation 12 Ayrat “Archy” Meet

    Toronto Meetup Organizers

13. © 2019 Cloud Native Computing Foundation 13 Thank you to

    remote team of co-organizers to prepare content!!! Anthony Dahanne Sebastien Thomas

14. © 2019 Cloud Native Computing Foundation 14 Ayrat “Archy” Anthony

    Dahanne Meet Montreal Meetup Organizers

15. © 2019 Cloud Native Computing Foundation 15 Ayrat “Archy” “Prune”

    (Sebastien THOMAS) Meet Quebec Meetup Organizers

16. © 2019 Cloud Native Computing Foundation 16 Ayrat “Archy” Christopher

    Vollick Meet Waterloo Meetup Organizers

17. © 2019 Cloud Native Computing Foundation 17 Ayrat “Archy” Dimka

    Meet Toronto Meetup Organizers

18. © 2019 Cloud Native Computing Foundation 18 • Kubecon recap

    - Anthony • CNCF Update – Helm 3 - Ayrat CNCF Ambassador – FluxCD + ArgoCD = Argo Flux (GitOps Engine) • Istio Year in Recap - Ayrat CNCF Ambassador and Sebastian • Kubernetes Year in Recap - from Kubernetes 1.17 Release Notes Lead - Chris Carty Agenda

19. © 2019 Cloud Native Computing Foundation 19 • Kubecon recap

    by Archy CNCF Ambassador • CNCF Update by Archy CNCF Ambassador • Istio Year in Recap - Archy CNCF Ambassador • Kubernetes Year in Recap - Archy CNCF Ambassador • Modern DevOps with Spinnaker and State of the Kubernetes Provider by Olga Kundzich @Pivotal • Designing a complete CI-CD pipeline using Argo Events, Workflow and CD by Julian Mazzitelli by CTO BioBox Agenda for CNCF Ottawa

20. Kubecon Recap

21. © 2019 Cloud Native Computing Foundation 21 Kubecon San Diego

    2019 in Numbers

22. © 2019 Cloud Native Computing Foundation 22 Kubecon San Diego

    2019 Top 10 Announcements 1. Mirantis acquires Docker enterprise business 2. Helm 3 released, for real! 3. Jfrog annonces container and helm registry FREE 4. Rancher announces k3s GA and Rio is in Beta 5. Cloud Native Security Hub based on Falco from Sysdig 6. PlanetScale launches CNDb fully managed Vitess 7. Istio 1.4 released 8. Managed Istio GA on IBM Kubernetes Service 9. Solo.io introduces Autopilot 10. Google Cloud Run based on Knative is GA

23. © 2019 Cloud Native Computing Foundation 23 Kubecon NA 2019

    Trends • Architecture: what’s up with Ingress Controller and Services? • Architecture: Pluggability - Container RuntimeClass, NSM • Operators - several frameworks • Kubernetes everywhere - yes, but… • Policy, Policy, Policy - Everywhere • OpenTelemetry - ready for primetime? • GitOps : ArgoFlux

24. © 2019 Cloud Native Computing Foundation 24 Kubecon NA 2019

    Tools • Developer tools frenzy – Skaffold - GA – Tilt – Telepresence – Squash – the “older” ones: Draft (not much going) – the unsuspected gift: ephemeral containers • Kubectl goodness – krew (plugin manager) – kubectx, kubens – kustomize – kail (log aggregator) • Kubernetes distributions – kind – k3s – the “older” ones: Minikube, DockerForMac/Windows

25. © 2019 Cloud Native Computing Foundation 25 Kubecon NA 2019

    - Pre-Conference • Rejekts: a pre conference with smaller audience • Day 0 : pick your favorite (Contributor summit, NSM day, AWS day, etc.)

