Slide 1
Slide 1 text
Δͥʂ,VCFSOFUFTϋϯζΦϯʂ
ໟརܒଠ
Slide 2
Slide 2 text
ຊͷඪ
‣ ,VCFSOFUFTͱ͓༑ୡʹͳΔ
ΠϝʔδΛ௫Ή
৮ͬͯΈΔ ϩʔΧϧɾ&,4ɾͪΐͬͱ(,&
ߏஙɾӡ༻͕Ͱ͖ΔΑ͏ͳؾʹͳΔ
‣ ʹ͋;ΕΔ,VCFSOFUFTͷهࣄɾεϥΠυ͕
ཧղͰ͖ΔΑ͏ʹͳΔ
2
Slide 3
Slide 3 text
3
લఏࣝɾ४උ
Slide 4
Slide 4 text
%PDLFS%PDLFS$PNQPTF
‣ ͜͜Ͱલఏࣝͱͯ͠ѻ͏ͷͰઆ໌͠·ͤΜ
IUUQTHJUIVCDPNOPIFEPDLFSMFTTPOT
IUUQTXXXTMJEFTIBSFOFU[FNCVUTVEPDLFSDPNQPTF
HVJEFCPPL
4
Slide 5
Slide 5 text
%PDLFSGPS%FTLUPQ
‣ .BD8JOEPXT༻ͷ%PDLFSڥ
IUUQTXXXEPDLFSDPNQSPEVDUTEPDLFSEFTLUPQ
5
Slide 6
Slide 6 text
LVCFDUM
‣ ,VCFSOFUFTΫϥελΛૢ࡞͢Δ$-*
IUUQTLVCFSOFUFTJPEPDTUBTLTUPPMTJOTUBMMLVCFDUM
‣ .BDͷ߹
CSFXJOTUBMMLVCFSOFUFTDMJ
6
Slide 7
Slide 7 text
"84ΞΧϯτ*".Ϣʔβʔ"84$-*
‣ ݸਓͷ"84ΞΧϯτ
‣ *".Ϣʔβʔ
"ENJOJTUSBUPS"DDFTTͷϙϦγʔΛΞλον
w ݖݶߜΔͷ͕໘ͩͬͨ
ΞΫηεΩʔΛ࡞
‣ "84$-*
IUUQTHJUIVCDPNBXTBXTDMJ
࡞ͨ͠*".ϢʔβʔΞΫηεΩʔΛͬͯQSPpMFΛઃఆ͓ͯ͘͠
QSPpMFΛڥม"84@130'*-&ʹઃఆ
7
Slide 8
Slide 8 text
BXTJBNBVUIFOUJDBUPS
‣ *".ͷೝূใΛ༻ͯ͠,VCFSOFUFTΫϥελʔͷ
ೝূΛߦ͏πʔϧ
IUUQTEPDTBXTBNB[PODPNKB@KQFLTMBUFTU
VTFSHVJEFJOTUBMMBXTJBNBVUIFOUJDBUPSIUNM
‣ .BDͷ߹
CSFXJOTUBMMBXTJBNBVUIFOUJDBUPS
8
Slide 9
Slide 9 text
FLTDUM
‣ &,4ͰΫϥελΛ࡞͢ΔͨΊͷ$-*
IUUQTFLTDUMJP
‣ .BDͷ߹
CSFXUBQXFBWFXPSLTUBQ
CSFXJOTUBMMXFBWFXPSLTUBQFLTDUM
9
Slide 10
Slide 10 text
ڥ֬ೝ
10
$ docker -v
Docker version 18.09.2, build 6247962
$ kubectl version --short --client
Client Version: v1.13.4
$ aws --version
aws-cli/1.16.125 Python/2.7.14 Darwin/18.2.0 botocore/1.12.115
$ aws-iam-authenticator help
(লུ)
$ eksctl version
[ℹ] version.Info{BuiltAt:"", GitCommit:"", GitTag:"0.1.31"}
Slide 11
Slide 11 text
11
,VCFSOFUFTͱ
Slide 12
Slide 12 text
,VCFSOFUFTͱ
‣ ίϯςφΦʔέετϨʔγϣϯγεςϜ
ͨ͘͞Μͷαʔόʔʹ
ͨ͘͞ΜͷίϯςφΛஔ͍ͯ
࿈ܞͤ͞ΔΑ͏ͳΞϓϦέʔγϣϯΛ
σϓϩΠɾཧɾεέʔϧͱ͔ͤ͞Δʔͭ
‣ ͷɺσϑΝΫτελϯμʔυ
12
Slide 13
Slide 13 text
,VCFSOFUFTͱ
‣ ʹ(PPHMF͕044ͱͯ͠ެ։
(PPHMFͷ͖ʹΘͨΔίϯςφӡ༻ͷݟ͕٧·͍ͬͯΔ
‣ ݱࡏ$/$'(Cloud Native Computing Foundation)͕ཧ
ΫϥυωΠςΟϒͳ044ٕज़ͷਪਐΛߦ͏ஂମ
‣ %PDLFSެࣜʹαϙʔτ
%PDLFS4XBSN͋Δͷʹʂ
13
Slide 14
Slide 14 text
,VCFSOFUFTͱ
‣ ($1͚ͩͰͳ͘ΦϯϓϨଞͷΫϥυͰಈ͘
‣ ֤ΫϥυͰϚωʔδυαʔϏε͕ग़͍ͯΔ
($1(,&
"84&,4 &$4͋Δͷʹʂ
"[VSF",4
*#.$MPVE چ#MVFNJY
*,4
"MJCBCB$POUBJOFS4FSWJDFGPS,VCFSOFUFT
‣ ܦͯͨΓલͷٕज़ʹͳ͍ͬͯΔ͔
14
Slide 15
Slide 15 text
15
,VCFSOFUFTͬͯ
Կ͕͏Ε͍͠ͷʁ
Slide 16
Slide 16 text
ίϯςφͰΞϓϦέʔγϣϯͷӡ༻
‣ ͨ͘͞Μͷαʔόʔʹͨ͘͞ΜͷίϯςφΛஔ͍ͯ࿈ܞ
%PDLFS$PNQPTFͰͲ͏ʹ͔ஔͯ͠Έͨͱ͜Ζ
16
MySQL
Nginx
App
Redis
SERVER
Nginx
App
SERVER
Slide 17
Slide 17 text
ίϯςφͰΞϓϦέʔγϣϯͷӡ༻
17
docker-compose01.yaml docker-compose02.yaml
MySQL
Nginx
App
Redis
SERVER
Nginx
App
SERVER
Ͳͷαʔόʔʹ
Ͳͷίϯςφ͕͋Δ͔
ཧ͠ͳͪ͘Ό
‣ ͨ͘͞Μͷαʔόʔʹͨ͘͞ΜͷίϯςφΛஔ͍ͯ࿈ܞ
%PDLFS$PNQPTFͰͲ͏ʹ͔ஔͯ͠Έͨͱ͜Ζ
Slide 18
Slide 18 text
App
ίϯςφͰΞϓϦέʔγϣϯͷӡ༻
18
docker-compose01.yaml docker-compose02.yaml
MySQL
Nginx
App
Redis
SERVER
Nginx
SERVER
‣ ͨ͘͞Μͷαʔόʔʹͨ͘͞ΜͷίϯςφΛஔ͍ͯ࿈ܞ
%PDLFS$PNQPTFͰͲ͏ʹ͔ஔͯ͠Έͨͱ͜Ζ
ίϯςφ͕ࢮΜͩΒ
Ͳ͏ͬͯؾͮ͘ʁ
Ͳ͏ͬͯճ෮͢Δʁ
Ͳͷαʔόʔʹ
Ͳͷίϯςφ͕͋Δ͔
ཧ͠ͳͪ͘Ό
Slide 19
Slide 19 text
App
ίϯςφͰΞϓϦέʔγϣϯͷӡ༻
19
docker-compose01.yaml docker-compose02.yaml
MySQL
Nginx
App
Redis
SERVER
Nginx
SERVER
‣ ͨ͘͞Μͷαʔόʔʹͨ͘͞ΜͷίϯςφΛஔ͍ͯ࿈ܞ
%PDLFS$PNQPTFͰͲ͏ʹ͔ஔͯ͠Έͨͱ͜Ζ
αʔόʔΛލ͍ͩ
ίϯςφؒͷ௨৴
Ͳ͏͠Α͏ʁ
ίϯςφ͕ࢮΜͩΒ
Ͳ͏ͬͯؾͮ͘ʁ
Ͳ͏ͬͯճ෮͢Δʁ
Ͳͷαʔόʔʹ
Ͳͷίϯςφ͕͋Δ͔
ཧ͠ͳͪ͘Ό
Slide 20
Slide 20 text
App
ίϯςφͰΞϓϦέʔγϣϯͷӡ༻
20
docker-compose01.yaml docker-compose02.yaml
MySQL
Nginx
App
Redis
SERVER
Nginx
SERVER
‣ ͨ͘͞Μͷαʔόʔʹͨ͘͞ΜͷίϯςφΛஔ͍ͯ࿈ܞ
%PDLFS$PNQPTFͰͲ͏ʹ͔ஔͯ͠Έͨͱ͜Ζ
αʔόʔΛލ͍ͩ
ίϯςφؒͷ௨৴
Ͳ͏͠Α͏ʁ
v1.1.0
ίϯςφͷߋ৽
Ͳ͏͠Α͏ʁ
ॱংɺґଘؔetc…
ίϯςφ͕ࢮΜͩΒ
Ͳ͏ͬͯؾͮ͘ʁ
Ͳ͏ͬͯճ෮͢Δʁ
Ͳͷαʔόʔʹ
Ͳͷίϯςφ͕͋Δ͔
ཧ͠ͳͪ͘Ό
Slide 21
Slide 21 text
App
ίϯςφͰΞϓϦέʔγϣϯͷӡ༻
21
docker-compose01.yaml docker-compose02.yaml
MySQL
Nginx
App
Redis
SERVER
Nginx
SERVER
‣ ͨ͘͞Μͷαʔόʔʹͨ͘͞ΜͷίϯςφΛஔ͍ͯ࿈ܞ
%PDLFS$PNQPTFͰͲ͏ʹ͔ஔͯ͠Έͨͱ͜Ζ
αʔόʔΛލ͍ͩ
ίϯςφؒͷ௨৴
Ͳ͏͠Α͏ʁ
Load Balancer
ϩʔυόϥϯγϯά
͠ͳ͍ͱͶ
ίϯςφ͕ࢮΜͩΒ
Ͳ͏ͬͯؾͮ͘ʁ
Ͳ͏ͬͯճ෮͢Δʁ
v1.1.0
ίϯςφͷߋ৽
Ͳ͏͠Α͏ʁ
ॱংɺґଘؔetc…
Ͳͷαʔόʔʹ
Ͳͷίϯςφ͕͋Δ͔
ཧ͠ͳͪ͘Ό
Slide 22
Slide 22 text
App
SERVER
App
ίϯςφͰΞϓϦέʔγϣϯͷӡ༻
22
docker-compose01.yaml docker-compose02.yaml
MySQL
Nginx
App
Redis
SERVER
Nginx
SERVER
‣ ͨ͘͞Μͷαʔόʔʹͨ͘͞ΜͷίϯςφΛஔ͍ͯ࿈ܞ
%PDLFS$PNQPTFͰͲ͏ʹ͔ஔͯ͠Έͨͱ͜Ζ
αʔόʔΛލ͍ͩ
ίϯςφؒͷ௨৴
Ͳ͏͠Α͏ʁ
Load Balancer
ϩʔυόϥϯγϯά
͠ͳ͍ͱͶ
ίϯςφ͕ࢮΜͩΒ
Ͳ͏ͬͯؾͮ͘ʁ
Ͳ͏ͬͯճ෮͢Δʁ
v1.1.0
