Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Orchestrator Wars

Avatar for Liz Rice Liz Rice
May 17, 2017
Technology
0
220

Orchestrator Wars

A light-hearted look at container orchestration options

Avatar for Liz Rice

Liz Rice

May 17, 2017
Tweet

More Decks by Liz Rice

See All by Liz Rice
KCD Lima: eBee in Peru!
Avatar for Liz Rice lizrice
0
140
Unleashing the kernel with eBPF
Avatar for Liz Rice lizrice
0
250
eBPF's Abilities and Limitations: The Truth
Avatar for Liz Rice lizrice
0
430
Simplifying multi-cloud and multi-cluster Kubernetes deployments with Cilium
Avatar for Liz Rice lizrice
0
230
When is a Secure Connection not encrypted? And other stories
Avatar for Liz Rice lizrice
1
91
Keeping it simple: Cilium Mesh - networking for multi-cloud Kubernetes and beyond
Avatar for Liz Rice lizrice
1
690
How Many Proxies Do You Need
Avatar for Liz Rice lizrice
1
160
eBPF for Security Observability
Avatar for Liz Rice lizrice
0
1.4k
Beginner's Guide to eBPF Programming for Networking
Avatar for Liz Rice lizrice
1
2.5k

Other Decks in Technology

See All in Technology
SREとソフトウェア開発者の合同チームはどのようにS3のコストを削減したか?
Avatar for Masahiro Yoshizawa muziyoshiz
1
100
ACA でMAGI システムを社内で展開しようとした話
Avatar for Yuji Masaoka | まっぴぃ mappie_kochi
1
250
AI Agentと MCP Serverで実現する iOSアプリの 自動テスト作成の効率化
Avatar for スパイダープラス株式会社 spiderplus_cb
0
490
Why React!?? Next.jsそしてReactを改めてイチから選ぶ
Avatar for ypresto ypresto
10
4.4k
英語は話せません!それでも海外チームと信頼関係を作るため、対話を重ねた2ヶ月間のまなび
Avatar for ニイオカ niioka_97
0
110
Goに育てられ開発者向けセキュリティ事業を立ち上げた僕が今向き合う、AI × セキュリティの最前線 / Go Conference 2025
Avatar for GMO Flatt Security flatt_security
0
350
AWSにおけるTrend Vision Oneの効果について
Avatar for shima shimak
0
120
Access-what? why and how, A11Y for All - Nordic.js 2025
Avatar for Geisy Domiciano gdomiciano
1
110
Large Vision Language Modelを用いた 文書画像データ化作業自動化の検証、運用 / shibuya_AI
Avatar for Sansan R&D sansan_randd
0
100
GA technologiesでのAI-Readyの取り組み@DataOps Night
Avatar for yuto16 yuto16
0
270
組織観点から IAM Identity CenterとIAMの設計を考える
Avatar for NRI Netcom nrinetcom
PRO
1
170
それでも私はContextに値を詰めたい | Go Conference 2025 / go conference 2025 fill context
Avatar for Yoichiro Shimizu budougumi0617
4
1.2k

Featured

See All Featured
Let's Do A Bunch of Simple Stuff to Make Websites Faster
Avatar for Chris Coyier chriscoyier
507
140k
The Straight Up "How To Draw Better" Workshop
Avatar for Dennis Kardys denniskardys
237
140k
Making the Leap to Tech Lead
Avatar for Ryan Cromwell cromwellryan
135
9.5k
GraphQLの誤解/rethinking-graphql
Avatar for sonatard sonatard
73
11k
Put a Button on it: Removing Barriers to Going Fast.
Avatar for kastner kastner
60
4k
BBQ
Avatar for Matthew Crist matthewcrist
89
9.8k
The Psychology of Web Performance [Beyond Tellerrand 2023]
Avatar for Tammy Everts tammyeverts
49
3.1k
Typedesign – Prime Four
Avatar for Hannes Fritz hannesfritz
42
2.8k
Balancing Empowerment & Direction
Avatar for Lara Hogan lara
4
680
Writing Fast Ruby
Avatar for Erik Berlin sferik
629
62k
Designing Dashboards & Data Visualisations in Web Apps
Avatar for Des Traynor destraynor
231
53k
Rebuilding a faster, lazier Slack
Avatar for samanthasiow samanthasiow
84
9.2k

