Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
CoreOS Technical Overview @ pdxdevops
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
Brandon Philips
February 24, 2014
Programming
370
3
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
CoreOS Technical Overview @ pdxdevops
Slides from a talk given at PDX devops
http://pdxdevops.org/
Brandon Philips
February 24, 2014
More Decks by Brandon Philips
See All by Brandon Philips
Node.js Workflow with Minikube and Skaffold
philips
0
300
Manage the App on Kubernetes
philips
0
370
Production Backbone Monitoring Containerized Apps
philips
0
230
KubeCon EU 2017: Dancing on the Edge of a Volcano
philips
1
860
rkt - KubeCon EU keynote - 2017
philips
1
310
FOSDEM_Keynote_2017-_.pdf
philips
0
170
Tectonic Summit Day 2 Keynote
philips
0
410
Kubernetes: Simple to Manage Anywhere (self-hosted, Tectonic upgrade demo)
philips
0
440
KubeCon Keynote 2016- Distributed Systems Simplified on Kubernetes
philips
2
590
Other Decks in Programming
See All in Programming
例外の正しい扱い方 そのエラー try-catchして大丈夫?
jinwatanabe
0
290
エンジニア向け会社紹介/Findy Company Profile
findyinc
6
350k
AI 輔助遺留系統現代化的經驗分享
jame2408
1
1k
なぜ型を書くのか? TSKaigi2026で改めて考える #tskaigi_smarthr
kajitack
0
170
Spring Security 実践 ─ GraphQL APIで実務に役立つ 認証・認可 を学ぶ
wagyu
0
260
Performance Engineering for Everyone
elenatanasoiu
0
230
jQueryをバージョンアップする前に使いたいjQuery Migrate
matsuo_atsushi
0
600
A2UI という光を覗いてみる
satohjohn
1
160
AI駆動開発を妨げる技術的負債の解消アプローチ / ai-refactoring-approach
minodriven
15
7.3k
AI時代のUIはどこへ行く?その2!
yusukebe
22
7.5k
決定論的オーケストレーションの設計と実装 / Design and Implementation of Deterministic Orchestration
nrslib
4
1.5k
Signal Forms: Details & Live Coding @enterJS 2026 in Mannheim
manfredsteyer
PRO
0
200
Featured
See All Featured
Raft: Consensus for Rubyists
vanstee
141
7.6k
My Coaching Mixtape
mlcsv
0
160
Why You Should Never Use an ORM
jnunemaker
PRO
61
9.9k
End of SEO as We Know It (SMX Advanced Version)
ipullrank
3
4.2k
The browser strikes back
jonoalderson
0
1.3k
Paper Plane (Part 1)
katiecoart
PRO
0
9.3k
XXLCSS - How to scale CSS and keep your sanity
sugarenia
250
1.3M
Bridging the Design Gap: How Collaborative Modelling removes blockers to flow between stakeholders and teams @FastFlow conf
baasie
0
590
Everyday Curiosity
cassininazir
0
240
Building a A Zero-Code AI SEO Workflow
portentint
PRO
0
610
Producing Creativity
orderedlist
PRO
348
40k
The B2B funnel & how to create a winning content strategy
katarinadahlin
PRO
1
400
Transcript
CoreOS
Linux for Massive Server Deployments
@BrandonPhilips github.com/philips
secure the internet Why?
manual updates
automatic updates
automatic updates
rpm replace files restart processes edit configs
apt replace files restart processes edit configs
chef replace files restart processes edit configs
puppet replace files restart processes edit configs
kernel systemd ssh docker python java nginx mysql openssl app
distro distro distro distro distro distro dist
kernel systemd ssh docker python java nginx mysql openssl app
distro distro distro distro distro distro dist
The Linux Kernel does not break userspace.
WE DO NOT BREAK USERSPACE! Seriously. How hard is this
rule to understand? We particularly don't break user space with TOTAL CRAP. - Linus Torvalds
None
None
etcd
/etc distributed
A highly-available key value store for shared configuration and service
discovery.
A highly-available key value store for shared configuration and service
discovery.
Available 3 1 2 5 4
Available 3 1 5 4
Available 3 1 4
Unavailable 3 1
A highly-available key value store for shared configuration and service
discovery.
$ mkdir services! ! $ set services/db0 10.0.0.8! $ set
services/db1 10.0.0.10! ! $ set services/db-master db0 etcdctl
GET /services/db0 “10.0.0.8”
A highly-available key value store for shared configuration and service
discovery.
{ "password": "cleartext", "user": "root" }
A highly-available key value store for shared configuration and service
discovery.
A highly-available key value store for shared configuration and service
discovery & locking.
App etcd DB?
App etcd No DB
App etcd I will watch and wait
App etcd DB Master?
App etcd No DB Master. You’re it. DB Master appeared
App etcd Heartbeat Watch SELECT * from Awesome
App etcd Heartbeat DB Master? Watch
App etcd Heartbeat Master exists. Watch
App etcd Heartbeat Heartbeat Watch
App etcd You’re master now New DB
App etcd Watch Heartbeat DROP *
App etcd Watch Heartbeat DB Master?
App etcd master exists Heartbeat Watch
$ set services/db-master db0! ! $ set --swap-with-value "db1" \!
services/db-master db0! ! Compare failed ([db1 != db0]! etcdctl
how does the db know how to talk to etcd?
buddy etcd { host: “db1”, port: 4349 }
buddy etcd heartbeat
etcd
linux+systemd CoreOS is
mount storage setup networks run processes linux+systemd manages the single
server:
mount storage $ cat media-state.mount! [Mount]! What=/dev/disk/by-label/STATE! Where=/media/state! Options=commit=600,data=ordered! Type=ext4!
FsckPassNo=0
setup networks $ cat public.link! [Match]! MACAddress=52:54:00:12:34:56! [Link]! Alias=public! !
$ cat public.network! [Network]! DHCP=True!
run services $ cat docker.service! [Unit]! After=network.target! ! [Service]! ExecStart=/usr/bin/docker
-d -H fd://! Restart=on-failure! ! [Install]! WantedBy=multi-user.target
docker runs containers $ cat scrup.service! [Unit]! Description=Scrup Service! After=docker.service!
! [Service]! ExecStart=/usr/bin/docker run -p 3000:3000 philips/scrup systemd logs and monitors
fleet demo
more security more reliability more stability
Credits: Browser Icons: https://www.iconfinder.com/ Thanks! @coreoslinux