ίϯςφͷߋ৽
Ͳ͏͠Α͏ʁ
ॱংɺґଘؔetc…
Nginx
εέʔϦϯά…
Ͳͷαʔόʔʹ
Ͳͷίϯςφ͕͋Δ͔
ཧ͠ͳͪ͘Ό
Slide 23
Slide 23 text
App
SERVER
App
ίϯςφͰΞϓϦέʔγϣϯͷӡ༻
23
docker-compose01.yaml docker-compose02.yaml
MySQL
Nginx
App
Redis
SERVER
Nginx
SERVER
‣ ͨ͘͞Μͷαʔόʔʹͨ͘͞ΜͷίϯςφΛஔ͍ͯ࿈ܞ
%PDLFS$PNQPTFͰͲ͏ʹ͔ஔͯ͠Έͨͱ͜Ζ
αʔόʔΛލ͍ͩ
ίϯςφؒͷ௨৴
Ͳ͏͠Α͏ʁ
Load Balancer
ϩʔυόϥϯγϯά
͠ͳ͍ͱͶ
ίϯςφ͕ࢮΜͩΒ
Ͳ͏ͬͯؾͮ͘ʁ
Ͳ͏ͬͯճ෮͢Δʁ
v1.1.0
ίϯςφͷߋ৽
Ͳ͏͠Α͏ʁ
ॱংɺґଘؔetc…
Nginx
εέʔϦϯά…
Ͳͷαʔόʔʹ
Ͳͷίϯςφ͕͋Δ͔
ཧ͠ͳͪ͘Ό
ϩάͷཧ…
Slide 24
Slide 24 text
ਓྨʹߴ͗͢Δ
24
Slide 25
Slide 25 text
Ͱ͖ΔΜͰ͢
ͦ͏ɺ,VCFSOFUFTͳΒͶ
25
Slide 26
Slide 26 text
26
,VCFSOFUFTͷ
ΠϝʔδΛ௫Ή
Slide 27
Slide 27 text
ϕʔεͱͳΔΞΠσΞ
‣ ίϯςφͷཧΛ͍͍ײ͡ʹͬͯ͘ΕΔγεςϜ͕͋Ε͍͍͡ΌΜ
27
SERVER SERVER
͍͍ײ͡ͷ
γεςϜ
จॻ
Slide 28
Slide 28 text
ϕʔεͱͳΔΞΠσΞ
‣ ίϯςφͷཧΛ͍͍ײ͡ʹͬͯ͘ΕΔγεςϜ͕͋Ε͍͍͡ΌΜ
28
SERVER SERVER
͍͍ײ͡ͷ
γεςϜ
จॻ
Nginx
App
Redis MySQL
Nginx
App
͍͍ײ͡ʹॴΛஅͯ͠
ίϯςφΛஔ
Slide 29
Slide 29 text
ϕʔεͱͳΔΞΠσΞ
‣ ίϯςφͷཧΛ͍͍ײ͡ʹͬͯ͘ΕΔγεςϜ͕͋Ε͍͍͡ΌΜ
29
SERVER SERVER
͍͍ײ͡ͷ
γεςϜ
จॻ
Nginx
App
Redis MySQL
Nginx
͍͍ײ͡ʹॴΛஅͯ͠
ίϯςφΛஔ
App
App ίϯςφ͕ࢮΜͩΒ
ࣗಈճ෮
Slide 30
Slide 30 text
ϕʔεͱͳΔΞΠσΞ
‣ ίϯςφͷཧΛ͍͍ײ͡ʹͬͯ͘ΕΔγεςϜ͕͋Ε͍͍͡ΌΜ
30
SERVER SERVER
͍͍ײ͡ͷ
γεςϜ
จॻ
Nginx
App
Redis MySQL
Nginx
͍͍ײ͡ʹॴΛஅͯ͠
ίϯςφΛஔ
ίϯςφ͕ࢮΜͩΒ
ࣗಈճ෮
αʔόʔؒͷ
ωοτϫʔΫ
͍͍ײ͡ʹ
App
App
Slide 31
Slide 31 text
ϕʔεͱͳΔΞΠσΞ
‣ ίϯςφͷཧΛ͍͍ײ͡ʹͬͯ͘ΕΔγεςϜ͕͋Ε͍͍͡ΌΜ
31
SERVER SERVER
͍͍ײ͡ͷ
γεςϜ
จॻv1.1.0
Nginx
App
Redis MySQL
Nginx
͍͍ײ͡ʹॴΛஅͯ͠
ίϯςφΛஔ
ίϯςφ͕ࢮΜͩΒ
ࣗಈճ෮
αʔόʔؒͷ
ωοτϫʔΫ
͍͍ײ͡ʹ
App App
App
v1.1.0
App
v1.1.0
ϩʔϦϯάΞοϓσʔτ
Blue/GreenσϓϩΠϝϯτ
Slide 32
Slide 32 text
ϕʔεͱͳΔΞΠσΞ
‣ ίϯςφͷཧΛ͍͍ײ͡ʹͬͯ͘ΕΔγεςϜ͕͋Ε͍͍͡ΌΜ
32
SERVER SERVER
͍͍ײ͡ͷ
γεςϜ
จॻv1.1.0
Nginx
App
Redis MySQL
Nginx
͍͍ײ͡ʹॴΛஅͯ͠
ίϯςφΛஔ
ίϯςφ͕ࢮΜͩΒ
ࣗಈճ෮
αʔόʔؒͷ
ωοτϫʔΫ
͍͍ײ͡ʹ
App App
App
v1.1.0
App
v1.1.0
ϩʔϦϯάΞοϓσʔτ
Blue/GreenσϓϩΠϝϯτ
Load Balancer
ϩʔυόϥϯγϯά
Ͱ͖Δ
Slide 33
Slide 33 text
App
SERVER
Nginx
ϕʔεͱͳΔΞΠσΞ
‣ ίϯςφͷཧΛ͍͍ײ͡ʹͬͯ͘ΕΔγεςϜ͕͋Ε͍͍͡ΌΜ
33
SERVER SERVER
͍͍ײ͡ͷ
γεςϜ
จॻv1.1.0
Nginx
App
Redis MySQL
Nginx
͍͍ײ͡ʹॴΛஅͯ͠
ίϯςφΛஔ
ίϯςφ͕ࢮΜͩΒ
ࣗಈճ෮
αʔόʔؒͷ
ωοτϫʔΫ
͍͍ײ͡ʹ
App App
App
v1.1.0
App
v1.1.0
ϩʔϦϯάΞοϓσʔτ
Blue/GreenσϓϩΠϝϯτ
Load Balancer
ϩʔυόϥϯγϯά
Ͱ͖Δ
αʔόʔͷ
ΦʔτεέʔϦϯάʂ
Slide 34
Slide 34 text
App
SERVER
Nginx
ϕʔεͱͳΔΞΠσΞ
‣ ίϯςφͷཧΛ͍͍ײ͡ʹͬͯ͘ΕΔγεςϜ͕͋Ε͍͍͡ΌΜ
34
SERVER SERVER
͍͍ײ͡ͷ
γεςϜ
จॻv1.1.0
Nginx
App
Redis MySQL
Nginx
͍͍ײ͡ʹॴΛஅͯ͠
ίϯςφΛஔ
ίϯςφ͕ࢮΜͩΒ
ࣗಈճ෮
αʔόʔؒͷ
ωοτϫʔΫ
͍͍ײ͡ʹ
App App
App
v1.1.0
App
v1.1.0
ϩʔϦϯάΞοϓσʔτ
Blue/GreenσϓϩΠϝϯτ
Load Balancer
ϩʔυόϥϯγϯά
Ͱ͖Δ
αʔόʔͷ
ΦʔτεέʔϦϯάʂ
ϩάऩूΧϯλϯ
Slide 35
Slide 35 text
Ұ୴͜͜·ͰΛ,VCFSOFUFT༻ޠʹม
35
Kubernetes Cluster
ϚχϑΣετ
kubectl
(CLI for k8s)
= Control Plane
Data Plane
Slide 36
Slide 36 text
ϚχϑΣετ
‣ γεςϜͷ͋Δ͖࢟Λॻ͍͍ͯΔZBNMϑΝΠϧ
ʮએݴతઃఆʯͱݺΕΔ ʮ໋ྩతઃఆʯ
એݴͨ͠ঢ়ଶΛҡ࣋͠Α͏ͱͯ͘͠ΕΔ
‣ ໋ྩతઃఆී௨ͷͦ͞Μ
͟Δͦͭจ͢ΔͦΛग़ͨ͋͠ͱΒͳ͍
͓͔ΘΓ͢Δͱ͖ผ్จ͕ඞཁ
‣ એݴతઃఆΘΜͦ͜
͓ʹ͕ͦ͋Δঢ়ଶ͕͋Δ͖࢟ͦΛৗʹࢹ͍ͯ͠Δ
ͦΛ৯ͨΒࣗಈͰՃͯ͘͠ΕΔ
36
Slide 37
Slide 37 text
,VCFSOFUFTͷΠϝʔδ
‣ એݴతʹॻ͍ͨϚχϑΣετΛ
‣ LVCFDUMΛͬͯNBTUFSʹ͢ͱ
‣ ֤OPEFʹίϯςφΛσϓϩΠͨ͠Γͯ͘͠Εͯ
‣ ͦͷޙ͍͍ײ͡ʹࢹɾҡ࣋Λͯ͘͠ΕΔʔͭ
37
Kubernetes Cluster
ϚχϑΣετ
kubectl
(CLI for k8s)
= Control Plane
Data Plane
Slide 38
Slide 38 text
ͱΓ͋͑ͣͬͯΈΑ͏
38
Slide 39
Slide 39 text
39
,VCFSOFUFTΛ
ϩʔΧϧͰࢼͯ͠ΈΑ͏
Slide 40
Slide 40 text
,VCFSOFUFT༗ޮԽ
40
1SFGFSFODFTը໘
,VCFSOFUFTλϒΛબ
νΣοΫʂ
"QQMZ
ॳճ༗ޮʹͳΔ·Ͱ
΄Ͳ͔͔Γ·͢
Slide 41
Slide 41 text
,VCFSOFUFT༗ޮԽ
41
Ҏલͬͨ͜ͱ͋ΔਓҰ୴Ϧηοτ͓ͯ͘͠ͱ͍͍͔
3FTFUλϒΛબ
Ϧηοτ
Slide 42
Slide 42 text
LVCFDUMͷDPOpHઃఆ
42
# kubectlͰૢ࡞͢ΔKubernetesΫϥελʔΛdocker-for-desktopʹ
$ kubectl config user-context docker-for-desktop
# ͪΌΜͱઃఆ͞Ε͍ͯΔ͔֬ೝ
$ kubectl config current-context
docker-for-desktop
Slide 43
Slide 43 text
ಈ࡞֬ೝͱԼ४උ
43
# ಈ࡞֬ೝɻͳΜ͔͍Ζ͍Ζಈ͍ͯΔ(આ໌͋ͱͰ)
$ kubectl get pods --namespace=kube-system
NAMESPACE NAME READY STATUS RESTARTS AGE
kube-system etcd-docker-for-desktop 1/1 Running 0 1m
kube-system kube-apiserver-docker-for-desktop 1/1 Running 0 1m
kube-system kube-controller-manager-docker-for-desktop 1/1 Running 0 1m
kube-system kube-dns-86f4d74b45-xb4qh 3/3 Running 0 2m
kube-system kube-proxy-8r45p 1/1 Running 0 2m
kube-system kube-scheduler-docker-for-desktop 1/1 Running 0 1m
