Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Anatomy of a Production Kubernetes Outage – Kub...

Oliver Beattie
May 02, 2018
Technology
4
4.5k

Anatomy of a Production Kubernetes Outage – Kubecon EU 2018

Dive into a production Kubernetes outage that Monzo experienced a few months ago, its causes and effects, and the architectural and operational lessons learned.

Oliver Beattie

May 02, 2018
Tweet

More Decks by Oliver Beattie

See All by Oliver Beattie
DevOps Exchange London – Network Security at Monzo
obeattie
0
240
Building a Bank with Kubernetes – Kubecon 2016
obeattie
1
560
Building a Bank with Kubernetes – Kubernetes London Meetup, Autumn 2016
obeattie
10
47k

Other Decks in Technology

See All in Technology
Platform Engineering for Software Developers and Architects
syntasso
1
510
開発生産性を上げながらビジネスも30倍成長させてきたチームの姿
kamina_zzz
2
1.7k
OCI Vault 概要
oracle4engineer
PRO
0
9.7k
SREによる隣接領域への越境とその先の信頼性
shonansurvivors
2
520
OCI Network Firewall 概要
oracle4engineer
PRO
0
4.1k
【令和最新版】AWS Direct Connectと愉快なGWたちのおさらい
minorun365
PRO
5
750
Lambda10周年!Lambdaは何をもたらしたか
smt7174
2
110
AWS Media Services 最新サービスアップデート 2024
eijikominami
0
200
Making your applications cross-environment - OSCG 2024 NA
salaboy
0
180
New Relicを活用したSREの最初のステップ / NRUG OKINAWA VOL.3
isaoshimizu
2
590
【Startup CTO of the Year 2024 / Audience Award】アセンド取締役CTO 丹羽健
niwatakeru
0
980
リンクアンドモチベーション ソフトウェアエンジニア向け紹介資料 / Introduction to Link and Motivation for Software Engineers
lmi
4
300k

Featured

See All Featured
The Invisible Side of Design
smashingmag
298
50k
The MySQL Ecosystem @ GitHub 2015
samlambert
250
12k
Fashionably flexible responsive web design (full day workshop)
malarkey
405
65k
Building Applications with DynamoDB
mza
90
6.1k
VelocityConf: Rendering Performance Case Studies
addyosmani
325
24k
Six Lessons from altMBA
skipperchong
27
3.5k
The Pragmatic Product Professional
lauravandoore
31
6.3k
The Illustrated Children's Guide to Kubernetes
chrisshort
48
48k
Producing Creativity
orderedlist
PRO
341
39k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
126
18k
Testing 201, or: Great Expectations
jmmastey
38
7.1k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
irinanazarova
4
370

Transcript

  1. Anatomy of a Production
 Kubernetes Outage ! Oliver Beattie Head

    of Engineering, Monzo Bank
  2. None
  3. None
  4. None
  5. None

  6. You've spent £35.50 today ! £10 at Tiger now MONZO

    Wednesday, 2 May 5:10

  7. > 500 micro services Built on open source software

  8. Story of an outage

  9. CAST OF CHARACTERS " Kubernetes etcd Linkerd Humans #

  10. etcd upgrade ⏰ 2 WEEKS BEFORE THE OUTAGE

  11. Deployment of faulty service Scaled to zero replicas ⏰ 1

    DAY BEFORE THE OUTAGE

  12. ⏰ START OF PARTIAL OUTAGE Ledger change deployed

  13. Ledger change rolled back ⏰ 2 MINS INTO THE OUTAGE

  14. Linkerd identified as unhealthy ⏰ 6 MINS INTO THE OUTAGE

  15. Begin restarting Linkerd pods ⏰ 16 MINS INTO THE OUTAGE

  16. New Linkerd pods cannot start Kubernetes apiserver restarted ⏰ 27

    MINS INTO THE OUTAGE

  17. Finish restarting Linkerd pods ⏰ ESCALATED TO TOTAL OUTAGE 1

    HR 3 MINS INTO THE OUTAGE

  18. Linkerd NullPointerException
 observed on start up ⏰ 1 HR 17

    MINS INTO THE OUTAGE

  19. Linkerd/k8s incompatibility found Empty services deleted ⏰ END OF OUTAGE

    1 HR 21 MINS

  20. IMPACT % 1 hour, 21 mins of cluster downtime Vast

    majority of payments succeeded throughout

  21. ROOT CAUSES ! Bug in gRPC client library affecting etcd

    Incompatibility between Kubernetes + Linkerd

  22. "endpoints": [] V K8S < 1.6

  23. "endpoints": [] VS. "endpoints": null K8S < 1.6 K8S 1.6+

  24. ROOT CAUSES ! Bug in gRPC client library affecting etcd

    Incompatibility between Kubernetes + Linkerd Human error

  25. LESSONS & Defence in depth

  26. Mastercard
 Banknet 
 Mastercard
 processor AWS PHYSICAL
 DATA CENTRES 


    Mastercard
 proxy 
 Ledger

  27. Mastercard
 Banknet 
 Mastercard
 processor AWS PHYSICAL
 DATA CENTRES 


    Mastercard
 proxy 
 Ledger '

  28. LESSONS & Chaos engineering

  29. “Chaos Engineering is the discipline of experimenting on a distributed

    system in order to build confidence in the system’s capability to withstand turbulent conditions in production.”

  30. LESSONS ( More monitoring, more visible

  31. LESSONS & Be transparent; embrace the community

  32. None
  33. None

  34. monzo.com/careers

  35. @obeattie