Ingressの種類と最近のIngress事情 @GKE〜Network Endpoint Groups (NEGs)〜 @Container SIG Meet-up 2018 Fall / containersig-fall-2018-ingress-gke-neg

Masaya Aoyama (@amsy810)

October 24, 2018

Technology

9k

Ingressの種類と最近のIngress事情 @GKE 〜Network Endpoint Groups (NEGs)〜 @Container SIG Meet-up 2018 Fall / containersig-fall-2018-ingress-gke-neg

Ingressの種類と最近のIngress事情 @GKE〜Network Endpoint Groups (NEGs)〜

@Container SIG Meet-up 2018 Fall

Masaya Aoyama @amsy810

Masaya Aoyama (@amsy810)

October 24, 2018

Tweet

More Decks by Masaya Aoyama (@amsy810)

See All by Masaya Aoyama (@amsy810)

Kubernetes as a Service の利用者を支える機能 - Platform Engineering Meetup #1 / pfem01-amsy810-k8s

Kubernetes基盤を自律的に支えるController化の実装Tips / forkwell-202303-amsy810-k8s

CyberAgentにおけるKubernetes as a Serviceの歩みと利用者を支える機能 / cainfra01-amsy810-kubernetes

KubeClarityで始めるSBOM管理 @3-shake SRE Tech Talk / 3-shake-sre-teck-talk-202212

KubeCon + CNCon NA 2022 Overview & Towards Something Better Than CRDs In a Post-Operator World / k8sjp54-kubecon-recap

KubeCon + CloudNativeCon NA 2022帰国後即日 Recap LT TechFeed Experts Night #7 / techfeed-expert-night-7-amsy810

Kubernetesクラスタ内のリソースに柔軟なフィルタリングをかける方法 3-shake SRE Tech Talk #4 LT / SRETT4-LT-amsy810

KubeCon + CloudNativeCon EU 2022 Recap Kubernetes Meetup Tokyo #51 / k8sjp51-kubecon-eu-2022-recap

ebpfとWASMに思いを馳せる2022 / techfeed-conference-2022-ebpf-wasm-amsy810

Other Decks in Technology

See All in Technology

AstroNvim を使おう！

BUILD UP for Web3 engineer

人生がときめく自宅ネットワークの魔法

AWS CDKで作るCloudWatch Dashboard

ビギナー向けエッジランタイムのすすめ | エッジランタイムを意識した開発をはじめよう

サービスと共にチームも成長する〜New Relicを利用したサービスとチームの定量化〜

IBM Cloud PLUS - #3 IBM PowerVS 入門と最新情報

エンジニアのためのドキュメントライティング / Docs for Developers and Paragraph Writing

大規模ブロックチェーンゲームのマスアダプションまでの課題と解決への期待

IoTによるGPS等の位置情報活用基礎知識

可能な限り確実にmkdirを成功させるには / Make mkdir

私と Nature Remo E / Nature Remo E

Featured

See All Featured

RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub

JavaScript: Past, Present, and Future - NDC Porto 2020

Distributed Sagas: A Protocol for Coordinating Microservices

From Idea to $5000 a Month in 5 Months

Into the Great Unknown - MozCon

Code Reviewing Like a Champion

Teambox: Starting and Learning

StorybookのUI Testing Handbookを読んだ

Debugging Ruby Performance

What’s in a name? Adding method to the madness

productmarketing

YesSQL, Process and Tooling at Scale

Docker and Python

Transcript

Masaya Aoyama
CyberAgent adtech studio
Ingressͷछྨͱ࠷ۙͷIngressࣄ৘ @GKE
ʙNetwork Endpoint Groups (NEGs)ʙ
@Container SIG Meet-up 2018 Fall
MasayaAoyama @amsy810
Masaya Aoyama
CyberAgent adtech studio
Ingressͷछྨͱ࠷ۙͷIngressࣄ৘ @GKE
ʙNetwork Endpoint Groups (NEGs)ʙ
@Container SIG Meet-up 2018 Fall
MasayaAoyama @amsy810

View Slide
Japan Container Days v18.04 Keynote
Cloud Native Meetup Tokyo Organizer (+ KubeCon + JKD)
CKA #138CKAD #2

Kubernetes @ThinkIT
OpenStack / Kubernetes Contributor
Masaya Aoyama (@amsy810)
Infrastructure Engineer

View Slide
what is Ingress
page
03
L7 LoadBalancing
extensions/v1beta1

NodePort Service
Ingress
Ingress
L4 LoadBalancing
v1

LoadBalancer + iptables
Service (type: LoadBalancer)

View Slide
what is Ingress
page
04

Y^Y^Y^Y^Y^Y^Y^Y^Y^Y^Y

View Slide
02
Pod-Offloaded Ingress
K8s"8Nginx Pod
L7.#+!(9+ L4 Service LoadBalancer:
03
Pod-Native Network Ingress
Cloud Provider Ingress70
Pod-Native Network, LB-%Pod45
01
Cloud Provider Ingress
GCPAWSAzure &
L7 Load Balancer6'
Type of Ingress implementation
LoadBalancer (L7)
Node Node
NIC NIC
VM Network
Pod
Network
Pod Pod Pod
type: NodePort
kube-proxy
(iptables)
kube-proxy
(iptables)
*123
)/LB$Router