# docker-for-desktopͰingress͕͑ΔΑ͏Լ४උɻ͋·Γؾʹ͠ͳͯ͘OK
$ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/master/deploy/
mandatory.yaml
$ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/master/deploy/
provider/cloud-generic.yaml
Slide 44
Slide 44 text
σϓϩΠ
44
# αϯϓϧΞϓϦέʔγϣϯͷϚχϑΣετϑΝΠϧΛऔͬͯ͘Δ
$ git clone [email protected]:kubernetes/examples.git
# PCͷෛ୲ΛԼ͛ΔͨΊͪΐͬͱௐ
$ vi examples/guestbook/frontend-deployment.yaml
10ߦ replicas: 3 <- ͜ΕΛ1ʹมߋ
$ vi examples/guestbook/redis-slave-deployment.yaml
11ߦ replicas: 2 <- ͜ΕΛ1ʹมߋ
# σϓϩΠ
$ kubectl apply -f examples/guestbook/
Slide 45
Slide 45 text
ϒϥβ͔ΒΞΫηεͰ͖ΔΑ͏ʹ
45
$ cat << 'EOT' >./guestbook-ingress.yaml
apiVersion: extensions/v1beta1
kind: Ingress
metadata:
name: guestbook-ingress
spec:
rules:
- http:
paths:
- path: /
backend:
serviceName: frontend
servicePort: 80
EOT
# σϓϩΠ
$ kubectl apply -f guestbook-ingress.yaml
# ADDRESS͕localhostʹͳΔ·Ͱػ
$ kubectl get ingress
NAME HOSTS ADDRESS PORTS AGE
guestbook-ingress * localhost 80 24m
Slide 46
Slide 46 text
Ͱ͖ͨʂ
46
IUUQMPDBMIPTU
1$ͷঢ়گʹΑͬͯ͏·͘ΞΫηεͰ͖ͳ͔ͬͨΓ͢Δ͔
IUUQͩͱ͏·͍͘͘߹͋Δͱ͔
Slide 47
Slide 47 text
Կ͕ىͬͨ͜
47
Slide 48
Slide 48 text
͜Μͳͷ͕Ͱ͖ͯ·͢
48
Kubernetes Cluster
Redis-Master
Guestbook-App
gcr.io/google-samples/gb-frontend:v4
k8s.gcr.io/redis:e2e
Redis-Slave
gcr.io/google_samples/gb-redisslave:v1
localhost
Slide 49
Slide 49 text
୯७ͳΞϓϦͰ͢Ͷ
49
Kubernetes Cluster
Redis-Master
Guestbook-App
gcr.io/google-samples/gb-frontend:v4
k8s.gcr.io/redis:e2e
Redis-Slave
gcr.io/google_samples/gb-redisslave:v1
localhost
Slide 50
Slide 50 text
1PE
‣ ,VCFSOFUFTͷ࠷খσϓϩΠ୯Ґ
‣ ͭҎ্ͷίϯςφͱετϨʔδϘϦϡʔϜͷू·Γ
‣ ಉҰ1PEͷίϯςφಉҰ/PEFʹஔ͞ΕΔ
ʮಉҰ/PEFͰಈ࡞͢Δඞཁ͕͋Δ͔ʁʯ͕1PEߏͷҰͭͷج४
‣ ͭͷ1PEͷίϯςφಉ͡*1ΞυϨεͱϙʔτΛ༻͢Δ
1PEͷίϯςφؒͷ௨৴ϓϩηεؒ௨৴ͱͯ͠ߦ͏
50
Slide 51
Slide 51 text
3FQMJDB4FU
‣ ಉ༷͡ͷ1PE͕ࢦఆ͚ͨͩ͠ଘࡏ͢ΔΑ͏ੜɾཧ͢Δ
1PE͕ࢮΜͩͱ͖ࢦఆͨ͠ʹͳΔΑ͏ࣗಈճ෮ͯ͘͠ΕΔ
‣ 1PEͱ3FQMJDB4FUૄ݁߹
-BCFMͱ͍͏ϝλσʔλΛͬͯݕࡧ͍ͯ͠Δ
खಈͰ1PEͷ-BCFMΛॻ͖͑Εɺ
3FQMJDB4FU͔ΒΓͯ͠σόοά͢Δͱ͍ͬͨ͜ͱՄೳ
51
Slide 52
Slide 52 text
%FQMPZNFOU
‣ ৽͍͠όʔδϣϯͷϦϦʔεΛཧ͢ΔͨΊͷΈ
3FQMJDB4FUͷมߋΛ҆શʹөͤ͞Δੈཧ͢Δ
1PEͷεέʔϧɺίϯςφͷߋ৽ɺϩʔϧόοΫFUD
‣ ͭͷ%FQMPZNFOUઓུ
3FDSFBUF
3PMMJOH6QEBUF
‣ 3FQMJDB4FUͱ%FQMPZNFOUૄ݁߹
52
Slide 53
Slide 53 text
GSPOUFOEEFQMPZNFOUZBNM
53
apiVersion: apps/v1 # apply࣌ʹ༻͢ΔAPIͷछผɻϦιʔε(kind)ʹΑܾͬͯ·Δ
kind: Deployment # DeploymentͷϚχϑΣετ
metadata:
name: frontend # DeploymentϦιʔεͷ໊લɻʮmetadata.name + ϥϯμϜจࣈྻʯͷ໊લͰReplicaSet͕ੜ͞ΕΔ
spec:
selector:
matchLabels: # ReplicaSet͕PodΛݕࡧ͢Δͱ͖ͷLabel
app: guestbook
tier: frontend
replicas: 1 # ReplicaSet͕ੜɾཧ͢ΔPodͷ
template: # ---͔͜͜ΒPodͷఆٛ--------------------------------------------
metadata:
labels: # PodͷLabelɻReplicaSet͕ཧԼͷPodΛݕࡧ͢Δͱ͖ʹ͏
app: guestbook
tier: frontend
spec:
containers:
- name: php-redis # ίϯςφ໊
image: gcr.io/google-samples/gb-frontend:v4 # ίϯςφΠϝʔδ
resources: # ༻͢ΔCPU, Memoryͷࢦఆ
requests:
cpu: 100m
memory: 100Mi
env: # ڥม
- name: GET_HOSTS_FROM
value: dns
ports: # EXPOSE͢Δϙʔτͷࢦఆ
- containerPort: 80
Slide 54
Slide 54 text
SFEJTNBTUFSEFQMPZNFOUZBNM
54
apiVersion: apps/v1
kind: Deployment
metadata:
name: redis-master
spec:
selector:
matchLabels:
app: redis
role: master
tier: backend
replicas: 1
template:
metadata:
labels:
app: redis
role: master
tier: backend
spec:
containers:
- name: master
image: k8s.gcr.io/redis:e2e
resources:
requests:
cpu: 100m
memory: 100Mi
ports:
- containerPort: 6379
Slide 55
Slide 55 text
SFEJTTMBWFEFQMPZNFOUZBNM
55
apiVersion: apps/v1
kind: Deployment
metadata:
name: redis-slave
spec:
selector:
matchLabels:
app: redis
role: slave
tier: backend
replicas: 1
template:
metadata:
labels:
app: redis
role: slave
tier: backend
spec:
containers:
- name: slave
image: gcr.io/google_samples/gb-redisslave:v1
resources:
requests:
cpu: 100m
memory: 100Mi
env:
- name: GET_HOSTS_FROM
value: dns
ports:
- containerPort: 6379
Slide 56
Slide 56 text
4FSWJDF
‣ 1PEͷू߹ ओʹ3FQMJDB4FU
ʹର͢Δܦ࿏
αʔϏεσΟεΧόϦΛఏڙ
Ϋϥελ%/4Ͱɺ4FSWJDF໊/BNFTQBDF໊Ͱ໊લղܾՄೳʹ
ಉ͡/BNFTQBDFͳΒ4FSWJDF໊͚ͩͰ0,
‣ ͜͜Ͱ-BCFMʹΑͬͯରͷ1PE͕ݕࡧ͞ΕΔ
ରͷ1PE͕ಈతʹೖΕସΘͬͨΓͯ͠ɺ
-BCFM͍͍͑ͭͯ͞ΕҰ؏໊ͨ͠લͰΞΫηεͰ͖Δ
56
Slide 57
