Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Orchestrator Wars

Liz Rice
May 17, 2017
Technology
0
210

Orchestrator Wars

A light-hearted look at container orchestration options

Liz Rice

May 17, 2017
Tweet

More Decks by Liz Rice

See All by Liz Rice
Unleashing the kernel with eBPF
lizrice
0
160
eBPF's Abilities and Limitations: The Truth
lizrice
0
280
Simplifying multi-cloud and multi-cluster Kubernetes deployments with Cilium
lizrice
0
170
When is a Secure Connection not encrypted? And other stories
lizrice
1
75
Keeping it simple: Cilium Mesh - networking for multi-cloud Kubernetes and beyond
lizrice
1
600
How Many Proxies Do You Need
lizrice
1
130
eBPF for Security Observability
lizrice
0
1.3k
Beginner's Guide to eBPF Programming for Networking
lizrice
1
2.3k
Contributing to Open Source - what's in it for my business?
lizrice
0
49

Other Decks in Technology

See All in Technology
Amazon Aurora バージョンアップについて、改めて理解する ~バージョンアップ手法と文字コードへの影響~
smt7174
1
240
Women in Agile
kawaguti
PRO
2
170
EDRからERM: PFN-SIRTが関わるセキュリティとリスクへの取り組み
pfn
PRO
0
100
panicを深ぼってみる
kworkdev
PRO
2
140
Skip Skip Run Run Run ♫
temoki
0
360
サーバーレスで楽しよう!お気軽に始められる3つのポイント / Have fun with Serverless!
_kensh
2
220
ハンズオンで学ぶ Databricks - Databricksにおけるデータエンジニアリング
taka_aki
1
2.1k
Platform EngineeringがあればSREはいらない!? 新時代のSREに求められる役割とは
mshibuya
2
3.9k
Makuake*UPSIDER_LightningTalk
upsider_tech
0
190
Site Reliability Engineering on Kubernetes
nwiizo
6
4.4k
トレードオフスライダーにおける品質について考えてみた
suzuki_tada
3
180
あなたはJVMの気持ちを理解できるか?
skrb
5
2k

Featured

See All Featured
Adopting Sorbet at Scale
ufuk
74
9.2k
A Philosophy of Restraint
colly
203
16k
What’s in a name? Adding method to the madness
productmarketing
PRO
22
3.3k
The Cost Of JavaScript in 2023
addyosmani
47
7.3k
StorybookのUI Testing Handbookを読んだ
zakiyama
28
5.4k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
47
5.1k
GraphQLとの向き合い方2022年版
quramy
44
13k
GraphQLの誤解/rethinking-graphql
sonatard
68
10k
A Tale of Four Properties
chriscoyier
157
23k
[RailsConf 2023] Rails as a piece of cake
palkan
53
5.2k
The Cult of Friendly URLs
andyhume
78
6.2k
Building a Modern Day 
E-commerce SEO Strategy
aleyda
38
7.1k

Transcript

  1. Copyright @ 2017 Aqua Security Software Ltd. All Rights Reserved.

    Orchestrator Wars Liz Rice @LizRice | @AquaSecTeam

  2. 2

  3. 3 Slide from contiv.github.io/articles/2016/03/06/scaling-microservices.html

  4. 4 Microservices

  5. 5 @LizRice | @AquaSecTeam Container orchestrators ▪ What do orchestrators

    do? ▪ Choosing an orchestrator @LizRice | @AquaSecTeam

  6. What does an orchestrator do?

  7. 7

  8. 8

  9. 9

  10. 10 @LizRice | @AquaSecTeam Container orchestrator scope ▪ Scheduling -

    find space for containers to run ▪ Service discovery ▪ Availability / fault tolerance ▪ Scaling ▪ Upgrades @LizRice | @AquaSecTeam

  11. 11

  12. 12

  13. Cattle not pets

  14. 14

  15. 15

  16. Some popular container orchestrators

  17. Kubernetes

  18. 18

  19. 19 @LizRice | @AquaSecTeam Kubernetes ▪ Huge community, many distributions

    ▪ CNCF (Linux Foundation) ▪ Abstraction of machines into clusters ▪ Scheduling pods of containers ▪ Load balancing of services ▪ Management through labels ▪ Customization points

  20. OpenShift

  21. 21

  22. 22 @LizRice | @AquaSecTeam OpenShift ▪ RedHat support & enterprise

    credibility ▪ Built on Kubernetes

  23. Docker Swarm

  24. 24

  25. 25 @LizRice | @AquaSecTeam Docker Swarm ▪ Huge user base

    ▪ Docker Inc ▪ Ease of use ▪ Schedule by task = one container ▪ Secrets out-of-the-box

  26. Mesos / Marathon

  27. 27

  28. 28 @LizRice | @AquaSecTeam Mesos / Marathon ▪ Heritage in

    big data jobs (Hadoop, Spark) ▪ Mesos manages clusters ▪ Marathon schedules jobs (containers) ▪ ZooKeeper for service discovery ▪ Not written in Go! ▪ Enterprise DC/OS

  29. Nomad

  30. 30

  31. 31 @LizRice | @AquaSecTeam Nomad ▪ Hashicorp pedigree - Terraform,

    Vagrant, Consul... ▪ Manages non-containerized jobs

  32. Amazon ECS

  33. 33

  34. 34 @LizRice | @AquaSecTeam Amazon ECS ▪ Well-integrated with Amazon

    ▪ Elastic Load Balancer ▪ CloudTrail ▪ Autoscaling groups ▪ Tasks groups into services

  35. How to choose an orchestrator

  36. 36 Popularity

  37. 37 Popularity

  38. 38 @LizRice | @AquaSecTeam Anecdotally... ▪ Depends what you measure

    ▪ Measure by people: Docker Swarm ▪ Measure by workload: Mesos / Marathon

  39. 39 Community

  40. 40 Community

  41. 41 @LizRice | @AquaSecTeam Shifting sands ▪ March 2016 -

    Microsoft invests in Mesosphere ▪ March 2017 - Microsoft acquires Deis ▪ May 2017 - Moby project

  42. 42

  43. 43 @LizRice | @AquaSecTeam Greatest strengths Docker Swarm Kubernetes /

    OpenShift Amazon ECS Mesos / Marathon Nomad Works out-of-the-box X X Community X Scale X X X Big data workloads X Non-containerised workloads X X

  44. 44 To be continued...

  45. Copyright @ 2017 Aqua Security Software Ltd. All Rights Reserved.

    Questions? Liz Rice @LizRice | @AquaSecTeam