26. © 2019 Cloud Native Computing Foundation 26 Kubecon NA 2019

    - Meetups • Istio Meetup

27. © 2019 Cloud Native Computing Foundation 27 Kubecon NA 2019

    Keynotes Hosts Bryan Liles Senior Staff Engineer, VMware Vicki Cheung Engineering Manager, Lyft

28. © 2019 Cloud Native Computing Foundation 28 Kubecon NA 2019

    Keynotes

29. © 2019 Cloud Native Computing Foundation 29 Kubecon NA 2019

    Keynotes

30. © 2019 Cloud Native Computing Foundation 30 Parties Day 0

    and Day 1

31. © 2019 Cloud Native Computing Foundation 31 SIG Running

32. © 2019 Cloud Native Computing Foundation 32 All attendee party

33. © 2019 Cloud Native Computing Foundation 33 • Lightning talks

    • Tech Talks • SIG Intro • SIG Deep Dive Boring part

34. © 2019 Cloud Native Computing Foundation 34 Booth Crawl and

    Hallway Track

35. © 2019 Cloud Native Computing Foundation 35 Puppy Pawlooza

36. © 2019 Cloud Native Computing Foundation 36 Swag

37. © 2019 Cloud Native Computing Foundation 37 Kubecon NA 2019

    - Official hashtah #kubetaco

38. Canadian Speakers @Kubecon

39. © 2019 Cloud Native Computing Foundation 39

40. © 2019 Cloud Native Computing Foundation 40

41. © 2019 Cloud Native Computing Foundation 41 KubeCon + CloudNativeCon

    • Europe 2020 – Amsterdam: March 30 - April 2, 2020 • China 2020 – Shanghai: July 28-30, 2020 • North America 2020 – Boston: November 17-20, 2020

42. © 2019 Cloud Native Computing Foundation 42 Kubernetes Community Days

43. Kubernetes 2019 Contributors Summit

44. © 2019 Cloud Native Computing Foundation 44

45. © 2019 Cloud Native Computing Foundation 45 Overview - 1

    Day - 551 Attendees - New Contributors/Intermediate Contributor workshops - Unconference Sessions - Highlights - Securing Kubernetes By Default Session - Multi-Tenancy In Kubernetes Work Shop - Live API Review by Jorgan Liggitt - Meeting core contributors!

46. © 2019 Cloud Native Computing Foundation 46

47. CNCF Updates

48. Sandbox

49. Incubation

50. Graduated

51. Graduated

52. Helm 3

53. © 2019 Cloud Native Computing Foundation 53 Helm 3 -

    It’s more than just Tiller! - No tiller! Helm init has been removed - Chart Repository Helm Hub – central catalog for chart repos - Release upgrade strategy 3 merge/upgrade compares: + cluster live state - Release Storage Update Stored as Secrets by default in the namespace of the release - Helm 3 Security audit passed! - Migration 2 migration use cases: Strangler and in situ

54. © 2019 Cloud Native Computing Foundation 54 Helm 2 VS

    Helm 3

55. FluxCD + ArgoCD

56. © 2019 Cloud Native Computing Foundation 56 Argo Flux -

    ArgoCd and FluxCD announced they are combining resources to create a GitOps Engine - Development can be tracked at #gitops in the Kubernetes Slack - First community meeting was this morning

57. Kubernetes 2019 recap

58. © 2019 Cloud Native Computing Foundation 58 3 Releases so

    far... - 1.14 Caturnetes Monday, March 25 - 1.15 The Persevering Release Monday, June 17th - 1.16 Unlimited Breadsticks For All Wednesday, September 18 - 1.17 ??? Monday, December 9

59. © 2019 Cloud Native Computing Foundation 59 Page • 31

    total enhancements tracked in 1.16 ▪ 8 Stable Enhancements ▪ 8 Graduating to Beta ▪ 15 Introduced Alpha features • CRDs and Admission Webhooks (GA) • Volume Cloning and Resizing (Beta) • RuntimeClass scheduling (Beta) • Kubeadm for Windows and Advanced config via Kustomize (Alpha) • IPv4/IPv6 Dual Stack Support (Alpha) • Ephemeral Containers (Alpha) • New EndpointSlice API (Alpha) Kubernetes 1.16