Slide 57 text
GSPOUFOETFSWJDFZBNM
57
apiVersion: v1
kind: Service # ServiceͷϚχϑΣετ
metadata:
name: frontend # ServiceϦιʔεͷ໊લ
labels: # Serviceʹ͚ͭΔLabel
app: guestbook
tier: frontend
spec:
type: NodePort # ServiceͷछผɻNodePortΫϥελ֎͔ΒΞΫηεͰ͖Δͭ
ports:
- port: 80 # ΞΫηεΛड͚͚Δϙʔτ
selector: # ରͷPodΛݕࡧ͢Δͱ͖ͷLabel
app: guestbook
tier: frontend
Slide 58
Slide 58 text
SFEJTNBTUFSTFSWJDFZBNM
58
apiVersion: v1
kind: Service
metadata:
name: redis-master
labels:
app: redis
role: master
tier: backend
spec:
# লུ͞Ε͍ͯΔ͚ͲtypeσϑΥϧτͷ"ClusterIP"ɻΫϥελ্ͷ෦IPΞυϨεʹServiceΛެ։
ports:
- port: 6379
targetPort: 6379
selector:
app: redis
role: master
tier: backend
Slide 59
Slide 59 text
SFEJTTMBWFTFSWJDFZBNM
59
apiVersion: v1
kind: Service
metadata:
name: redis-slave
labels:
app: redis
role: slave
tier: backend
spec:
ports:
- port: 6379
selector:
app: redis
role: slave
tier: backend
Slide 60
Slide 60 text
*OHSFTT
‣ 4FSWJDFΛΫϥελ֎ʹެ։
‣ /PEF1PSUλΠϓͷ4FSWJDFͱҧ͍ɺ
ύεϕʔεͰసૹઌͷ4FSWJDFΛΓସ͑Δͱ͍ͬͨ͜ͱՄೳ
4FSWJDF /PEF1PSU
-ϨϕϧͰͷ੍ޚ
*OHSFTT-ϨϕϧͰͷ੍ޚ
60
Slide 61
Slide 61 text
HVFTUCPPLJOHSFTTZBNM
61
apiVersion: extensions/v1beta1
kind: Ingress # IngressͷϚχϑΣετ
metadata:
name: guestbook-ingress # IngressϦιʔεͷ໊લ
spec:
rules: # ϧʔςΟϯάͷϧʔϧͷྻ
- http:
paths:
- path: /
backend: # "frontend"Serviceͷ80൪ϙʔτʹΞΫηε
serviceName: frontend
servicePort: 80
Slide 62
Slide 62 text
͜Θ͘ͳʔ͍
62
Kubernetes Cluster
Redis-Master
Guestbook-App
gcr.io/google-samples/gb-frontend:v4
k8s.gcr.io/redis:e2e
Redis-Slave
gcr.io/google_samples/gb-redisslave:v1
localhost
Slide 63
Slide 63 text
தΛ͍ͯΈΑ͏
63
Slide 64
Slide 64 text
%FQMPZNFOUΛݟͯΈΔ
64
# Deploymentৄࡉ (ը໘ʹೖΒͳ͍ͷͰखݩͰݟͯʂ)
$ kubectl describe deploy frontend
3FQMJDB4FUΛݕࡧ͢ΔͨΊͷ-BCFMηϨΫλ
kubectl get rs -l app=guestbook,tier=frontend
ͱ͍ͬͨײ͡Ͱରͷ3FQMJDB4FUΛݕࡧͰ͖Δ
# DeoloymentҰཡ ("-o wide"ৄࡉΛݟΔͨΊͷΦϓγϣϯ)
$ kubectl get deploy -o wide
NAME (ུ) SELECTOR
frontend ... app=guestbook,tier=frontend
redis-master ... app=redis,role=master,tier=backend
redis-slave ... app=redis,role=slave,tier=backend
Slide 65
Slide 65 text
3FQMJDB4FUΛݟͯΈΔ
65
# ReplicaSetҰཡ
$ kubectl get rs -o wide
NAME (ུ) SELECTOR
frontend-5c548f4769 ... app=guestbook,pod-template-hash=1710490325,tier=frontend
redis-master-55db5f7567 ... app=redis,pod-template-hash=1186193123,role=master,tier=backend
redis-slave-584c66c5b5 ... app=redis,pod-template-hash=1407227161,role=slave,tier=backend
# ReplicaSetৄࡉ (ը໘ʹೖΒͳ͍ͷͰखݩͰݟͯʂ)
$ kubectl describe rs frontend-5c548f4769
%FQMPZNFOU໊ϥϯμϜจࣈྻ 3PMMJOH6QEBUFͳͲͰಉ͡UFNQMBUFͷ1PEΛ
ཧ͢Δ3FQMJDB4FU͕ෳࠞࡏͯ͠େৎͳΑ͏ʹ
ݻ༗ͷ-BCFMΛࣗಈͰೖΕ͍ͯΔ
Slide 66
Slide 66 text
1PEΛݟͯΈΔ
66
# PodҰཡ
$ kubectl get pod -o wide
NAME READY STATUS RESTARTS AGE IP NODE
frontend-5c548f4769-xhpxz 1/1 Running 0 1d 10.1.1.65 docker-for-desktop
redis-master-55db5f7567-2n4qp 1/1 Running 0 1d 10.1.1.67 docker-for-desktop
redis-slave-584c66c5b5-z2fvj 1/1 Running 0 1d 10.1.1.66 docker-for-desktop
# Podৄࡉ (ը໘ʹೖΒͳ͍ͷͰखݩͰݟͯʂ)
# ઃఆىಈ࣌ɺঢ়ଶɺΠϕϯτ֬ೝͰ͖Δ
$ kubectl describe pod frontend-5c548f4769-xhpxz
# Podͷϩά (ը໘ʹೖΒͳ͍ͷͰखݩͰݟͯʂ)
$ kubectl logs frontend-5c548f4769-xhpxz
3FQMJDB4FU໊ϥϯμϜจࣈྻ
Slide 67
Slide 67 text
4FSWJDFΛݟͯΈΔ
67
# ServiceҰཡ
$ kubectl get svc -o wide
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE SELECTOR
frontend NodePort 10.102.204.76 80:30590/TCP 1d app=guestbook,tier=frontend
kubernetes ClusterIP 10.96.0.1 443/TCP 1d
redis-master ClusterIP 10.98.133.213 6379/TCP 1d app=redis,role=master,tier=backend
redis-slave ClusterIP 10.107.141.173 6379/TCP 1d app=redis,role=slave,tier=backend
# Serviceৄࡉ (ը໘ʹೖΒͳ͍ͷͰखݩͰݟͯʂ)
$ kubectl describe svc frontend
GSPOUFOE͕/PEF1PSUʹͳ͍ͬͯΔͷͰɺ
IUUQMPDBMIPTUͰΞΫηεͰ͖Δʢͨͩ͠-੍ޚʣ
Slide 68
Slide 68 text
*OHSFTTΛݟͯΈΔ
68
# IngressҰཡ
$ kubectl get ing
NAME HOSTS ADDRESS PORTS AGE
guestbook-ingress * localhost 80 1d
# Ingressৄࡉ (ը໘ʹೖΒͳ͍ͷͰखݩͰݟͯʂ)
$ kubectl describe ing guestbook-ingress
Slide 69
Slide 69 text
εέʔϧͤͯ͞ΈΑ͏
69
Slide 70
Slide 70 text
GSPOUFOEͷ1PEΛͭʹ૿͢
70
