Kubernetes Fundamentals

View Slide

VM
VM
VM
VM
Server
Host OS
Hypervisor
Guest OS Guest OS Guest OS
App C
App B
App A
Server
Host OS
Hypervisor

View Slide

VM
Container
VM
VM
VM
Server
Host OS
Hypervisor
App C
App B
App A
Server
Host OS
Hypervisor
Bins/Libs
App A

View Slide

VM
Container
Container
Container
VM
VM
VM
Server
Host OS
Hypervisor
App C
App B
App A
Server
Host OS
Hypervisor
Bins/Libs
App B
App C
Bins/Libs
App A
Bins/Libs

View Slide

View Slide

Image Name
Process
started in an
executing
container
Initializes a
new build
stage and sets
the base
image
Execute commands
in a new layer on
top of the current
image and commit
results
Provide defaults
for an executing
container
Captures the steps to build a container
image
Version-able asset in your DevOps flows
Configuration-as-Code

View Slide

View Slide

VM
Container
Container
Container
Server
Host OS
Hypervisor
Bins/Libs
App B
App C
Bins/Libs
App A
Bins/Libs
Container Image
Container Image
Container Image
Container Image
Container Image
Container Image

View Slide

View Slide

VM
Container
Container
Container
Server
Host OS
Hypervisor
Bins/Libs
App B
App C
Bins/Libs
App A
Bins/Libs
VM
Container
Container
Container
Server
Host OS
Hypervisor
Bins/Libs
App B
App C
Bins/Libs
App A
Bins/Libs

View Slide

View Slide

Container Orchestrator

View Slide

Cluster

View Slide

VM
Server
Host OS
Hypervisor
Guest OS
Cluster

View Slide

Kubernetes comes from the Greek
word κυβερνήτης:, which
means helmsman or ship pilot, ie: the
captainer of a container ship.
"Kubernetes is an open-source system for automating deployment,
scaling, and management of containerized applications."

View Slide

VM
Server
Host OS
Hypervisor
Guest OS
Kubernetes
Master
Cluster
Node Node Node
Node Node Node

View Slide

AKS reduces the complexity and operational
overhead of managing Kubernetes by
offloading much of that responsibility to
Azure.
You only pay for the worker nodes within
your clusters, not for the master nodes

View Slide

View Slide

Kubernetes
Cluster
Node Node Node
Node Node Node

View Slide

Master
Cluster
Node
api-server
etcd
controller-
manager
scheduler

View Slide

Container
Container
Container
Bins/Libs
App B
App C
Bins/Libs
App A
Bins/Libs
Where do the Containers go?

View Slide

Container
Container
Container
Bins/Libs
App B
App C
Bins/Libs
App A
Bins/Libs
Introducing…. Pods!

View Slide

Pods
Master
Cluster
Node
api-server
etcd
controller-
manager
scheduler

View Slide

ratings-api
Label(s) app=ratings-api
Container-image my.azurecr.io/ratings-api
Port 3001
(VolumeMount) /mnt/share
(Resources)
ratings-web
Label(s) app=ratings-web
Container-image my.azurecr.io/ratings-web
Port 3000
(Resources)
Pods – What are they?
otherApp
Label(s) app=otherApp
Container-image other.azurecr.io/other
App
Port 4045
Metadata that describes how the containers are configured.

View Slide

Deployments
Metadata that describes how to deploy a pod
More Metadata
ratings-web
replicas 2
ratings-web
Container-
image
my.azurecr.io/
ratings-web
Port 3000
(Volume) …
(Resources) …

View Slide

Cluster
Node Node
Master

View Slide

ratings-web2
Container-
image
my.azurecr.io/
ratings-web
Port 3000
Services
Metadata that describes how to reach the pods
Yet More Metadata!
ratings-web
Selector app=ratings-web
Port Mapping 8080:3000
Type (Internal
or External)
LoadBalancer
ratings-web1
Container-
image
my.azurecr.io/
ratings-web
Port 3000

