Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Orchestrator Wars

Avatar for Liz Rice Liz Rice
May 17, 2017
Technology
0
220

Orchestrator Wars

A light-hearted look at container orchestration options

Avatar for Liz Rice

Liz Rice

May 17, 2017
Tweet

More Decks by Liz Rice

See All by Liz Rice
KCD Lima: eBee in Peru!
Avatar for Liz Rice lizrice
0
130
Unleashing the kernel with eBPF
Avatar for Liz Rice lizrice
0
230
eBPF's Abilities and Limitations: The Truth
Avatar for Liz Rice lizrice
0
410
Simplifying multi-cloud and multi-cluster Kubernetes deployments with Cilium
Avatar for Liz Rice lizrice
0
220
When is a Secure Connection not encrypted? And other stories
Avatar for Liz Rice lizrice
1
89
Keeping it simple: Cilium Mesh - networking for multi-cloud Kubernetes and beyond
Avatar for Liz Rice lizrice
1
670
How Many Proxies Do You Need
Avatar for Liz Rice lizrice
1
150
eBPF for Security Observability
Avatar for Liz Rice lizrice
0
1.4k
Beginner's Guide to eBPF Programming for Networking
Avatar for Liz Rice lizrice
1
2.5k

Other Decks in Technology

See All in Technology
S3 Glacier のデータを Athena からクエリしようとしたらどうなるのか/try-to-query-s3-glacier-from-athena
Avatar for emi emiki
0
240
マルチプロダクト×マルチテナントを支えるモジュラモノリスを中心としたアソビューのアーキテクチャ
Avatar for disc99 disc99
1
650
Delegate authentication and a lot more to Keycloak with OpenID Connect
Avatar for Alexander Schwartz ahus1
0
240
o11yツールを乗り換えた話
Avatar for tak0x00 tak0x00
2
1.6k
Backlog AI アシスタントが切り開く未来
Avatar for vvatanabe vvatanabe
1
170
React Server ComponentsでAPI不要の開発体験
Avatar for polidog polidog
PRO
0
340
「AIと一緒にやる」が当たり前になるまでの奮闘記
Avatar for KAKEHASHI kakehashi
PRO
3
170
UDDのススメ - 拡張版 -
Avatar for マグロ隊長kinTV maguroalternative
1
610
Amazon Qで2Dゲームを作成してみた
Avatar for Siromi siromi
0
160
Jamf Connect ZTNAとMDMで実現! 金融ベンチャーにおける「デバイストラスト」実例と軌跡 / Kyash Device Trust
Avatar for Jun Watanabe rela1470
1
210
オブザーバビリティ文化を組織に浸透させるには / install observability culture
Avatar for mackerelio mackerelio
0
160
意志の力が9割。アニメから学ぶAI時代のこれから。
Avatar for Endo_Hizumi endohizumi
1
100

Featured

See All Featured
We Have a Design System, Now What?
Avatar for Morgane Peng morganepeng
53
7.7k
Intergalactic Javascript Robots from Outer Space
Avatar for Vicent Martí tanoku
272
27k
Why You Should Never Use an ORM
Avatar for John Nunemaker jnunemaker
PRO
58
9.5k
Imperfection Machines: The Place of Print at Facebook
Avatar for Scott Boms scottboms
268
13k
Building a Modern Day 
E-commerce SEO Strategy
Avatar for Aleyda Solis aleyda
43
7.4k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
Avatar for Eileen M. Uchitelle eileencodes
139
34k
The Pragmatic Product Professional
Avatar for Laura Van Doore lauravandoore
36
6.8k
Designing Experiences People Love
Avatar for Jonathan Moore moore
142
24k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
Avatar for Sam Stephenson sstephenson
161
15k
The Illustrated Children's Guide to Kubernetes
Avatar for Chris Short chrisshort
48
50k
Reflections from 52 weeks, 52 projects
Avatar for Jefferson Lam jeffersonlam
351
21k
Navigating Team Friction
Avatar for Lara Hogan lara
188
15k

Transcript

  1. Copyright @ 2017 Aqua Security Software Ltd. All Rights Reserved.

    Orchestrator Wars Liz Rice @LizRice | @AquaSecTeam

  2. 2

  3. 3 Slide from contiv.github.io/articles/2016/03/06/scaling-microservices.html

  4. 4 Microservices

  5. 5 @LizRice | @AquaSecTeam Container orchestrators ▪ What do orchestrators

    do? ▪ Choosing an orchestrator @LizRice | @AquaSecTeam

  6. What does an orchestrator do?

  7. 7

  8. 8

  9. 9

  10. 10 @LizRice | @AquaSecTeam Container orchestrator scope ▪ Scheduling -

    find space for containers to run ▪ Service discovery ▪ Availability / fault tolerance ▪ Scaling ▪ Upgrades @LizRice | @AquaSecTeam

  11. 11

  12. 12

  13. Cattle not pets

  14. 14

  15. 15

  16. Some popular container orchestrators

  17. Kubernetes

  18. 18

  19. 19 @LizRice | @AquaSecTeam Kubernetes ▪ Huge community, many distributions

    ▪ CNCF (Linux Foundation) ▪ Abstraction of machines into clusters ▪ Scheduling pods of containers ▪ Load balancing of services ▪ Management through labels ▪ Customization points

  20. OpenShift

  21. 21

  22. 22 @LizRice | @AquaSecTeam OpenShift ▪ RedHat support & enterprise

    credibility ▪ Built on Kubernetes

  23. Docker Swarm

  24. 24

  25. 25 @LizRice | @AquaSecTeam Docker Swarm ▪ Huge user base

    ▪ Docker Inc ▪ Ease of use ▪ Schedule by task = one container ▪ Secrets out-of-the-box

  26. Mesos / Marathon

  27. 27

  28. 28 @LizRice | @AquaSecTeam Mesos / Marathon ▪ Heritage in

    big data jobs (Hadoop, Spark) ▪ Mesos manages clusters ▪ Marathon schedules jobs (containers) ▪ ZooKeeper for service discovery ▪ Not written in Go! ▪ Enterprise DC/OS

  29. Nomad

  30. 30

  31. 31 @LizRice | @AquaSecTeam Nomad ▪ Hashicorp pedigree - Terraform,

    Vagrant, Consul... ▪ Manages non-containerized jobs

  32. Amazon ECS

  33. 33

  34. 34 @LizRice | @AquaSecTeam Amazon ECS ▪ Well-integrated with Amazon

    ▪ Elastic Load Balancer ▪ CloudTrail ▪ Autoscaling groups ▪ Tasks groups into services

  35. How to choose an orchestrator

  36. 36 Popularity

  37. 37 Popularity

  38. 38 @LizRice | @AquaSecTeam Anecdotally... ▪ Depends what you measure

    ▪ Measure by people: Docker Swarm ▪ Measure by workload: Mesos / Marathon

  39. 39 Community

  40. 40 Community

  41. 41 @LizRice | @AquaSecTeam Shifting sands ▪ March 2016 -

    Microsoft invests in Mesosphere ▪ March 2017 - Microsoft acquires Deis ▪ May 2017 - Moby project

  42. 42

  43. 43 @LizRice | @AquaSecTeam Greatest strengths Docker Swarm Kubernetes /

    OpenShift Amazon ECS Mesos / Marathon Nomad Works out-of-the-box X X Community X Scale X X X Big data workloads X Non-containerised workloads X X

  44. 44 To be continued...

  45. Copyright @ 2017 Aqua Security Software Ltd. All Rights Reserved.

    Questions? Liz Rice @LizRice | @AquaSecTeam