$ vi examples/guestbook/frontend-deployment.yaml
10ߦ replicas: 1 <- ͜ΕΛ2ʹมߋ
# σϓϩΠ
$ kubectl apply -f examples/guestbook/frontend-deployment.yaml
# ૿͑ͯΔʂ
$ kubectl get pod
NAME READY STATUS RESTARTS AGE
frontend-5c548f4769-vltkv 1/1 Running 0 15s
frontend-5c548f4769-xhpxz 1/1 Running 0 1d
redis-master-55db5f7567-2n4qp 1/1 Running 0 1d
redis-slave-584c66c5b5-z2fvj 1/1 Running 0 1d
Slide 71
Slide 71 text
ࣗಈճ෮ͤͯ͞ΈΑ͏
71
Slide 72
Slide 72 text
ҙਤతʹ1PEΛআͯ͠ΈΔ
72
# ઌ΄Ͳ૿͑ͨ2ͭΊͷPodΛআͯ͠ΈΔ
$ kubectl delete pod frontend-5c548f4769-vltkv
# ৽͍͠pod͕Ͱ͖ͯΔʂ
$ kubectl get pod
NAME READY STATUS RESTARTS AGE
frontend-5c548f4769-ns5q2 1/1 Running 0 8s
frontend-5c548f4769-xhpxz 1/1 Running 0 1d
redis-master-55db5f7567-2n4qp 1/1 Running 0 1d
redis-slave-584c66c5b5-z2fvj 1/1 Running 0 1d
Slide 73
Slide 73 text
%FQMPZNFOUͷ
σϓϩΠཧͬΓΛݟͯΈΑ͏
73
Slide 74
Slide 74 text
1PEͷઃఆΛม͑ͯΈΔ
74
# Podͷมߋ͕ى͜Βͳ͍ͱཤྺ͕ه͞Εͳ͍(εέʔϧ͡Όμϝ)ͷͰɺࢼ͠ʹ༻ϝϞϦΛม͑ͯΈΔ
$ examples/guestbook/frontend-deployment.yaml
23ߦ memory: 100Mi <- ͜ΕΛ120Miʹมߋ
$ kubectl apply -f examples/guestbook/frontend-deployment.yaml
# ঃʑʹΓସΘ͍ͬͯΔʂ
$ kubectl get pod
NAME READY STATUS RESTARTS AGE
frontend-5c548f4769-ns5q2 1/1 Running 0 11m
frontend-5c548f4769-xhpxz 1/1 Running 0 1d
frontend-68dd74b969-ztcdw 0/1 ContainerCreating 0 5s
redis-master-55db5f7567-2n4qp 1/1 Running 0 1d
redis-slave-584c66c5b5-z2fvj 1/1 Running 0 1d
$ kubectl get pod
NAME READY STATUS RESTARTS AGE
frontend-5c548f4769-xhpxz 1/1 Running 0 1d
frontend-68dd74b969-6shhj 0/1 ContainerCreating 0 6s
frontend-68dd74b969-ztcdw 1/1 Running 0 21s
redis-master-55db5f7567-2n4qp 1/1 Running 0 1d
redis-slave-584c66c5b5-z2fvj 1/1 Running 0 1d
$ kubectl get pod
NAME READY STATUS RESTARTS AGE
frontend-68dd74b969-6shhj 1/1 Running 0 26s
frontend-68dd74b969-ztcdw 1/1 Running 0 41s
redis-master-55db5f7567-2n4qp 1/1 Running 0 1d
redis-slave-584c66c5b5-z2fvj 1/1 Running 0 1d
Slide 75
Slide 75 text
ཤྺΛݟͯΈΔ
75
# REVISIONͷ͕େ͖͍΄͏͕৽͍͠
# CHANGE-CAUSEϚχϑΣετϑΝΠϧʹ"Annotation"ͱݺΕΔใΛ͚Ճ͑Δͱग़ͯ͘Δ(ࠓճؾʹ͠ͳ͍)
$ kubectl rollout history deployments frontend
deployment.extensions/frontend
REVISION CHANGE-CAUSE
1
2
# REVISION=2ͷৄࡉΛݟͯΈΔ(ը໘ʹೖΒͳ͍ͷͰखݩͰݟͯʂ)
$ kubectl rollout history deployments frontend --revision=2
Slide 76
Slide 76 text
ϩʔϧόοΫͯ͠ΈΔ
76
# 1ͭલʹΔͱ͖"--to-revision"লུͰ͖Δ
$ kubectl rollout undo deployments frontend --to-revision=1
# ͏ҰཤྺΛݟΔͱɺREVISION=1͕ফ͍͑ͯΔ
# ϩʔϧόοΫͰϦϏδϣϯੵ·ΕΔ
# ಉ༰ͷϦϏδϣϯཤྺ͔Βফ͑Δ
$ kubectl rollout history deployments frontend
deployment.extensions/frontend
REVISION CHANGE-CAUSE
2
3
Slide 77
Slide 77 text
ͱ͜ΖͰ.BTUFSͬͯ
ԿͬͯΔͷʁ
77
Slide 78
Slide 78 text
࠷ॳʹݟͨ͜ͷதʹ͋Δ
78
# ಈ࡞֬ೝɻͳΜ͔͍Ζ͍Ζಈ͍ͯΔ(આ໌͋ͱͰ)
$ kubectl get pods --namespace=kube-system
NAMESPACE NAME READY STATUS RESTARTS AGE
kube-system etcd-docker-for-desktop 1/1 Running 0 1m
kube-system kube-apiserver-docker-for-desktop 1/1 Running 0 1m
kube-system kube-controller-manager-docker-for-desktop 1/1 Running 0 1m
kube-system kube-dns-86f4d74b45-xb4qh 3/3 Running 0 2m
kube-system kube-proxy-8r45p 1/1 Running 0 2m
kube-system kube-scheduler-docker-for-desktop 1/1 Running 0 1m
Slide 79
Slide 79 text
.BTUFS1PEͷू·Γ
‣ FUDE
Ϋϥελͷ͞·͟·ͳσʔλΛอଘ͍ͯ͠ΔҰ؏ੑͷ͋ΔߴՄ༻ੑͷ,74
‣ LVCFBQJTFSWFS
Ϋϥελʹର͢Δશͯͷૢ࡞Λ࢘Δ"1*αʔόʔ
ೝূೝՄͷॲཧͳͲߦ͏
‣ LVCFTDIFEVMFS
1PEͷ/PEFͷׂΓͯΛߦ͏εέδϡʔϥʔ
1PEΛஔ͢Δ/PEFͷબߦ͏
‣ LVCFDPOUSPMMFSNBOBHFS
֤छ,VCFSOFUFTΦϒδΣΫτͷίϯτϩʔϥʔΛىಈ͠ཧ͢ΔϚωʔδϟʔ
79
Slide 80
Slide 80 text
/PEFʹ.BTUFSͱ࿈ܞ͢Δͷ͕͍Δ
‣ LVCFMFU
/PEFͷϝΠϯॲཧͰ͋Δ1PEͷىಈɾཧΛߦ͏ΤʔδΣϯτ
‣ LVCFQSPYZ
4FSWJDF͕࣋ͭԾతͳ*1ΞυϨε $MVTUFS*1
ͷΞΫηεΛ
ϧʔςΟϯά͢Δ
80
Slide 81
Slide 81 text
ͭ·Γ͜Μͳײ͡
81
Kubernetes Cluster
kubectl
(CLI for k8s)
,74 "1*αʔόʔ 1PEΛ
ϊʔυׂͯ
֤छ
ίϯτϩʔϥʔ
ϧʔςΟϯά
1PEཧ
ΤʔδΣϯτ
ͯ͢ͷૢ࡞
APIαʔόʔܦ༝
Slide 82
Slide 82 text
ϩʔΧϧͰ༡Ϳͷ͜͜·Ͱ✋
82
Slide 83
Slide 83 text
HVFTUCPPLΞϓϦέʔγϣϯΛআ
83
# guestbookΞϓϦέʔγϣϯΛআ
$ kubectl delete -f examples/guestbook/
# ͠Β͘͢Δͱআ͞ΕΔ
$ kubectl get pod
No resources found.
Slide 84
Slide 84 text
,VCFSOFUFTແޮԽ
84
1SFGFSFODFTը໘ ,VCFSOFUFTλϒΛબ
νΣοΫΛ֎͢
