What is ClouDesire? Application Marketplace to help software vendors to sell and provision applications ● Web Applications: ○ provision VM ○ on multiple cloud providers ○ deploy/upgrade application and dependencies ○ application logging ○ resource monitoring ● With multi-tenant applications/SaaS: ○ expose REST hooks and API for billing lifecycle ● manage subscriptions, billing, pay-per-use, invoicing, payments. 3
Before Docker: platform deployments Problems faced: ● Different stacks, different ways to handle deployments ○ Hundreds LOC of Chef recipes ○ Inevitable complexity ○ No trustworthy procedure to rollback ● Hard to switch between deps versions ○ Only the one available on official Ubuntu repositories ● Heterogeneous dev environments (vagrant?) ○ Ubuntu, Arch Linux, Mac 5
Before Docker: application packaging How to grab applications from ClouDesire vendors? ● GIT repository (heroku)? ○ Not really its use-case, require understanding ○ Customization may require branching ● DEB/RPM packages? ○ Too much complexity ● Custom approach? 6
Before Docker: hand-made zip package Requirements: ● Everyone should be able to do it ● even Windows users ● in a short time Our solution, not elegant but effective: ● A ZIP archive with: ○ a folder for sources/artifacts ○ a folder for sql scripts ○ predefined environment variables to use 7
Docker: container lifecycle ● Pulls an image from a registry ● Creates a new container ○ Allocates a r/w filesystem ○ Allocates a network interface (on a bridge) ○ Sets up network (IP address, dns..) ● Launch a process into the container ● Captures and provides application output ● Container terminates when the process exits 11
Docker: why? Enables software developers to: ● package an application ● with all dependencies ● runs it everywhere unchanged ● re-use images via composition 12
Docker adoption: platform deployment ● Different stacks, different ways to handle deployments ○ Docker Image for each component ○ Dozens LOC of Chef recipe for deploy / upgrades ○ Deployment complexity hidden into Dockerfile ○ Rollback is equal to upgrade ● Hard to switch between deps versions ○ Docker for external dependencies ○ Use them without thinking how to deploy / upgrade ● Heterogeneous dev environments (vagrant?) ○ Docker-compose for each module 14
Docker adoption: application packaging How to grab applications from ClouDesire vendors? ● Custom ZIP package ○ Build a docker image for the application ○ Push your image to our registry. Advantages: ● Easy to follow documentation ● Fast Try-Fail-Retry cycle while building ● Works-for-me is works everywhere ● Re-use community images for dependencies 15
Docker: it looks like something is missing Moving to containers introduced a new layer of complexity: ● communication between containers: ○ Same host (with docker linking feature) ■ restart everything after redeploy ○ Multiple hosts ■ not a docker problem ● Scaling/hot-deploy ready ○ but load balancers are statically configured 17
Before Consul (and service discovery) ● Hardcoded IP:port configuration ○ Hand-made copy-paste ○ Not fault-tolerant ○ No autoscaling ○ No self-healing ● Configuration management (e.g. Puppet, Chef) ○ Slow to react to events ○ Ordered service starting Above not really feasible when running dozens of containers 20
When service discovery is needed ● Monolithic architecture? No problem. ● Distributed architecture? ○ Is there at least one foo instance running? ○ At which address? ○ On which port? FOO BAR Service Registry Client 22
Consul features ● Agent based ● Query interfaces ○ HTTP JSON API ○ DNS ● Health-Checking ○ No one want borked services ● Key-Value Store ○ Shared dynamic configuration ○ Feature toggle ○ Leader election 23
Populate services from Docker https://github.com/gliderlabs/registrator ● Discover containers using docker API ● Skip containers without published ports ● Register service when container goes up ○ Service name is the image name ○ Tags via environment variables ● Unregister service when container goes down 32
Real-world architecture of everything Container A Container B Registrator Consul agent Consul agent Registrator Backend Node A Backend Node B Network ● Consul agent running on each node ● Registrator on each docker node ● Every node has 127.0.0.1 in /etc/resolv.conf ● Services discover dependencies via DNS ● Nginx endpoint generated by consul-template Frontend Node(s) Nginx Consul agent Consul- template 38
Consul: additional goodies ● Key-Value store for configurations ● DNS forwarding ● DNS caching ● WAN replication (Multi-DC) ● Atlas bootstrapping (https://atlas.hashicorp. com/) ● Web UI (http://demo.consul.io/ui/) 39
Homework for the coming months ● Take a look at: ○ Docker swarm (1.0 released on nov 2015) ○ Kubernetes (1.0 release on july 2015) ○ Apache Mesos (0.25 release on oct 2015) 41
gionn
egmc
smt7174
hamadakoji
line_developers
10xinc
lemon
.jpg){kind=avatar}
izzii
soracom
orinbou
nrryuya
yoshiiryo1
antimon2
frogandcode
brianwarren
denniskardys
tenderlove
bkeepers
marcelosomers
sstephenson
mza
maggiecrowley
smashingmag
cherdarchuk
aarron