View Slide

Services Cluster
Node Node
Service
ratings-web
IP Address
Master

View Slide

Manual via Kubernetes Portal
Infra-as-Code a YAML file

View Slide

View Slide

Scaling Pods
ratings-web
replicas 3
ratings-web
Container-
image
my.azurecr.io/
ratings-web
Port 3000
(Volume) …
(Resources) …

View Slide

Scaling Pods
ratings-web
replicas 6
ratings-web
Container-
image
my.azurecr.io/
ratings-web
Port 3000
(Volume) …
(Resources) …

View Slide

Node
Master
Cluster
Node Node

View Slide

Node
Node
Node
Master
Cluster
Node
az scale –name –g –node-count

View Slide

Azure Container Instances
Node
With Azure Container Instances
Master
Cluster
Node
az enable-addons –g –name
–addons –subnet-name

View Slide

View Slide

Master
Cluster
Service
ratings-web
IP Address
Updated App Updated App Updated App

View Slide

Node
Node
Node
Master
Cluster
Service
ratings-web
IP Address

View Slide

View Slide

Why do we need volumes ?
Volume
(state)

View Slide

View Slide

PV vs PVC
Volumes
emptyDir
hostPath
Persistent Volume
Claim (PVC)
ConfigMap
Security
….
Persistent Volume (PV)

View Slide

Dynamic Storage in AKS – Azure Disk

View Slide

View Slide

Inter-Pod Communication

View Slide

Why Services?

View Slide

View Slide

How does ClusterIP Work

View Slide

How does LoadBalancer Work

View Slide

How does NodePort Work

View Slide

How does Ingress Controller Work

View Slide

View Slide

1. Kubernetes users communicate with
API server and apply desired state
2. Master nodes actively enforce
desired state on worker nodes
3. Worker nodes support
communication between containers
Kubernetes
control
API server
replication, namespace,
serviceaccounts, etc.
-controller-
manager -scheduler
etcd
Master node
Worker node
kubelet Service
Docker
Pods Pods
Worker node
kubelet Service
Docker
Pods Pods
Internet
4. Worker nodes support
communication from the
Internet

View Slide

API server
Controller
Manager
Scheduler
etcd
Store
Cloud
Controller
Self-managed master node(s)
• Automated upgrades, patches
• High reliability, availability
• Easy, secure cluster scaling
• Self-healing
• API server monitoring
• At no charge
Customer VMs
App/
workload
definition
User
Docker
Pods
Docker
Pods
Docker
Pods
Docker
Pods
Docker
Pods
Schedule pods over
private tunnel
Kubernetes API
endpoint
Azure managed control plane

View Slide

Task The old way With Azure
Create a cluster Provision network and VMs
Install dozens of system components including etcd
Create and install certificates
Register agent nodes with control plane
az aks create
Upgrade a cluster Upgrade your master nodes
Cordon/drain and upgrade worker nodes individually
az aks upgrade
Scale a cluster Provision new VMs
Install system components
Register nodes with API server
az aks scale

View Slide

View Slide

Operationalizing Kubernetes

View Slide

Helm
Helm Charts helps you define, install, and upgrade even
the most complex Kubernetes application
pods
services
Chart.yml
db
deployments
ci
…

View Slide

Helm
The best way to find, share, and use software built
for Kubernetes
Manage complexity
Charts can describe complex
apps; provide repeatable app
installs, and serve as a single
point of authority
Easy updates
Take the pain out
of updates with in-place
upgrades and custom
hooks
Simple sharing
Charts are easy to
version, share, and host
on public or private
servers
Rollbacks
Use helm rollout to
roll back to an older
version of a release with
ease

View Slide

Many Choices

View Slide

A fully managed service of Red Hat OpenShift on Azure, jointly, engineered, operated and
supported by Microsoft and Red Hat

View Slide

https://kubernetes.io/docs/home/
https://aka.ms/learnkubernetes
https://aksworkshop.io/
https://helm.sh/blog/helm-3-preview-pt7/
https://docs.microsoft.com/en-us/azure/aks/best-practices

View Slide

View Slide

Kubernetes Fundamentals

Kubernetes Fundamentals

Tommy Falgout

More Decks by Tommy Falgout

Other Decks in Technology

Featured

Transcript