Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Start a fullnode on GKE in <2 min - Alexander Peters, IOV

GoDays
January 30, 2019
Technology
0
98

Start a fullnode on GKE in <2 min - Alexander Peters, IOV

Start a fullnode on GKE in <2 min - Alexander Peters, IOV

GoDays

January 30, 2019
Tweet

More Decks by GoDays

See All by GoDays
Standing on the shoulders of giants - Tomasz Janiszewski - D2IQ
godays
1
100
How to instrument Go code in 2020 - Björn Rabenstein - Grafana Labs
godays
1
210
12 Factor CLI Apps with Cobra - Markus Zimmermann - cosee
godays
0
290
Integration and end-to-end testing with TestContainers-Go - Nikolay Kuznetsov & Erdem Toraman - Zalando
godays
1
780
Fun with Functions - Frank Müller - Loodse
godays
0
87
Amazon SNS/SQS with Go - Paul Borlin - Compassion International
godays
1
190
Writing a language parser in 15min (or less) - Xavier Coulon - Red Hat
godays
0
82
A story about distributed computing before the cloud arrived - Rogier Lommers - bol.com
godays
0
67
Serverless Ops – Bye-bye Bash, Hello Go! - Rob Sutter - Amazon
godays
0
74

Other Decks in Technology

See All in Technology
Janus
bkuhlmann
1
490
シン・Kafka / shin-kafka
oracle4engineer
PRO
7
2.7k
PHPカンファレンス小田原2024
ysknsid25
3
660
The AI Revolution Will Not Be Monopolized: How open-source beats economies of scale, even for LLMs (QCon London)
inesmontani
PRO
1
150
現代CSSフレームワークの内部実装とその仕組み
poteboy
0
260
NgRx Signal Store
rainerhahnekamp
0
110
自動生成を活用した、運用保守コストを抑える Error/Alert/Runbook の一元集約管理 / Centralized management of Error/Alert/Runbook to minimize operational costs using automated code generation
biwashi
9
2.1k
なぜ NOT A HOTEL が Web3 に取り組むのか - NOT A HOTEL TECH TALK
ynunokawa
0
160
テストプロセスで大事にしていること #jasstnano
makky_tyuyan
0
120
Tebiki株式会社 エンジニア採用資料
tebiki
0
4.1k
SIEMを用いて、セキュリティログ分析の可視化と分析を実現し、PDCAサイクルを回してみた
coconala_engineer
0
220
検証を通して見えてきたTiDBの性能特性
lycorptech_jp
PRO
6
3.3k

Featured

See All Featured
ParisWeb 2013: Learning to Love: Crash Course in Emotional UX Design
dotmariusz
104
6.6k
[RailsConf 2023 Opening Keynote] The Magic of Rails
eileencodes
9
8.3k
Large-scale JavaScript Application Architecture
addyosmani
503
110k
BBQ
matthewcrist
80
8.7k
Build your cross-platform service in a week with App Engine
jlugia
225
17k
Infographics Made Easy
chrislema
237
18k
In The Pink: A Labor of Love
frogandcode
138
21k
We Have a Design System, Now What?
morganepeng
42
6.7k
The Brand Is Dead. Long Live the Brand.
mthomps
48
28k
Debugging Ruby Performance
tmm1
70
11k
Adopting Sorbet at Scale
ufuk
67
8.6k
RailsConf 2023
tenderlove
2
530

Transcript

  1. Start a full node on GKE in <2 min 2019

    - Alexander Peters

  2. About Me Alexander Peters Backend lead at IOV.one Go, K8s,

    DevOps and Security

  3. Architecture V S S iNet S L B

  4. Architecture V S S iNet S L B

  5. Containers

  6. Minimal Container Images • Scratch Image • Alpine Linux when

    OS required https://alpinelinux.org • Distroless base images https://github.com/GoogleContainerTools/distroless

