$30 off During Our Annual Pro Sale. View Details »

Kuma

Takafumi Ikeda
March 26, 2020
Technology
2
3.2k

 Kuma

https://k8sjp.connpass.com/event/170099/

Takafumi Ikeda

March 26, 2020
Tweet

More Decks by Takafumi Ikeda

See All by Takafumi Ikeda
APIゲートウェイとサービスメッシュ
ikeike443
0
160
はじめてのKong Konnect
ikeike443
0
130
10分で分るGitHub Actions
ikeike443
3
1.7k
GitHub Actionsはどのような未来を描くのか
ikeike443
3
2.5k
GitHubber@日本
ikeike443
6
11k
GitHub Business Seminar
ikeike443
1
120
How we ship GitHub with GitHub -- ChatOps
ikeike443
0
260
効果的にGitHubを使うために
ikeike443
10
3.6k
How People Build Software
ikeike443
0
180

Other Decks in Technology

See All in Technology
從心開始的純軟之路
line_developers_tw
PRO
0
940
VS CodeとPostmanを活用した効率的なAPI開発 / Efficient API development using VS Code and Postman
yokawasa
3
260
APIシナリオテストツールとしてのrunn / 4 API testing tools
k1low
0
210
第21回Ques シフトレフトにおけるシナリオテストの適用事例
moritamasami
1
420
SmartHRのマルチプロダクト戦略実行の苦悩と挑戦
h1kita
3
2.5k
ExaDB-D dbaascli で出来ること
oracle4engineer
PRO
0
1.2k
APIテスト導入から2年。アジャイルな組織で見えてきたmabl活用の道
bengo4com
0
1.9k
Kaggle Tokyo Meetup2023 CommonLit Solutionの紹介と考え方 - Fulltrain戦略と(Seed/Model)Ensembleの可視化 -
chumajin
2
590
cloudflare-workersを使ってslack上に匿名チャットを作った話
sugawani
0
130
【Microsoft社員が振り返る】Microsoft Ignite
yutoy
1
190
CI/CDプロセスの拡充からはじめる技術的負債の解消/Eliminate technical debt, starting with expanding CI/CD processes
onecareer_tech
0
150
非開発者のためのプロンプトエンジニアリング入門
seosoft
0
110

Featured

See All Featured
5 minutes of I Can Smell Your CMS
philhawksworth
199
19k
Building Your Own Lightsaber
phodgson
97
5.4k
Principles of Awesome APIs and How to Build Them.
keavy
119
16k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
318
20k
What the flash - Photography Introduction
edds
64
11k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
5
740
Statistics for Hackers
jakevdp
787
220k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
0
1k
The Power of CSS Pseudo Elements
geoffreycrofte
56
4.7k
WebSockets: Embracing the real-time Web
robhawkes
58
6.6k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
185
15k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
51
32k

Transcript

  1. Kuma
    ৮ͬͯΈͨ
    Takafumi Ikeda
    Solution Engineer, Kong

    View Slide

  2. @ikeike443
    Takafumi Ikeda
    Solutions Engineer

    View Slide

  3. View Slide

  4. Kuma ͱ͸

    View Slide

  5. ● ϢχόʔαϧίϯτϩʔϧϓϨʔϯ
    ● ܰྔͳσʔλϓϨʔϯ: Envoyϕʔε, L4/L7
    ● DPΠϯδΣΫγϣϯ: ίʔυมߋͳ͠Ͱk8s,
    VMʹDP஫ೖ
    ● ๛෋ͳػೳ: mTLS, Traffic Segmentation, Traffic
    Routing, Traffic Metrics, Traffic Logs, Health-
    checking, etc
    ● ϚϧνϓϥοτϑΥʔϜ: k8s, VM, ϕΞϝλϧ
    ● ήʔτ΢ΣΠ࿈ܞ: KongΛ࢝Ίͱ͢ΔAPI
    Gateway/IngressʹରԠ

    View Slide

  6. Kuma.io/install

    View Slide

  7. ./conf/kuma-cp.conf
    ./bin/kuma-dp
    ./bin/kuma-cp
    ./bin/kumactl
    Kuma Files
    ./bin/kuma-tcp-echo
    ./kuma-prometheus-sd
    ./bin/envoy
    ./README

    View Slide

  8. Kuma.io
    In Kubernetes In Universal

    View Slide

  9. CPΠϯετʔϧ͓ΑͼDPΠϯδΣΫγϣϯ

    View Slide

  10. backend-api
    elasticsearch
    redis
    frontend-app
    αϯϓϧΞϓϦέʔγϣϯ

    View Slide

  11. View Slide

  12. View Slide

  13. View Slide

  14. View Slide

  15. View Slide

  16. Mutual TLSͷઃఆ

    View Slide

  17. Kuma.io
    backend-api
    elasticsearch
    redis
    frontend-app
    mTLS
    mTLS
    mTLS

    View Slide

  18. INSERT AN IMAGE FOR ALL THE AREA
    mTLS
    18
    $ cat <apiVersion: kuma.io/v1alpha1
    kind: Mesh
    metadata:
    name: default
    spec:
    mtls:
    ca:
    builtin: {}
    enabled: true
    EOF

    View Slide

  19. Traffic Permissionsͷઃఆ

    View Slide

  20. INSERT AN IMAGE FOR ALL THE AREA
    Traffic-permission
    20
    $ cat <apiVersion: kuma.io/v1alpha1
    kind: TrafficPermission
    mesh: default
    metadata:
    namespace: kuma-demo
    name: frontend-to-backend
    spec:
    sources:
    - match:
    service: frontend.kuma-demo.svc:80
    destinations:
    - match:
    service: backend.kuma-demo.svc:3001
    EOF

    View Slide

  21. Kong Integration

    View Slide

  22. Kuma.io
    API Server
    kuma-system
    kuma-demo
    kuma-injector
    Search Back-end Reviews-Redis
    Envoy Sidecar
    Proxy
    Envoy Sidecar
    Proxy
    Envoy Sidecar
    Proxy
    labels: kuma.io/sidecar-injection: enabled
    Ingress/GW
    Envoy Sidecar
    Proxy
    Front-end
    Envoy Sidecar
    Proxy
    Kong Integration (Gateway Mode)

    View Slide

  23. Traffic Routing/Canary - New in 0.3.2

    View Slide

  24. Kuma.io
    backend-api v0
    frontend-app
    backend-api v1
    backend-api v2
    Weight: 80
    Weight: 0
    Weight: 20

    View Slide

  25. ·ͱΊ
    ● Kuma͸Πϯετʔϧ͕؆୯Ͱѻ͍΍͍͢
    ● k8sωΠςΟϒαϙʔτʹՃ͑ͯVM, ϕΞϝλϧ΋ಉ͡Α͏ʹαʔϏεϝογϡΛద༻Ͱ͖Δ
    ● ͔ͳΓए͍ϓϩδΣΫτ͕ͩɺ։ൃ΋ΞΫςΟϒʹߦΘΕ͍ͯͯ੒௕͕ظ଴Ͱ͖Δ
    ● ϓϩμΫγϣϯࣄྫ͸·ͩ΄ͱΜͲͳ͍ɺ͜Ε͔ΒͷϓϩδΣΫτ

    View Slide

  26. Slack: https://chat.kuma.io
    μ΢ϯϩʔυ: kuma.io/install
    ΫΠοΫσϞ: https://github.com/Kong/kuma-demo
    ϦϯΫू

    View Slide