"QQMZ
3FTFUλϒΛબ
ҰԠϦηοτ
Slide 85
Slide 85 text
85
&,4ͰΫϥελΛ࡞ͬͯΈΑ͏
Slide 86
Slide 86 text
&,4ͬͯͲΜͳαʔϏεʁ
86
Kubernetes Cluster
ϚχϑΣετ
kubectl
(CLI for k8s)
= Control Plane
Data Plane
͜ΕͷϚωʔδυαʔϏε
Slide 87
Slide 87 text
&,4ͬͯͲΜͳαʔϏεʁ
‣ ෳ";ͰNBTUFSΛߏ࣮ͯ͠ߦ
‣ NBTUFSͷࢹɾࣗಈճ෮
‣ ࣗಈΞοϓάϨʔυɾύονద༻
‣ ଞͷ"84αʔϏεͱͷ౷߹
‣ %BUB1MBOFʢ&$ʣࣗલͰ༻ҙ͢Δඞཁ͕͋Δ
‣ ͬ͘͟Γඅ༻ײ݄ ݱࡏɾ౦ژϦʔδϣϯ&$අ༻ผ్
87
Slide 88
Slide 88 text
&,4αʔϏεϩʔϧΛ࡞
88
$ cat << 'EOT' >./eks_iam_role-trust-policy.json
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"Service": "eks.amazonaws.com"
},
"Action": "sts:AssumeRole"
}
]
}
EOT
$ aws iam create-role --role-name eksServiceRole --assume-role-policy-document file://
eks_iam_role-trust-policy.json
$ aws iam attach-role-policy --role-name eksServiceRole --policy-arn "arn:aws:iam::aws:policy/
AmazonEKSClusterPolicy"
$ aws iam attach-role-policy --role-name eksServiceRole --policy-arn "arn:aws:iam::aws:policy/
AmazonEKSServicePolicy"
$ export EKS_SERVICE_ROLE=`aws iam get-role --role-name eksServiceRole2 --query "Role.Arn" --
output text`
Slide 89
Slide 89 text
υΩϡϝϯτʹԊͬͯߏஙͯ͠ΈΑ͏
‣ https://docs.aws.amazon.com/ja_jp/eks/latest/userguide/getting-
started.html
‣ ʜͱݴ͍ͭͭࠓճखॱΛ֬ೝ͢Δ͚ͩ
ຊདྷͲΜͳखॱ͕ඞཁͳͷ͔͓ͬͯ͘ͱ͍͍
ͬͱ͍͍Γํ͕͋ΔͷͰ࣮ࡍʹΔͷ͕͍࣌ؒͬͨͳ͍
‣ ڵຯ͕͋ΕͬͯΈͯ
89
Slide 90
Slide 90 text
$GOͰ71$·ΘΓΛ࡞
90
$ aws cloudformation create-stack --stack-name eks-vpc --template-url https://amazon-eks.s3-us-
west-2.amazonaws.com/cloudformation/2018-11-07/amazon-eks-vpc-sample.yaml
$ export SECURITY_GROUPS=`aws cloudformation describe-stacks --stack-name eks-vpc --query
"Stacks[0].Outputs[?OutputKey=='SecurityGroups'].OutputValue | [0]" --output text`
$ export VPC_ID=`aws cloudformation describe-stacks --stack-name eks-vpc --query
"Stacks[0].Outputs[?OutputKey=='VpcId'].OutputValue | [0]" --output text`
$ export SUBNET_IDS=`aws cloudformation describe-stacks --stack-name eks-vpc --query
"Stacks[0].Outputs[?OutputKey=='SubnetIds'].OutputValue | [0]" --output text`
Slide 91
Slide 91 text
$GOͰ71$·ΘΓΛ࡞
91
AWS Cloud
VPC
192.168.0.0/16
ap-northeast-1a ap-northeast-1c ap-northeast-1d
Internet Gateway
Subnet01 Subnet02 Subnet03
192.168.64.0/18 192.168.128.0/18 192.168.192.0/18
ap-northeast-1
Slide 92
Slide 92 text
&,4$MVTUFSΛ࡞
92
$ aws eks create-cluster --name eks-handson --role-arn $EKS_SERVICE_ROLE --resources-vpc-config
subnetIds=$SUBNET_IDS,securityGroupIds=$SECURITY_GROUPS
# CREATING -> ACTIVEʹͳͬͨΒྃ(8͙Β͍)
$ aws eks describe-cluster --name eks-handson --query cluster.status
Slide 93
Slide 93 text
&,4$MVTUFSΛ࡞
93
AWS Cloud
VPC
192.168.0.0/16
ap-northeast-1a ap-northeast-1c ap-northeast-1d
Internet Gateway
Subnet01 Subnet02 Subnet03
192.168.64.0/18 192.168.128.0/18 192.168.192.0/18
ap-northeast-1
EKS
Slide 94
Slide 94 text
LVCFDUMͷ&,4༻DPOpHϑΝΠϧΛ࡞
94
$ aws eks update-kubeconfig --name eks-handson
# ಈ࡞֬ೝ
$ kubectl get all
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
service/kubernetes ClusterIP 10.100.0.1 443/TCP 1h
Slide 95
Slide 95 text
$GOͰ/PEFΛ࡞
95
$ aws cloudformation create-stack --stack-name eks-handson-workernodes --template-url https://
amazon-eks.s3-us-west-2.amazonaws.com/cloudformation/2018-11-07/amazon-eks-nodegroup.yaml --
parameters ParameterKey=KeyName,ParameterValue=k_mohri
ParameterKey=NodeImageId,ParameterValue=ami-07fdc9272ce5b0ce5
ParameterKey=NodeInstanceType,ParameterValue=t2.small
ParameterKey=NodeAutoScalingGroupMinSize,ParameterValue=2
ParameterKey=NodeAutoScalingGroupMaxSize,ParameterValue=3
ParameterKey=NodeVolumeSize,ParameterValue=10 ParameterKey=ClusterName,ParameterValue=eks-
handson ParameterKey=NodeGroupName,ParameterValue=eks-handson-node-group
ParameterKey=ClusterControlPlaneSecurityGroup,ParameterValue=$SECURITY_GROUPS
ParameterKey=VpcId,ParameterValue=$VPC_ID ParameterKey=Subnets,ParameterValue='$SUBNET_IDS' --
capabilities CAPABILITY_IAM
/PEF*NBHF*E͜͜Λࢀর
IUUQTEPDTBXTBNB[PODPNFLTMBUFTUVTFSHVJEFFLTPQUJNJ[FEBNJIUNM
