Upgrade to Pro — share decks privately, control downloads, hide ads and more …

[2018.09 Meetup] [TALK #2] Jannis Rake-Revelant...

DevOps Lisbon
September 17, 2018
Technology
1
220

[2018.09 Meetup] [TALK #2] Jannis Rake-Revelant - Kubernetes at Zalando

Kubernetes was introduced at Zalando for a multitude of reasons, like infrastructure efficiency and reliability of services. This was also an opportunity for a change in our build and deployment processes.
It is our purpose that developers should focus on the needs of business applications they’re developing. However, things like compliance, security and not so easy to use tooling can get in the way. With this in mind, we made a radical change in how we build and ship software to AWS, specifically to Kubernetes.

Jannis is an Engineering Lead at Zalando for the team that is responsible for providing an elastic, reliable and automated Platform-as-a-Service infrastructure for developers to build and run applications on. He has been working with Kubernetes since before its GA. Jannis is always eager to talk distributed systems and any challenges related to them.

DevOps Lisbon

September 17, 2018
Tweet

More Decks by DevOps Lisbon

See All by DevOps Lisbon
[2020.11 Meetup] Lisa Crispin - Testing in DevOps
devopslx
0
68
[2020.10 Meetup][TALK] Andrey Budzar - How Linedata Streamlined CI/CD and Optimized Cloud Spend
devopslx
1
540
[2020.09 Meetup] [Talk] Pranjal Deo - Engineering Reliable Mobile Applications
devopslx
0
73
[2020.07 Meetup] [INTRO] DevOps Lisbon
devopslx
0
110
[2020.07 Meetup] [Talk] May Poppendieck - Six Decades of Software Engineering
devopslx
0
170
[2020.06 Meetup] [INTRO] DevOps Lisbon
devopslx
1
100
[2020.06 Meetup] [Talk] Patrick Debois - Trust Me, We're Doing DevSecOps
devopslx
2
420
[2020.05 Meetup] [Talk#1] João Tiago - Load testing UK’s biggest food publisher using AWS & Artillery
devopslx
0
120
[2020.05 Meetup] [Talk#2] Miguel Palhas - Automating your Way to Confidence
devopslx
1
98

Other Decks in Technology

See All in Technology
開発生産性を上げながらビジネスも30倍成長させてきたチームの姿
kamina_zzz
2
1.7k
Exadata Database Service on Dedicated Infrastructure(ExaDB-D) UI スクリーン・キャプチャ集
oracle4engineer
PRO
2
3.2k
Why does continuous profiling matter to developers? #appdevelopercon
salaboy
0
190
Can We Measure Developer Productivity?
ewolff
1
150
第1回 国土交通省 データコンペ参加者向け勉強会③ - Snowflake x estie編 -
estie
0
130
Amplify Gen2 Deep Dive / バックエンドの型をいかにしてフロントエンドへ伝えるか #TSKaigi #TSKaigiKansai #AWSAmplifyJP
tacck
PRO
0
380
マルチプロダクトな開発組織で 「開発生産性」に向き合うために試みたこと / Improving Multi-Product Dev Productivity
sugamasao
1
300
iOSチームとAndroidチームでブランチ運用が違ったので整理してます
sansantech
PRO
0
130
AGIについてChatGPTに聞いてみた
blueb
0
130
[CV勉強会@関東 ECCV2024 読み会] オンラインマッピング x トラッキング MapTracker: Tracking with Strided Memory Fusion for Consistent Vector HD Mapping (Chen+, ECCV24)
abemii
0
220
Why App Signing Matters for Your Android Apps - Android Bangkok Conference 2024
akexorcist
0
130
ノーコードデータ分析ツールで体験する時系列データ分析超入門
negi111111
0
410

Featured

See All Featured
The Web Performance Landscape in 2024 [PerfNow 2024]
tammyeverts
0
93
Side Projects
sachag
452
42k
Designing on Purpose - Digital PM Summit 2013
jponch
115
7k
Principles of Awesome APIs and How to Build Them.
keavy
126
17k
Optimizing for Happiness
mojombo
376
70k
Designing for Performance
lara
604
68k
Bootstrapping a Software Product
garrettdimon
PRO
305
110k
Done Done
chrislema
181
16k
Happy Clients
brianwarren
98
6.7k
Building an army of robots
kneath
302
43k
How to train your dragon (web standard)
notwaldorf
88
5.7k
How to Ace a Technical Interview
jacobian
276
23k

Transcript

  1. Kubernetes at Zalando DEVOPS MEETUP LISBON JANNIS RAKE-REVELANT @jannis_r 2018-09-17

  2. 2 ZALANDO AT A GLANCE ~ 4.5 billion EUR revenue

    2017 > 200 million visits per month > 15.000 employees in Europe > 70% of visits via mobile devices > 23 million active customers > 300.000 product choices ~ 2.000 brands 15 countries

  3. 3 Overview of Kubernetes at Zalando Architecture Open-Source AGENDA

  4. 4 ZALANDO TECH ~ 2.000 Employees in Tech > 200

    Delivery teams

  5. 5 SCALE 99 Clusters 380 Accounts

  6. 6 INFRASTRUCTURE @ ZALANDO STUPS (toolset around AWS) Kubernetes AWS

    accounts per team. All instances must run the same AMI. PowerUser access to Production. Clusters per product (multiple teams). Instances are not managed by teams. Hands off approach. You build it, you run EVERYTHING. A lot of stuff out of the box.

