Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Start a fullnode on GKE in <2 min - Alexander P...

Avatar for GoDays GoDays
January 30, 2019
Technology
0
110

Start a fullnode on GKE in <2 min - Alexander Peters, IOV

Start a fullnode on GKE in <2 min - Alexander Peters, IOV

Avatar for GoDays

GoDays

January 30, 2019
Tweet

More Decks by GoDays

See All by GoDays
Standing on the shoulders of giants - Tomasz Janiszewski - D2IQ
Avatar for GoDays godays
1
130
How to instrument Go code in 2020 - Björn Rabenstein - Grafana Labs
Avatar for GoDays godays
1
250
12 Factor CLI Apps with Cobra - Markus Zimmermann - cosee
Avatar for GoDays godays
0
400
Integration and end-to-end testing with TestContainers-Go - Nikolay Kuznetsov & Erdem Toraman - Zalando
Avatar for GoDays godays
1
1.1k
Fun with Functions - Frank Müller - Loodse
Avatar for GoDays godays
0
120
Amazon SNS/SQS with Go - Paul Borlin - Compassion International
Avatar for GoDays godays
1
310
Writing a language parser in 15min (or less) - Xavier Coulon - Red Hat
Avatar for GoDays godays
0
110
A story about distributed computing before the cloud arrived - Rogier Lommers - bol.com
Avatar for GoDays godays
0
110
Serverless Ops – Bye-bye Bash, Hello Go! - Rob Sutter - Amazon
Avatar for GoDays godays
0
93

Other Decks in Technology

See All in Technology
Digitization部 紹介資料
Avatar for Sansan, Inc. sansan33
PRO
1
5.5k
HR Force における DWH の併用事例 ~ サービス基盤としての BigQuery / 分析基盤としての Snowflake ~@Cross Data Platforms Meetup #2「BigQueryと愉快な仲間たち」
Avatar for Ryo Suzuki ryo_suzuki
0
210
セキュアな認可付きリモートMCPサーバーをAWSマネージドサービスでつくろう! / Let's build an OAuth protected remote MCP server based on AWS managed services
Avatar for 株式会社カミナシ kaminashi
3
320
AWS IoT 超入門 2025
Avatar for kazunari hattori
0
340
エンタメとAIのための3Dパラレルワールド構築(GPU UNITE 2025 特別講演)
Avatar for Preferred Networks pfn
PRO
0
310
OAuthからOIDCへ ― 認可の仕組みが認証に拡張されるまで
Avatar for 山根大生 yamatai1212
0
110
ガバメントクラウドの概要と自治体事例(名古屋市)
Avatar for 高橋広和 techniczna
2
240
AI時代こそ求められる設計力- AWSクラウドデザインパターン3選で信頼性と拡張性を高める-
Avatar for Ken'ichirou Kimura kenichirokimura
3
310
[Keynote] What do you need to know about DevEx in 2025
Avatar for Salaboy salaboy
0
170
AWS Control Tower に学ぶ! IAM Identity Center 権限設計の第一歩 / IAM Identity Center with Control Tower
Avatar for Yuta Otani y___u
0
170
Introduction to Sansan for Engineers / エンジニア向け会社紹介
Avatar for Sansan, Inc. sansan33
PRO
5
43k
「使い方教えて」「事例教えて」じゃもう遅い! Microsoft 365 Copilot を触り倒そう!
Avatar for Taichi Nakamura taichinakamura
0
390

Featured

See All Featured
Producing Creativity
Avatar for Steve Smith orderedlist
PRO
347
40k
Typedesign – Prime Four
Avatar for Hannes Fritz hannesfritz
42
2.8k
Faster Mobile Websites
Avatar for Dean Hume deanohume
310
31k
Easily Structure & Communicate Ideas using Wireframe
Avatar for Afnizar Nur Ghifari afnizarnur
194
16k
Scaling GitHub
Avatar for Zach Holman holman
463
140k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
Avatar for Tammy Everts tammyeverts
55
3k
Being A Developer After 40
Avatar for Adrian Kosmaczewski akosma
91
590k
Building a Scalable Design System with Sketch
Avatar for Laura Van Doore lauravandoore
463
33k
We Have a Design System, Now What?
Avatar for Morgane Peng morganepeng
53
7.8k
Imperfection Machines: The Place of Print at Facebook
Avatar for Scott Boms scottboms
269
13k
Building an army of robots
Avatar for Kyle Neath kneath
306
46k
Gamification - CAS2011
Avatar for David Bonilla davidbonilla
81
5.5k