ຊޠ൛ߋ৽͞Ε͍ͯͳ͍ͷͰҙ
Slide 96
Slide 96 text
$GOͰ/PEFΛ࡞
96
AWS Cloud
VPC
192.168.0.0/16
ap-northeast-1a ap-northeast-1c ap-northeast-1d
Internet Gateway
Subnet01 Subnet02 Subnet03
192.168.64.0/18 192.168.128.0/18 192.168.192.0/18
ap-northeast-1
EKS
Auto Scaling Group
Slide 97
Slide 97 text
/PEFͱ&,4Λ݁߹͢Δ
97
# ΠϯελϯεϩʔϧΛऔಘ
$ aws cloudformation describe-stacks --stack-name eks-handson-workernodes --query
"Stacks[0].Outputs[?OutputKey=='NodeInstanceRole'].OutputValue | [0]" --output text
# EKSͱNodeΛ݁߹͢ΔͨΊͷConfigMapΛ࡞
$ curl -O https://amazon-eks.s3-us-west-2.amazonaws.com/cloudformation/2018-11-07/aws-auth-
cm.yaml
$ vi aws-auth-cm.yaml
apiVersion: v1
kind: ConfigMap
metadata:
name: aws-auth
namespace: kube-system
data:
mapRoles: |
- rolearn: <͜͜ʹΠϯελϯεϩʔϧΛೖΕΔ>
username: system:node:{{EC2PrivateDNSName}}
groups:
- system:bootstrappers
- system:nodes
Slide 98
Slide 98 text
/PEFͱ&,4Λ݁߹͢Δ
98
# ConfigMapΛద༻
$ kubectl apply -f aws-auth-cm.yaml
# ͠Β͘͢ΔͱNode͕ೝࣝ͞ΕΔ
$ kubectl get nodes
NAME STATUS ROLES AGE VERSION
ip-192-168-103-86.ap-northeast-1.compute.internal Ready 24s v1.11.5
ip-192-168-183-21.ap-northeast-1.compute.internal Ready 27s v1.11.5
ip-192-168-247-164.ap-northeast-1.compute.internal Ready 22s v1.11.5
Slide 99
Slide 99 text
/PEFͱ&,4Λ݁߹͢Δ
99
AWS Cloud
VPC
192.168.0.0/16
ap-northeast-1a ap-northeast-1c ap-northeast-1d
Internet Gateway
Subnet01 Subnet02 Subnet03
192.168.64.0/18 192.168.128.0/18 192.168.192.0/18
ap-northeast-1
EKS
Auto Scaling Group
Slide 100
Slide 100 text
$MVTUFS͕Ͱ͖ͨʂ
100
Kubernetes Cluster
Data Plane
Slide 101
Slide 101 text
αϯϓϧΞϓϦΛσϓϩΠ͢Δ
101
# ҰมߋΛͱʹ͢
$ cd example
$ cd git reset --hard
$ cd ../
# frontend-serviceͷλΠϓΛLoadBalancerʹมߋ
# Ϋϥυͷϩʔυόϥϯαʔ(͜͜ͰELB)ͱ࿈ܞ͢ΔλΠϓ
$ vi examples/guestbook/frontend-service.yaml
9-13ߦ
# comment or delete the following line if you want to use a LoadBalancer
type: NodePort <- ͜͜ΛίϝϯτΞτ
# if your cluster supports it, uncomment the following to automatically create
# an external load-balanced IP for the frontend service.
# type: LoadBalancer <- ͜͜ΛΞϯίϝϯτ
# apply!
$ kubectl apply -f examples/guestbook/
Slide 102
Slide 102 text
αϯϓϧΞϓϦΛσϓϩΠ͢Δ
102
# ͠Β͘͢Δͱߏஙྃ
$ kubectl get all
NAME READY STATUS RESTARTS AGE
pod/frontend-56f7975f44-2vtbr 1/1 Running 0 8s
pod/frontend-56f7975f44-j25zn 1/1 Running 0 8s
pod/frontend-56f7975f44-mss7q 1/1 Running 0 8s
pod/redis-master-6b464554c8-wrjrp 1/1 Running 0 8s
pod/redis-slave-b58dc4644-ft2fd 1/1 Running 0 7s
pod/redis-slave-b58dc4644-p59fk 1/1 Running 0 7s
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
service/frontend LoadBalancer 10.100.61.11 xxxxxx.ap-northeast-1.elb.amazonaws.com 80:31673/TCP 8s
service/kubernetes ClusterIP 10.100.0.1 443/TCP 23m
service/redis-master ClusterIP 10.100.137.217 6379/TCP 7s
service/redis-slave ClusterIP 10.100.217.57 6379/TCP 7s
NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE
deployment.apps/frontend 3 3 3 3 8s
deployment.apps/redis-master 1 1 1 1 8s
deployment.apps/redis-slave 2 2 2 2 7s
NAME DESIRED CURRENT READY AGE
replicaset.apps/frontend-56f7975f44 3 3 3 8s
replicaset.apps/redis-master-6b464554c8 1 1 1 8s
replicaset.apps/redis-slave-b58dc4644 2 2 2 7s
http://xxxxxx.ap-northeast-1.elb.amazonaws.comʹΞΫηεʂ
Slide 103
Slide 103 text
ΖΖআ
103
# Cluster্ʹߏஙͨ͠ΖΖΛআ
$ kubectl delete -f examples/guestbook/
# ͠Β͘͢Δͱݩ௨Γ
$ kubectl get all
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
service/kubernetes ClusterIP 10.100.0.1 443/TCP 1h
# stack, EKS ClusterΛআ
$ aws cloudformation delete-stack --stack-name eks-handson-workernodes
$ aws eks delete-cluster --name eks-handson
$ aws cloudformation delete-stack --stack-name eks-vpc
Slide 104
Slide 104 text
LVCFDUMͷίϯςΩετͷΓସ͑ɾআ
104
# ίϯςΩετҰཡ
$ kubectl config get-contexts
CURRENT NAME CLUSTER AUTHINFO NAMESPACE
* arn:aws:...:cluster/eks-handson arn:aws:...:cluster/eks-handson arn:aws:...:cluster/eks-handson