60. © 2019 Cloud Native Computing Foundation 60 1.17 Release -

    On Track for December 9th Release - Current release notes are at relnotes.k8s.io - Windows Enhancements - Runasuser now supported

61. Istio 2019 Recap

62. © 2019 Cloud Native Computing Foundation 62 Istio 0.x to

    1.3 0.5 : 01/2018 : RBAC control to access services in the mesh 0.8 : 05/2018: - Citadel to manage security (key/certificates) - replacing istio-auth - v1alpha3 route rules (ServiceEntry, DestinationRule) 1.0 : 07/2018 : multi-cluster mesh 1.1 : 03/2019 : - Performance focused, - added Galley to validate yaml - VirtualServices (removed ingress annotations) - SDS support with Citadel to send SSL certificates to proxies - Kiali to visualize the Mesh 1.2 06/2019 : - IPv6 experimental - locality based routing for multi-cluster mesh - Istio CNI to bootstrap Sidecars in place of istio-init container 1.3 09/2019 : - install Configuration Profiles - multi-mesh (mesh federation) effort started - lots of improvements

63. © 2019 Cloud Native Computing Foundation 63 Microservices - Benefits

    To scale independently Separation of concerns Faster commit-to-deploy time Different programming languages Smaller, more discrete codebases

64. © 2019 Cloud Native Computing Foundation 64 Microservices - Challenges

    More complexity More service owners More programming languages More network interactions ++ hops

65. © 2019 Cloud Native Computing Foundation 65 Kubernetes Lifecycles containers,

    keeps applications alive Declarative model (YAML) Abstracts away individual servers Add more nodes as you scale Easily move between on-premises and the cloud

66. © 2019 Cloud Native Computing Foundation 66 What about the

    connections between my services? How to investigate latency? How do I manage security policies? Service identity? Network policies? Resiliency? Avoid cascading failures? How do I upgrade a service? But...

67. © 2019 Cloud Native Computing Foundation 67 A service mesh

    is… • a transparent infrastructure layer that manages communication between microservices • so that developers can focus on business logic • while operators work independent of dev cycles to provide a more resilient environment Introducing Service Mesh Envoy

68. © 2019 Cloud Native Computing Foundation 68 An open-source service

    mesh tool to manage service interactions across container and VM-based workloads. • Runs on top of Kubernetes, VMs • Based on Envoy proxy • Originated by Google + IBM in 2017 • Today: 300+ organizations contributing, (Redhat, Pivotal, Aspen Mesh, Tetrate and many more) What is Istio? Envoy

69. © 2019 Cloud Native Computing Foundation 69 What does it

    do? Observability Telemetry for every service Logs for all traffic Distributed Tracing Service graph

70. © 2019 Cloud Native Computing Foundation 70 What does it

    do? Observability Telemetry for every service Logs for all traffic Distributed Tracing Service graph Traffic Management: Advanced Ingress A/B, mirroring, Canary Client-side load balancing Timeouts, retry, circuit-breaks

71. © 2019 Cloud Native Computing Foundation 71 What does it

    do? Observability Telemetry for every service Logs for all traffic Distributed Tracing Service graph Traffic Management: Advanced Ingress A/B, mirroring, Canary Client-side load balancing Timeouts, retry, circuit-breaks Security: Encryption in transit Authentication/Identity Authorization Egress

72. © 2019 Cloud Native Computing Foundation 72 Istio Architecture Control

    Plane API Mixer Service A Service B Envoy Envoy Pilot Citadel Config data to Envoys TLS certs to Envoys Policy checks, telemetry