Transcript

  1. Start a full node on GKE in <2 min 2019

    - Alexander Peters

  2. About Me Alexander Peters Backend lead at IOV.one Go, K8s,

    DevOps and Security

  3. Architecture V S S iNet S L B

  4. Architecture V S S iNet S L B

  5. Containers

  6. Minimal Container Images • Scratch Image • Alpine Linux when

    OS required https://alpinelinux.org • Distroless base images https://github.com/GoogleContainerTools/distroless

  7. State

  8. State transfer • VolumeSnapshot Controller • VolumeSnapshot Provisioner > Disk

    snapshots #FTW https://github.com/kubernetes-incubator/external-storage

  9. Best height? F F F F F C

  10. Take snapshot F F F C V

  11. CRDs: VolumeSnapshots + Data > kubectl get volumesnapshots NAME AGE

    godays-snap-1548763215780962127 17m godays-snap-1548763506627916883 12m godays-snap-1548763807378144367 7m apiVersion: volumesnapshot.external-storage.k8s.io/v1 kind: VolumeSnapshotData spec: gcePersistentDisk: snapshotId: pvc-d92e9529-2033-11e9-8eb6-42010a8400241548763507112695918

  12. Let’s use it!

  13. VolumeSnapshot Provisioning kind: StorageClass apiVersion: storage.k8s.io/v1 metadata: name: snapshot-promoter provisioner:

    volumesnapshot.external-storage.k8s.io/snapshot-promoter reclaimPolicy: Delete volumeBindingMode: Immediate parameters: type: pd-ssd https://github.com/kubernetes-incubator/external-storage/blob/master/snapshot/doc/user-guide.md

  14. Sentry - Full Node Config apiVersion: apps/v1 kind: StatefulSet spec:

    ... volumeClaimTemplates: spec: storageClassName: snapshot-promoter selector: matchLabels: group: "godays" matchExpressions: - {key: approved, operator: Exists}

  15. Not a live demo

  16. PVC - Provisioning > kubectl get pvc -w ... godays-fullnode-xrpc-0

    Pending snapshot-promoter 19s godays-fullnode-xrpc-0 Pending snapshot-promoter 22s godays-fullnode-xrpc-0 Pending snapshot-promoter 24s godays-fullnode-xrpc-0 Pending snapshot-promoter 26s godays-fullnode-xrpc-0 Pending snapshot-promoter 28s godays-fullnode-xrpc-0 Pending snapshot-promoter 30s godays-fullnode-xrpc-0 Pending snapshot-promoter 32s godays-fullnode-xrpc-0 Pending pvc-23c64f9c-2308-11e9-8eb6-42010a840024 0 snapshot-promoter 34s godays-fullnode-xrpc-0 Bound pvc-23c64f9c-2308-11e9-8eb6-42010a840024 33Gi RWO snapshot-promoter 34s godays-fullnode-xrpc-0 Bound pvc-23c64f9c-2308-11e9-8eb6-42010a840024 33Gi RWO snapshot-promoter 34s

  17. Pod - Deployment > kubectl get pods -w godays-fullnode-xrpc-0 0/3

    Pending 0 0s godays-fullnode-xrpc-0 0/3 Pending 0 34s godays-fullnode-xrpc-0 0/3 Init:0/2 0 34s godays-fullnode-xrpc-0 0/3 Init:0/2 0 44s godays-fullnode-xrpc-0 0/3 Init:1/2 0 45s godays-fullnode-xrpc-0 0/3 PodInitializing 0 46s godays-fullnode-xrpc-0 2/3 Running 0 47s godays-fullnode-xrpc-0 3/3 Running 0 59s

  18. • Rolling snapshots *) • PVC not deleted • Data

    integrity issues • Security concerns • High frequency Problems *) https://github.com/kubernetes-incubator/external-storage/issues/875

  19. Summary • All good now! • Fast startup time <

    2min • Works well with Horizontal Pod Autoscaler • Kubernetes v1.12 as an alpha feature

  20. Thanks!

  21. Bonus: Merkle tree https://en.wikipedia.org/wiki/Merkle_tree

  22. Bonus: Working With Scratch Image • Go static compilation •

    COPY ca-bundle.pem /etc/ssl/certs/ca-certificates.crt https://curl.haxx.se/docs/caextract.html • ENV ZONEINFO /zoneinfo.zip COPY zoneinfo.zip / In $GOROOT/lib/time/zoneinfo.zip https://golang.org/pkg/time/#LoadLocation