De-constructing Postgres Into a Cloud Native Platform

De-constructing Postgres into a Cloud Native Platform
@ahachete
De-constructing
Postgres
Into a
Cloud Native Platform
Alvaro Hernandez

View Slide

@ahachete
` whoami `
Álvaro Hernández

aht.es
● Founder & CEO, OnGres
● 20+ years Postgres user and DBA
● Mostly doing R&D to create new,
innovative software on Postgres
● Frequent speaker at Postgres,
database conferences
● Principal Architect of ToroDB
● Founder and President of the NPO
Fundación PostgreSQL
● AWS Data Hero

View Slide

@ahachete
The “Stack” Problem

View Slide

@ahachete
Postgres and Oracle Install Size
$ podman images --format "table {{.Repository}} {{.Tag}} {{.Size}}" \
docker.io/library/postgres
REPOSITORY TAG SIZE
docker.io/library/postgres alpine 76.9 MB
docker.io/library/postgres 12.0 356 MB
$ podman images --format "table {{.Repository}} {{.Tag}} {{.Size}}" \
docker.io/store/oracle/database-enterprise
REPOSITORY TAG SIZE
docker.io/store/oracle/database-enterprise 12.2.0.1 3.46 GB

View Slide

@ahachete
Postgres Is “Just a Kernel”
i
Postgres is like the Linux kernel
Running Postgres in production
requires “a RedHat” of Postgres.
A curated set of open source
components built, verified and
packaged together.

View Slide

@ahachete
The Postgres Ecosystem

View Slide

@ahachete
An Enterprise-Grade Postgres Stack

View Slide

@ahachete
Configuration
● OS, filesystem tuning
● PostgreSQL default
configuration is very
conservative.
● Resources:
○ https://postgresqlco.nf
○ PostgreSQL Configuration
for Humans

View Slide

@ahachete
Connection Pooling
pg_bench, scale 2000, m4.large
(2 vCPU, 8GB RAM, 1k IOPS)

View Slide

@ahachete
Connection Pooling
● PgPool?
● PgBouncer?
● Odyssey?
● Pgagroal?
● Where do we place the pool?
○ Client-side
○ Server-side
○ Middle-ware
○ Some or all of the above

View Slide

@ahachete
High Availability
● Manual?
● PgPool?
● Repmgr?
● Patroni?
● pg_autofailover?
● PAF?
● Stolon?

View Slide

@ahachete
Backups and DR
● pg_dump?
● Barman?
● Pgbackrest?
● Wal-e / Wal-g?
● pg_probackup?
● To disk? To cloud storage?

View Slide

@ahachete
Centralized Logging
● Logs on every server
● There is not a good solution
for this
● Cloud-native solutions like
fluentd or Loki may work
● Store the logs on Timescale

View Slide

@ahachete
Network Proxy. Entrypoint Problem
● Entrypoint: how do I locate
the master, if it might be
changing?
● How do I obtain traffic
metrics?
● Is it possible to manage
traffic: duplicate, A/B to test
clusters, or even inspect it?
● Offload TLS?

View Slide

@ahachete
Monitoring
● Zabbix?
● Okmeter?
● Pganalyze?
● Pgwatch2?
● PoWA?
● New Relic?
● DataDog?
● Prometheus?

View Slide

@ahachete
Management Interface
● There are no tools like OEM…
● UI oriented towards cluster
management
● ClusterControl?
● Elephant Shed?

View Slide

@ahachete
Where Do We Deploy The Stack?

View Slide

@ahachete
StackGres:
The Innovative Postgres Platform
on Kubernetes

View Slide

@ahachete
Postgres is… boring
But boring and innovation are not at odds

View Slide

@ahachete
Innovation opportunities
There hasn’t been much innovation in Postgres in some areas:
Deployment
Automation
Offloading
Functionality
to third-party
software

View Slide

@ahachete
Innovation opportunities on Kubernetes
Kubernetes APIs / Operators
Kubernetes APIs / Operators
Sidecars / CNCF ecosystem
There hasn’t been much innovation in Postgres in some areas:
Deployment
Automation
Offloading
Functionality
to third-party
software

View Slide

@ahachete
De-constructing
Postgres

View Slide

@ahachete
Innovation agenda
● Envoy: offloading monitoring and SSL
● Distributed Logs
● Init-less containers. Sidecars.
Anatomy of the pod.
StackGres Architecture
● Monitoring Integration: Prometheus, Grafana
● Using K8s RBAC for Web Console AuthN/AuthZ
● Cloud-Nativization of Postgres DBA Operations

View Slide

@ahachete
Envoy: offloading monitoring and SSL
What if we could offload from Postgres certain workloads?
And avoid restarts?
● Envoy is a CNCF Proxy
● With a Postgres specific filter
● Decodes the wire protocol: protocol metrics -> Prometheus
● (coming In 1.18): terminates Postgres SSL
● And more functionalities to come in the future…
https://www.cncf.io/blog/2020/08/13/envoy-1-15-introduces-a-new-post
gres-extension-with-monitoring-support/

View Slide

@ahachete
Envoy: offloading monitoring and SSL

View Slide

@ahachete
Distributed Logs
● On a 12 node cluster, do you
ssh, cat /var/log/…/* |grep … | …
to read logs, for every node?
● What happens when the log partition fills up?
● How much effort does it take to export your logs to a database or
similar tool for processing… say with SQL?

View Slide

@ahachete
Distributed Logs

View Slide

@ahachete
Distributed Logs
Main features:
● Postgres, Patroni logs (PgBouncer: WIP).
● Multi-tenant: all pods from one or more clusters.
● Query with SQL or via the Web Console.
Timescale usage:
● Open Source (Apache 2) version.
● Partitions the logs space by timestamp.
● Provide support for partition pruning (logs lifecycle).

View Slide

@ahachete
Init-less containers. Sidecars
Pods are not slim VMs.
Pods should have a single process hierarchy where probes happen.
No init!

View Slide

@ahachete
Anatomy of the Pod

View Slide

@ahachete
StackGres Architecture

View Slide

@ahachete
Monitoring integration: Prometheus, Grafana
Integrating Prometheus is relatively easy in K8s.
Next steps are:
● Postgres exporter
● PgBouncer exporter (using Postgres exporter + dblink)
● Customized Grafana dashboards
● Customizing exporter queries
● Providing pre-configured AlertManager alerts
● Embed Grafana dashboards into the Web Console!

View Slide

@ahachete
Monitoring integration: Prometheus, Grafana

View Slide

@ahachete
Using K8s RBAC for Web Console AuthN/AuthZ

View Slide

@ahachete
Cloud-Nativization of Postgres DBA Operations

View Slide

@ahachete
Thank you
Join our Community in Slack and/or Discord to stay up to date!
slack.stackgres.io discord.stackgres.io

View Slide

De-constructing Postgres Into a Cloud Native Platform

De-constructing Postgres Into a Cloud Native Platform

OnGres

More Decks by OnGres

Other Decks in Technology

Featured

Transcript