  7. State

  8. State transfer • VolumeSnapshot Controller • VolumeSnapshot Provisioner > Disk

    snapshots #FTW https://github.com/kubernetes-incubator/external-storage

  9. Best height? F F F F F C

  10. Take snapshot F F F C V

  11. CRDs: VolumeSnapshots + Data > kubectl get volumesnapshots NAME AGE

    godays-snap-1548763215780962127 17m godays-snap-1548763506627916883 12m godays-snap-1548763807378144367 7m apiVersion: volumesnapshot.external-storage.k8s.io/v1 kind: VolumeSnapshotData spec: gcePersistentDisk: snapshotId: pvc-d92e9529-2033-11e9-8eb6-42010a8400241548763507112695918

  12. Let’s use it!

  13. VolumeSnapshot Provisioning kind: StorageClass apiVersion: storage.k8s.io/v1 metadata: name: snapshot-promoter provisioner:

    volumesnapshot.external-storage.k8s.io/snapshot-promoter reclaimPolicy: Delete volumeBindingMode: Immediate parameters: type: pd-ssd https://github.com/kubernetes-incubator/external-storage/blob/master/snapshot/doc/user-guide.md

  14. Sentry - Full Node Config apiVersion: apps/v1 kind: StatefulSet spec:

    ... volumeClaimTemplates: spec: storageClassName: snapshot-promoter selector: matchLabels: group: "godays" matchExpressions: - {key: approved, operator: Exists}

  15. Not a live demo

  16. PVC - Provisioning > kubectl get pvc -w ... godays-fullnode-xrpc-0

    Pending snapshot-promoter 19s godays-fullnode-xrpc-0 Pending snapshot-promoter 22s godays-fullnode-xrpc-0 Pending snapshot-promoter 24s godays-fullnode-xrpc-0 Pending snapshot-promoter 26s godays-fullnode-xrpc-0 Pending snapshot-promoter 28s godays-fullnode-xrpc-0 Pending snapshot-promoter 30s godays-fullnode-xrpc-0 Pending snapshot-promoter 32s godays-fullnode-xrpc-0 Pending pvc-23c64f9c-2308-11e9-8eb6-42010a840024 0 snapshot-promoter 34s godays-fullnode-xrpc-0 Bound pvc-23c64f9c-2308-11e9-8eb6-42010a840024 33Gi RWO snapshot-promoter 34s godays-fullnode-xrpc-0 Bound pvc-23c64f9c-2308-11e9-8eb6-42010a840024 33Gi RWO snapshot-promoter 34s

  17. Pod - Deployment > kubectl get pods -w godays-fullnode-xrpc-0 0/3

    Pending 0 0s godays-fullnode-xrpc-0 0/3 Pending 0 34s godays-fullnode-xrpc-0 0/3 Init:0/2 0 34s godays-fullnode-xrpc-0 0/3 Init:0/2 0 44s godays-fullnode-xrpc-0 0/3 Init:1/2 0 45s godays-fullnode-xrpc-0 0/3 PodInitializing 0 46s godays-fullnode-xrpc-0 2/3 Running 0 47s godays-fullnode-xrpc-0 3/3 Running 0 59s

  18. • Rolling snapshots *) • PVC not deleted • Data

    integrity issues • Security concerns • High frequency Problems *) https://github.com/kubernetes-incubator/external-storage/issues/875

  19. Summary • All good now! • Fast startup time <

    2min • Works well with Horizontal Pod Autoscaler • Kubernetes v1.12 as an alpha feature

  20. Thanks!

  21. Bonus: Merkle tree https://en.wikipedia.org/wiki/Merkle_tree

  22. Bonus: Working With Scratch Image • Go static compilation •

    COPY ca-bundle.pem /etc/ssl/certs/ca-certificates.crt https://curl.haxx.se/docs/caextract.html • ENV ZONEINFO /zoneinfo.zip COPY zoneinfo.zip / In $GOROOT/lib/time/zoneinfo.zip https://golang.org/pkg/time/#LoadLocation