Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Kubernetes: A Cautionary Tale (Minnebar)

Joshua Sheppard
April 27, 2019
Technology
0
110

Kubernetes: A Cautionary Tale (Minnebar)

The gap between Minikube and Kubernetes in production is vast and full of pain. Want to know what it's like to implement Kubernetes in production for the first time before you collect the bumps and bruises yourself? Join me to learn about the ups and downs of one company's initial experience - including who was involved, the scope, and what was intentionally deferred.

We will cover:
* Why even consider Kubernetes (Hint: you might not benefit from it!)
* How a real company approached their first proof-of-concept
* How goals changed during implementation of k8s
* What we learned so far
* What we still need to learn

Joshua Sheppard

April 27, 2019
Tweet

More Decks by Joshua Sheppard

See All by Joshua Sheppard
Dissecting Kubernetes - NDC Sydney 2019
joshuasheppard
0
100
Kubernetes: A Cautionary Tale - KCDC 2019
joshuasheppard
0
24
Dissecting Kubernetes (K8s) - devup 2018
joshuasheppard
0
64

Other Decks in Technology

See All in Technology
私が trocco を推す理由
__allllllllez__
1
220
継続的な改善 x ⾮連続的な進化
sansantech
PRO
3
150
Databricks における 『MLOps』
databricksjapan
2
170
地理空間データ可視化・解析・活用ソリューション Pacific Spatial Solutions (PSS)
pacificspatialsolutions
0
230
AWSに詳しくない人でも始められるコスト最適化ガイド
yuhta28
1
220
require(ESM)とECMAScript仕様
uhyo
2
370
推しは推せるときに推せ! プロダクトにフィードバックしていこう
nakasho
0
300
検証を通して見えてきたTiDBの性能特性
lycorptech_jp
PRO
6
3.7k
20240418_Google ColabにLLMが搭載されたようなのでPython x データ分析の勉強方法を考えてみる
doradora09
0
130
反実仮想機械学習とは何か
usaito
PRO
11
4.5k
コンテナセキュリティの基本と脅威への対策
kyohmizu
3
760
GrafanaMeetup_AmazonManagedGrafanaのアクセス制御機能とマルチテナント環境下でのアクセス制御について
daitak
0
140

Featured

See All Featured
Product Roadmaps are Hard
iamctodd
44
9.7k
Thoughts on Productivity
jonyablonski
58
3.8k
Designing for Performance
lara
601
67k
Navigating Team Friction
lara
178
13k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
6
1.5k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
20
1.9k
Statistics for Hackers
jakevdp
789
220k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
244
20k
Infographics Made Easy
chrislema
238
18k
A Tale of Four Properties
chriscoyier
151
22k
For a Future-Friendly Web
brad_frost
172
9k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
14
1.6k

Transcript

  1. Kubernetes: A Cautionary Tale

  2. C.H. ROBINSON Accelerating commerce through the worlds most powerful supply

    chain platform

  3. Our people, processes, and technology improve the world's transportation and

    supply chains, delivering exceptional value to our customers and suppliers. OVERVIEW $16.6B in 2018 Gross 
 Revenues 15,000+ Employees Worldwide 123K Active Customers Worldwide 73K Active Carriers and Suppliers 1100+ IT Employees in 14 Countries

  4. AI USE CASES PRESCRIPTIVE & PREDICTIVE PERSONALIZED FLEET OPTIMIZATION MODEL

    BASED PRICING MAKE CONNECTIONS
  5. None

  6. Kubernetes experience?

  7. None
  8. None
  9. None
  10. None

  11. So what do you do? (A view from early 2018)

  12. • Why K8s? (Hint: Might not be right for you)

    • One Approach • How Goals Changed • What We Learned • What Remained

  13. Why Kubernetes (k8s)?

  14. Why containers?

  15. None

  16. When do I need Kubernetes (k8s)?

  17. 1. Cloud Hosted (flexibility) 2. Automation (CI/CD) 3. Culture (people

    matter) 4. Microservices 5. Containers 6. Orchestration (e.g. Kubernetes) https://container-solutions.com/when-is-the-wrong-time-to-use-kubernetes/
  18. None
  19. None

  20. Why not Swarm?

  21. How hard is K8s to learn?

  22. “It depends.” ;) (Not polished in late 2017)

  23. None
  24. None
  25. None

  26. In 2019?

  27. None
  28. None
  29. None
  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None
  37. None
  38. None
  39. None
  40. None

  41. Valuable for my team? – we learned a lot… …

    and apps stayed up.

  42. Valuable for my company? Definitely.

  43. None
  44. None
  45. None
  46. None
  47. None
  48. None
  49. None
  50. None
  51. None
  52. None
  53. None
  54. None

  55. What We Learned • Don’t roll your own • Certificates

    are important • Networking knowledge is critical • Secrets aren’t secret • Some apps don’t benefit

  56. Don’t Roll Your Own If you don’t sell k8s, don’t

    build it • ~22 Hosted solutions • ~28 Cloud turnkey solutions • ~18 On-premises turnkey solutions https://kubernetes.io/docs/setup/pick-right-solution/

  57. Certificates Are Important You need to “generate TLS certificates for

    the following components: etcd, kube-apiserver, kube-controller- manager, kube-scheduler, kubelet, and kube-proxy.” … And that’s before even considering your apps.

  58. Networking Knowledge is Critical “Kubernetes cluster networking is perhaps one

    of the most complex components of the Kubernetes infrastructure because it involves so many layers and parts (e.g., container-to-container networking, Pod networking, services, ingress, load balancers), and many users are struggling to make sense of it all.” - Kirill Goltsman, Supergiant

  59. Secrets Aren’t Secret • ENV vs volume mount • Base64

    encoding in cluster • `kubeseal` • HashiCorp Vault

  60. Some Apps Don’t Benefit • Where do they scale? •

    Are they “cluster-aware”? • What about failed deployments?

  61. What Remains • CI/CD into K8s • How to get

    our nodes (vendor?) • Improved storage, external state • Namespaces and environments

  62. Multiple Environments • Dev == Minikube? • Integration == Namespace?

    Cluster? • Production == 1+ clusters? • Testing apps vs testing k8s upgrades

  63. Closing • Think before you k8s - do you need

    it? • Plan to learn - in stages, over time • People matter - especially networking folk ;) • Expect plans to evolve • Blaine? Eden Prairie?