Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Kubernetes For Sysadmins

Maciej Strzelecki
December 14, 2017
Technology
1
270

Kubernetes For Sysadmins

Maciej Strzelecki

December 14, 2017
Tweet

More Decks by Maciej Strzelecki

See All by Maciej Strzelecki
Helm, The Package Manager for Kubernetes
mstrzele
0
64

Other Decks in Technology

See All in Technology
いつか使うかも貯金してたらめちゃめちゃ機能が増えてた話
riyaamemiya
0
320
ChatworkのSRE部って実は 半分くらいPlatform Engineering部かもしれない
saramune
0
160
Azureの基本的な権限管理の勉強会
yhana
0
590
DevOpsメトリクスとアウトカムの接続にトライ!開発プロセスを通して計測できるメトリクスの活用方法
ham0215
2
240
レガシーをぶっ壊せ。AEONで始めるDevRelの話 / Qiita Night 2024-2-22
aeonpeople
3
1.3k
Além do else! Categorizando Pokemóns com Pattern Matching no JavaScript
wmsbill
0
640
検証を通して見えてきたTiDBの性能特性
lycorptech_jp
PRO
6
3.8k
On Your Data を超えていく!
hirotomotaguchi
2
690
開発パフォーマンスを最大化するための開発体制
ham0215
2
440
プラットフォームってつくることより計測することが重要なんじゃないかという話 / Platform Engineering Meetup #8
taishin
1
370
MLOpsの「壁」を乗り越える、LINEヤフーの Data Quality as Code
lycorptech_jp
PRO
5
530
データベース02: データベースの概念
trycycle
0
160

Featured

See All Featured
Statistics for Hackers
jakevdp
789
220k
The Invisible Customer
myddelton
114
12k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
30
6k
Testing 201, or: Great Expectations
jmmastey
28
6.4k
We Have a Design System, Now What?
morganepeng
43
6.8k
Rebuilding a faster, lazier Slack
samanthasiow
73
8.2k
BBQ
matthewcrist
80
8.8k
How GitHub Uses GitHub to Build GitHub
holman
468
290k
Building Better People: How to give real-time feedback that sticks.
wjessup
355
18k
Designing Experiences People Love
moore
136
23k
Rails Girls Zürich Keynote
gr2m
91
13k
Agile that works and the tools we love
rasmusluckow
325
20k

Transcript

  1. None

  2. Kubernetes For Sysadmins

  3. Maciej Strzelecki • DevOps Engineer @ Schibsted Tech Polska •

    Trainer @ infoShare Academy • Independent Consultant
  4. None
  5. None

  6. Mutable Infrastructure vs Immutable Infrastructure “Configuration management tools such as

    Chef, Puppet, Ansible, and SaltStack typically default to a mutable infrastructure paradigm.”

  7. Configuration Drift

  8. None
  9. None
  10. None

  11. Container-Centric Infrastructure

  12. None
  13. None

  14. Pods • abstraction that represents a group of one or

    more application containers • Shared storage, as Volumes • Networking, as a unique cluster IP address • Information about how to run each container, such as the container image version or specific ports to use

  15. Services and Labels • Service routes traffic across a set

    of Pods • Labels are key/value pairs attached to objects • Services match a set of Pods using labels and selectors

  16. Scheduling Decide where my container should run • nodeSelector •

    Node affinity • Inter-pod affinity and anti-affinity

  17. Lifecycle and health Keep my containers running despite failures •

    Container hooks • Init Containers • Liveness and Readiness Probes

  18. Scaling Make sets of containers bigger or smaller • Deployments

    • Horizontal Pod Autoscaler

  19. Naming and discovery Find where my containers are now •

    Labels and Selectors • Services

  20. Load balancing Distribute traffic across a set of containers •

    Services • External Load Balancer • Ingress

  21. Storage volumes Provide data to containers • Volumes • Persistent

    Volumes • Persistent Volume Claims • Storage Classes

  22. Logging and monitoring Track what’s happening with my containers

  23. Debugging and introspection Enter or attach to containers • Events

    • Exec • Proxies • Port forwarding

  24. Identity and authorization Control who can do things to my

    containers • Namespaces • RBAC • Network Policies

  25. “Container Wars Are Over: Kubernetes Has Won!”

  26. None

  27. How to Configure Autoscaling on Docker Swarm? “Not available today.

    Swarm uses Docker-Compose to scale statically. CPU/QPS monitoring is needed to do auto scaling. Swarm doesn't have that yet.”
  28. None

  29. “Docker-Swarm, Kubernetes, Mesos & Core-OS Fleet” “I think that Mesos

    and Kubernetes are largely aimed at solving similar problems of running clustered applications, they have different histories and different approaches to solving the problem. Mesos focuses its energy on very generic scheduling and plugging in multiple different schedulers.”
  30. None

  31. Minikube Run Kubernetes locally Minikube is a tool that makes

    it easy to run Kubernetes locally. Minikube runs a single-node Kubernetes cluster inside a VM on your laptop for users looking to try out Kubernetes or develop with it day-to-day.

  32. macOS brew cask install minikube

  33. Linux curl -Lo minikube https://storage.googleapis.com/minikube/releases/latest/mini kube-linux-amd64 && chmod +x minikube

    && sudo mv minikube /usr/local/bin/

  34. Hosted Solutions • Google Container Kubernetes Engine (GKE) • Azure

    Container Service (AKS) • Amazon Elastic Container Service for Kubernetes (EKS)

  35. Kubernetes The Hard Way Bootstrap Kubernetes the hard way on

    Google Cloud Platform. No scripts. Kubernetes The Hard Way is optimized for learning, which means taking the long route to ensure you understand each task required to bootstrap a Kubernetes cluster.

  36. Note to Self • Monitor and log everything (especially count

    of restarted Pods) • Managed versions are OK to start, but sooner or later you’ll need some tweaks or customizations • Limit resources of each application from the beginning • Watch out for Java apps and heap size • Design readiness and liveness probes carefully, don’t check external dependencies • Take service mesh for consideration (Istio, Linkerd etc.) or at least configure tracing (included in NGINX Ingress Controller) • Use tools from K8s ecosystem (Helm, Draft) • Minikube on local development environment isn’t a problem, Docker-way of development is

  37. “Serverless, not infrastructureless”

  38. Questions?

  39. [email protected]