View Slide
02
Pod-Offloaded Ingress
K8s&+7S
Nginx Pod
L7E8/B6=U+ L4 Service LoadBalancerV
03
Pod-Native Network Ingress
Cloud Provider IngressR1H
Pod-Native Network0CLBD:PodOP
01
Cloud Provider Ingress
GCPAWSAzure;.
L7 Load Balancer Q<
Type of Ingress implementation
LoadBalancer (L7)
Node Node
NIC NIC
VM Network
Pod
Network
Pod Pod Pod
type: NodePort
kube-proxy
(iptables)
kube-proxy
(iptables)
2?T(*"#&))K
NodePort%*!G5*'
30000-32767U2800 ServicesV
$ !Source [email protected]
X-Forwarded-For Header-, 2I
Cloud Provider6L …
43AJMN >FLB9Router

View Slide
02
Pod-Offloaded Ingress
K8s"8Nginx Pod
L7.#+!(9+ L4 Service LoadBalancer:
03
Pod-Native Network Ingress
Cloud Provider Ingress70
Pod-Native Network, LB-%Pod45
01
Cloud Provider Ingress
GCPAWSAzure &
L7 Load Balancer6'
Type of Ingress implementation
LoadBalancer (L4)
Node Node
NIC NIC
VM Network
Pod
Network
Pod Pod Pod
type: LoadBalancer
kube-proxy
(iptables)
kube-proxy
(iptables)
Pod Pod
Pod
*123
)/LB$Router

View Slide
02
Pod-Offloaded Ingress
K8s& +3O
Nginx Pod
L7B4-?2:Q+ L4 Service LoadBalancerR
03
Pod-Native Network Ingress
Cloud Provider IngressN/D
Pod-Native [email protected]
01
Cloud Provider Ingress
GCPAWSAzure8,
L7 Load Balancer M9
Type of Ingress implementation
LoadBalancer (L4)
Node Node
NIC NIC
VM Network
Pod
Network
Pod Pod Pod
type: LoadBalancer
kube-proxy
(iptables)
kube-proxy
(iptables)
Pod Pod
Pod
& CPU/Memory'*=J
Nginx Pod*')5G
10>EHI ;CLB6Router
03
Pod-Native Network Ingress
Cloud Provider IngressN/D
Pod-Native [email protected]
3

View Slide
02
Pod-Offloaded Ingress
K8s"8Nginx Pod
L7.#+!(9+ L4 Service LoadBalancer:
03
Pod-Native Network Ingress
Cloud Provider Ingress70
Pod-Native Network, LB-%Pod45
01
Cloud Provider Ingress
GCPAWSAzure &
L7 Load Balancer6'
*123
)/LB$Router
Type of Ingress implementation
LoadBalancer (L7)
Node Node
NIC NIC
VM Network
Pod
Network
Pod Pod Pod
kube-proxy
(iptables)
kube-proxy
(iptables)

View Slide
GKE with NEGs #%
"
Kubernetes 1.10
VPC-Native Network'IP alias(
!GKE
'Pod Network
$& (

AWS
alb-ingress-conrtroller
amazon-vpc-cni-k8s
By AWS Conatiner Hero mumoshu
Node Node
NIC NIC
VM Network
Pod
Network
Pod Pod Pod
Router VM

View Slide
03
Pod-Native Network Ingress
Cloud Provider IngressR1H
Pod-Native Network0CLBD:PodOP
01
Cloud Provider Ingress
GCPAWSAzure;.
L7 Load Balancer Q<
43AJMN >FLB9Router
Type of Ingress implementation
LoadBalancer (L7)
Node Node
NIC NIC
VM Network
Pod
Network
Pod Pod Pod
kube-proxy
(iptables)
kube-proxy
(iptables)
02
Pod-Offloaded Ingress
K8s&+7S
Nginx Pod
L7E8/B6=U+ L4 Service LoadBalancerV
03
Pod-Native Network Ingress
Cloud Provider IngressR1H
Pod-Native Network0CLBD:PodOP
2?T(*"#&))K
NodePort%*!G5*'
30000-32767U2800 ServicesV
$ !Source [email protected]
X-Forwarded-For Header-, 2I
Cloud Provider6L …

View Slide
To be continue…
page
012
type: LoadBalaner
GKE-likeIngress Controller

*
NEGs…
* Japan Container Days v18.04 – Keynote session
https://speakerdeck.com/masayaaoyama/saibaezientoniokerupuraibetokontenaji-pan-akewozhi-eruji-shu

View Slide
Using Container-native Load Balancing
https://cloud.google.com/kubernetes-engine/docs/how-to/container-native-load-balancing
Container Native Load Balancing on GKE (Cloud Next '18)
https://www.youtube.com/watch?v=ficroL6bS-w
Cloud Load Balancing Deep Dive and Best Practices (Cloud Next '18)
https://www.youtube.com/watch?v=J5HJ1y6PeyE

View Slide
Thank you for your attension
follow me: @amsy810

View Slide