73. © 2019 Cloud Native Computing Foundation 73 Service Mesh Landscape

    Envoy

74. © 2019 Cloud Native Computing Foundation 74 Istio 1.1 to

    1.3 1.1 : 03/2019: - Performance focused, - added Galley to validate yaml - VirtualServices (removed ingress annotations) - SDS support with Citadel to send SSL certificates to proxies - Kiali to visualize the Mesh 1.2 06/2019: - IPv6 experimental - locality based routing for multi-cluster mesh - Istio CNI to bootstrap Sidecars in place of istio-init container 1.3 09/2019 : - install Configuration Profiles - multi-mesh (mesh federation) effort started - lots of improvements

75. © 2019 Cloud Native Computing Foundation 75 Istio 1.4 Install

    / Observability • Istio Operator Telemetry • Mixer-less telemetry. Support for in-proxy Prometheus and Stackdriver Security • Automatic mTLS • Authz policy (Beta) • Citadel Improvements (periodically check and rotate the expired root CA) Traffic Management • Mirror percentage Tools • Istio go-client and istioctl analyze

76. Istio 2019 Recap

77. © 2019 Cloud Native Computing Foundation 77 Mixer → Extensions

    in Envoy • Telemetry as Envoy C++ extensions ✔ ◦ Prometheus, StackDriver ✔ • WebAssembly for dynamic extensions ✔ ◦ API to load modules ◦ Leveraged by Istio itself • See 1.4 release notes :)

78. © 2019 Cloud Native Computing Foundation 78 New Architecture Control

    Plane API Service A Service B Envoy Envoy Pilot Config data to Envoys TLS certs to Envoys xDS CA Config Optional External CA

79. © 2019 Cloud Native Computing Foundation 79 UX • Better

    default behaviors ◦ Zero-config ◦ Auto-mTLS ✔ ◦ Protocol sniffing ✔ ◦ Transparent proxying ✔ • istioctl awesome-ness ✔ ◦ Audit, diagnose & recommend

80. © 2019 Cloud Native Computing Foundation 80 API & Config

    simplification • ClusterRbacConfig, ServiceRole, ServiceRoleBinding ◦ AuthorizationPolicy ✔ • Mixer (Instance, Handler, Rules) ◦ CRD per telemetry vendor • Values.yaml & mesh-config • Root namespace for policy ✔

81. © 2019 Cloud Native Computing Foundation 81 Install & Upgrade

    • Operator for common topologies ✔ ◦ More coming for multi-cluster • New install layout ✔ ◦ A-B test control planes • VM modelling & onboarding

82. Istio 2020 foresight

83. © 2019 Cloud Native Computing Foundation 83 Themes • Stay

    on course • Improve extensibility model vs EnvoyFilter ◦ Protocols, Envoy filters, WASM, CRDs • Environments and Operations • Performance

84. © 2019 Cloud Native Computing Foundation 84 Istio 1.4 -

    Multi-Cluster Service Mesh - Multi Control Plane - Better security management - Locality control - Ready for production

85. Knative 2019 Recap

86. Announcing Speakers Toronto

87. Announcing Speakers Toronto

88. Announcing Speakers Toronto

89. © 2019 Cloud Native Computing Foundation 89 Feedback Win Spinnaker

    T-shirt

90. Announcing Speakers Toronto

91. Announcing Speakers Chris Carty Wes MacDonald Eric Leonard

92. © 2019 Cloud Native Computing Foundation 92 Cloud and AI

    DevFest Montreal

93. © 2019 Cloud Native Computing Foundation 93 Ottawa Speakers and

    Cloud and AI DevFest

94. © 2019 Cloud Native Computing Foundation 94 DevFest - What’s

    Next ? • Update website with video and slides from event https://devfest.cloud-montreal.ca/ • Video will be available @Kubernetes Canada Youtube Channel • Pictures from DevFest can be found here • Next Cloud and AI DevFest in Ottawa ?

95. © 2019 Cloud Native Computing Foundation 95 KubeCon + CloudNativeCon

    • We are expecting 11,000+ attendees • Reminder to register for any additional colo events like EnvoyCon, Contributor Summit, Spinnaker, Rejecto and etc • PLEASE express interest on sched for talks you want to attend • Join #kubecon-sandiego2019 in K8s Canada Slack