  7. 7 CURRENT STATUS • Kubernetes announced as "GA" • ADOPT

    on Zalando Tech Radar • Critical services on Kubernetes • Next: Kubernetes as default, sunset date for STUPS

  8. 8 DEVELOPERS USING KUBERNETES

  9. 9 KUBERNETES DEPLOYMENTS CDP/Kubernetes AWS/STUPS 55% 29% Dec 2017 July

    2018

  10. 10 ARCHITECTURE

  11. 11 “PHILOSOPHY” No pet clusters We don’t want to tweak

    custom settings for 90+ clusters. Always provide the latest stable Kubernetes version Oldest clusters were upgraded from v1.4 through v1.11. Continuous and non-disruptive cluster updates No maintenance windows. “Fully” automated operations Operators should only need to manually merge PRs.

  12. 12 CLUSTER SETUP • Provisioned in AWS via Cloudformation. •

    Etcd stack outside Kubernetes. • Distribution: Container Linux. • Multi AZ worker nodes. • Highly available control plane setup behind ELB. • Cluster configuration stored in git. • e2e tests run via Jenkins. • Changes rolled out via ‘Cluster Lifecycle Manager’.

  13. 13 CLUSTER LIFECYCLE MANAGER (CLM) github.com/zalando-incubator/cluster-lifecycle-manager

  14. 14 CLUSTER UPGRADE FLOW

  15. 15 CLUSTER CHANNELS?? github.com/zalando-incubator/kubernetes-on-aws Channel Description Clusters dev Development and

    playground clusters. 3 alpha Main infrastructure cluster (important to us). 1 beta Product clusters for the rest of the organization (prod/test). 90+

  16. 16 E2E TESTS ON EVERY PR github.com/zalando-incubator/kubernetes-on-aws

  17. 17 E2E TESTS Conformance Tests Upstream Kubernetes e2e conformance tests

    ✓ 144 Zalando Tests (custom) Custom tests for ingress, external-dns, PSP etc. 4 StatefulSet Tests Rolling update of stateful sets including volume mounting ✓ 2 ✓

  18. 18

  19. 19 E2E TESTS FOR OUR INFRASTRUCTURE Control plane node node

    Control plane node node branch: alpha (base) branch: dev (head) Create Cluster Update Cluster Run e2e tests Delete Cluster Testing dev to alpha upgrade Control plane Control plane

  20. 20 ARCHITECTURE DECISIONS • One prod. cluster per AWS account

    / “product” • API server behind SSL ELB, OAuth webhook • Read only access to production • CI/CD for write access • etcd running separately on EC2 • Multi AZ clusters

  21. 21 - TECHNICAL - Backup your etcd (and monitor your

    backups) - Be careful using t instances in production - Disabling CPU throttling (CFS quota) to avoid latency issues - NON-TECHNICAL - Avoid friction for the users - Try to create a system "compliant by design” - Create a community inside the company LESSONS LEARNED

  22. 22 OPEN SOURCE

  23. 23 INGRESS CONTROLLER https://github.com/zalando-incubator/kube-ingress-aws-controller

  24. 24 POSTGRES OPERATOR github.com/zalando-incubator/postgres-operator Node pg role=master Node pg role=replica

    Node pg role=replica Node postgres operator Evict ✘ evict pg role=replica promote role=master role=replica drain ✓

  25. 25 KUBERNETES RESOURCE REPORT github.com/hjacobs/kube-resource-report

  26. 26 KUBERNETES DOWNSCALER github.com/hjacobs/kube-downscaler Weekend

  27. 27 OPEN SOURCE Kubernetes on AWS github.com/zalando-incubator/kubernetes-on-aws AWS ALB Ingress

    controller github.com/zalando-incubator/kube-ingress-aws-controller Skipper HTTP Router & Ingress controller github.com/zalando/skipper External DNS github.com/kubernetes-incubator/external-dns Postgres Operator github.com/zalando-incubator/postgres-operator Kubernetes Resource Report github.com/hjacobs/kube-resource-report Kubernetes Downscaler github.com/hjacobs/kube-downscaler

  28. QUESTIONS? JANNIS RAKE-REVELANT ENGINEERING LEAD TEAM TEAPOT (COMPUTE) [email protected] @jannis_r