Transcript

  1. Copyright @ 2017 Aqua Security Software Ltd. All Rights Reserved.

    Orchestrator Wars Liz Rice @LizRice | @AquaSecTeam

  2. 2

  3. 3 Slide from contiv.github.io/articles/2016/03/06/scaling-microservices.html

  4. 4 Microservices

  5. 5 @LizRice | @AquaSecTeam Container orchestrators ▪ What do orchestrators

    do? ▪ Choosing an orchestrator @LizRice | @AquaSecTeam

  6. What does an orchestrator do?

  7. 7

  8. 8

  9. 9

  10. 10 @LizRice | @AquaSecTeam Container orchestrator scope ▪ Scheduling -

    find space for containers to run ▪ Service discovery ▪ Availability / fault tolerance ▪ Scaling ▪ Upgrades @LizRice | @AquaSecTeam

  11. 11

  12. 12

  13. Cattle not pets

  14. 14

  15. 15

  16. Some popular container orchestrators

  17. Kubernetes

  18. 18

  19. 19 @LizRice | @AquaSecTeam Kubernetes ▪ Huge community, many distributions

    ▪ CNCF (Linux Foundation) ▪ Abstraction of machines into clusters ▪ Scheduling pods of containers ▪ Load balancing of services ▪ Management through labels ▪ Customization points

  20. OpenShift

  21. 21

  22. 22 @LizRice | @AquaSecTeam OpenShift ▪ RedHat support & enterprise

    credibility ▪ Built on Kubernetes

  23. Docker Swarm

  24. 24

  25. 25 @LizRice | @AquaSecTeam Docker Swarm ▪ Huge user base

    ▪ Docker Inc ▪ Ease of use ▪ Schedule by task = one container ▪ Secrets out-of-the-box

  26. Mesos / Marathon

  27. 27

  28. 28 @LizRice | @AquaSecTeam Mesos / Marathon ▪ Heritage in

    big data jobs (Hadoop, Spark) ▪ Mesos manages clusters ▪ Marathon schedules jobs (containers) ▪ ZooKeeper for service discovery ▪ Not written in Go! ▪ Enterprise DC/OS

  29. Nomad

  30. 30

  31. 31 @LizRice | @AquaSecTeam Nomad ▪ Hashicorp pedigree - Terraform,

    Vagrant, Consul... ▪ Manages non-containerized jobs

  32. Amazon ECS

  33. 33

  34. 34 @LizRice | @AquaSecTeam Amazon ECS ▪ Well-integrated with Amazon

    ▪ Elastic Load Balancer ▪ CloudTrail ▪ Autoscaling groups ▪ Tasks groups into services

  35. How to choose an orchestrator

  36. 36 Popularity

  37. 37 Popularity

  38. 38 @LizRice | @AquaSecTeam Anecdotally... ▪ Depends what you measure

    ▪ Measure by people: Docker Swarm ▪ Measure by workload: Mesos / Marathon

  39. 39 Community

  40. 40 Community

  41. 41 @LizRice | @AquaSecTeam Shifting sands ▪ March 2016 -

    Microsoft invests in Mesosphere ▪ March 2017 - Microsoft acquires Deis ▪ May 2017 - Moby project

  42. 42

  43. 43 @LizRice | @AquaSecTeam Greatest strengths Docker Swarm Kubernetes /

    OpenShift Amazon ECS Mesos / Marathon Nomad Works out-of-the-box X X Community X Scale X X X Big data workloads X Non-containerised workloads X X

  44. 44 To be continued...

  45. Copyright @ 2017 Aqua Security Software Ltd. All Rights Reserved.

    Questions? Liz Rice @LizRice | @AquaSecTeam