docker-for-desktop docker-for-desktop-cluster docker-for-desktop
# ίϯςΩετΛdocker-for-desktopʹ͢
$ kubectl config use-context docker-for-desktop
# EKSͷίϯςΩετΛআ
$ kubectl config delete-context arn:aws:...:cluster/eks-handson
Slide 105
Slide 105 text
ΊΜͲ͗͘͢͞ͳ͍ʁ
105
Slide 106
Slide 106 text
͏ͪΐͬͱ͏·͍Γํ
‣ FLTDUM ඇެࣜɾσϑΝΫτελϯμʔυ
https://eksctl.io/
ίϚϯυҰͭͰΫϥελߏங
‣ ΫΠοΫελʔτ ެࣜɾ࠷ۙग़ͨ
https://aws.amazon.com/jp/quickstart/architecture/amazon-eks/
$GOΛͬͯΫϥελߏங
ϕετϓϥΫςΟεʹै͍ͬͯΔͷͰ
݁ߏ߽՚ͳߏ
106
Slide 107
Slide 107 text
107
FLTDUMΛͬͯΈΑ͏
Slide 108
Slide 108 text
FLTDUMͱʁ
‣ ίϚϯυҰͭͰ&,4ͷ$MVTUFS͕Ͱ͖ͪΌ͏πʔϧ
‣ $GOͷςϯϓϨʔτΛࣗಈੜͯ͠ߏஙͯ͠Δ
‣ OPEFͷΦʔτεέʔϦϯάͳͲɺศརͳػೳ
‣ ͱ͍͑·ͩൃల్্
‣ ͝ཡͷͱ͓ΓHPͰͰ͖ͯ·͢
108
Slide 109
Slide 109 text
ͬͯΈΑ͏ʂ
‣ ͜Ε͚ͩʂ
‣ ͦͷଞΦϓγϣϯϔϧϓΛࢀর
109
$ eksctl create cluster \
--name eksctl-handson \
--region ap-northeast-1 \
--nodes 3 \
--nodes-min 3 \
--nodes-max 3 \
--node-type t2.medium \
--ssh-public-key <ΩʔϖΞ໊>
$ eksctl create cluster -h
˞ͨͩ͠ߏஙྃ·Ͱ͙Β͍͔͔Γ·͢ʜ
˞BQOPSUIFBTUC͕બͰ͖Δݹ͍"84ΞΧϯτɺ";ࢦఆඞཁ
Slide 110
Slide 110 text
͖ͬ͞ͷͱ΄΅ಉ͡ͷ͕Ͱ͖Δ
110
AWS Cloud
VPC
ap-northeast-1a ap-northeast-1c ap-northeast-1d
Internet Gateway
PublicSubnet01 PublicSubnet02 PublicSubnet03
ap-northeast-1
EKS
Auto Scaling Group
NAT Gateway
ΦϓγϣϯʹΑͬͯ
PrivateSubnetʹNodeΛ
ஔՄೳͳͷͰɺ
ͦͷͱ͖༻ʁ
PrivateSubnet01 PrivateSubnet02 PrivateSubnet03
Slide 111
Slide 111 text
ͱΓ͋͑ͣσϓϩΠ͠Α͏
111
Slide 112
Slide 112 text
αϯϓϧΞϓϦΛσϓϩΠ͢Δ
112
# ҰมߋΛͱʹ͢
$ cd examples
$ git reset --hard
$ cd ../
# frontend-serviceͷλΠϓΛLoadBalancerʹมߋ
# Ϋϥυͷϩʔυόϥϯαʔ(͜͜ͰELB)ͱ࿈ܞ͢ΔλΠϓ
$ vi examples/guestbook/frontend-service.yaml
9-13ߦ
# comment or delete the following line if you want to use a LoadBalancer
type: NodePort <- ͜͜ΛίϝϯτΞτ
# if your cluster supports it, uncomment the following to automatically create
# an external load-balanced IP for the frontend service.
# type: LoadBalancer <- ͜͜ΛΞϯίϝϯτ
# apply!
$ kubectl apply -f examples/guestbook/
Slide 113
Slide 113 text
αϯϓϧΞϓϦΛσϓϩΠ͢Δ
113
# ͠Β͘͢Δͱߏஙྃ
$ kubectl get all
NAME READY STATUS RESTARTS AGE
pod/frontend-56f7975f44-2vtbr 1/1 Running 0 8s
pod/frontend-56f7975f44-j25zn 1/1 Running 0 8s
pod/frontend-56f7975f44-mss7q 1/1 Running 0 8s
pod/redis-master-6b464554c8-wrjrp 1/1 Running 0 8s
pod/redis-slave-b58dc4644-ft2fd 1/1 Running 0 7s
pod/redis-slave-b58dc4644-p59fk 1/1 Running 0 7s
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
service/frontend LoadBalancer 10.100.61.11 xxxxxx.ap-northeast-1.elb.amazonaws.com 80:31673/TCP 8s
service/kubernetes ClusterIP 10.100.0.1 443/TCP 23m
service/redis-master ClusterIP 10.100.137.217 6379/TCP 7s
service/redis-slave ClusterIP 10.100.217.57 6379/TCP 7s
NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE
deployment.apps/frontend 3 3 3 3 8s
deployment.apps/redis-master 1 1 1 1 8s
deployment.apps/redis-slave 2 2 2 2 7s
NAME DESIRED CURRENT READY AGE
replicaset.apps/frontend-56f7975f44 3 3 3 8s
replicaset.apps/redis-master-6b464554c8 1 1 1 8s
replicaset.apps/redis-slave-b58dc4644 2 2 2 7s
http://xxxxxx.ap-northeast-1.elb.amazonaws.comʹΞΫηεʂ
Slide 114
Slide 114 text
μογϡϘʔυΛ
Πϯετʔϧͯ͠ΈΑ͏
114
Slide 115
Slide 115 text
μογϡϘʔυͷΠϯετʔϧ
115
# μογϡϘʔυ༻ͷPodΛapply
$ kubectl apply -f https://raw.githubusercontent.com/kubernetes/dashboard/v1.10.1/src/deploy/
recommended/kubernetes-dashboard.yaml
$ μογϡϘʔυʹϩάΠϯ͢ΔͨΊͷτʔΫϯΛऔಘ
$ aws-iam-authenticator token -i eksctl-handson | jq -r '.status.token'
# ϓϩΩγܦ༝ͰμογϡϘʔυʹΞΫηε
$ kubectl proxy --port=8000 --address='0.0.0.0' --disable-filter=true
http://localhost:8000/api/v1/namespaces/kube-system/services/https:kubernetes-dashboard:/proxy/
͜͜ʹτʔΫϯΛೖྗͯ͠
αΠϯΠϯ
Slide 116
Slide 116 text
͜Μͳײ͡
116
Slide 117
Slide 117 text
ϩάΛऩूͯ͠ΈΑ͏
117
Slide 118
Slide 118 text
,VCFSOFUFTͷϩάΛ$MPVE8BUDI-PHT
‣ %PDLFSίϯςφͰɺඪ४ग़ྗ͕ϩάͱͯ͠ѻΘΕΔ
‣ ϩάσϑΥϧτͰKTPOܕࣜͷϑΝΠϧʹͳΔ
‣ ֤/PEFʹqVFOUEͷ1PEΛஔ͖ɺ/PEFͷ1PE͕ग़ྗͨ͠ϩάϑΝΠϧΛऩूͯ͠
$MPVE8BUDIʹૹΔ
118
CloudWatchLogs
Slide 119
Slide 119 text
,VCFSOFUFTͷϩάΛ$MPVE8BUDI-PHT
‣ %PDLFSίϯςφͰɺඪ४ग़ྗ͕ϩάͱͯ͠ѻΘΕΔ
‣ ϩάσϑΥϧτͰKTPOܕࣜͷϑΝΠϧʹͳΔ
‣ ֤/PEFʹqVFOUEͷ1PEΛஔ͖ɺ/PEFͷ1PE͕ग़ྗͨ͠ϩάϑΝΠϧΛऩूͯ͠
$MPVE8BUDIʹૹΔ
119
CloudWatchLogs
Ͳ͏ͬͯʜʁ
Slide 120
Slide 120 text
%BFNPO4FU
‣ Ϋϥελͷ֤/PEFʹରͯ͠ඞͣͭஔ͞ΕΔ1PEΛཧ
֤/PEFͷΤʔδΣϯτͳͲͷ༻్ʹ
120
CloudWatchLogs
Slide 121
Slide 121 text
*".3PMFͷ͓ੈ
121
# NodeͷEC2ʹඥ͍͍ͯΔIAM Roleͷ໊લΛऔಘ
$ INSTANCE_PROFILE_NAME=$(aws iam list-instance-profiles | jq -r '.InstanceProfiles[].InstanceProfileName' | grep
nodegroup)
$ ROLE_NAME=$(aws iam get-instance-profile --instance-profile-name $INSTANCE_PROFILE_NAME | jq -r
'.InstanceProfile.Roles[] | .RoleName')
# IAM Roleʹϩάऩू༻ͷΠϯϥΠϯϙϦγʔΛՃ
$ cat << "EoF" > ./k8s-logs-policy.json
{
"Version": "2012-10-17",
"Statement": [
{
"Action": [
"logs:DescribeLogGroups",
"logs:DescribeLogStreams",
"logs:CreateLogGroup",
"logs:CreateLogStream",
"logs:PutLogEvents"
],
"Resource": "*",
"Effect": "Allow"
}
]
}
EoF
$ aws iam put-role-policy --role-name $ROLE_NAME --policy-name Logs-Policy-For-Worker --policy-document file://k8s-
logs-policy.json
Slide 122
Slide 122 text
qVFOUEΛσϓϩΠ
122
# ϚχϑΣετϑΝΠϧΛऔಘ
$ wget https://eksworkshop.com/logging/deploy.files/fluentd.yml
# Ϋϥελ໊Λมߋ
$ vi fluentd.yml
197ߦ
value: us-east-1 <- ap-northeast-1 ʹมߋ
199ߦ
value: eksworkshop-eksctl <- eksctl-handson ʹมߋ
# σϓϩΠ
$ kubectl apply -f fluentd.yml
Slide 123
Slide 123 text
$MPVE8BUDIͷϩάʹ্͕ͬͯ͘Δ
123
͋ͱ&MBTUJDTFBSDI4FSWJDFʹྲྀ͢ͳΓԿͳΓͱ
Slide 124
Slide 124 text
qVFOUEZNM
124
(ུ)
---
apiVersion: extensions/v1beta1
kind: DaemonSet # DaemonSetͷϚχϑΣετ
metadata:
name: fluentd-cloudwatch
namespace: kube-system
labels:
k8s-app: fluentd-cloudwatch
spec:
template: # ---͔͜͜ΒPodͷఆٛ--------------------------------------------
metadata:
labels:
k8s-app: fluentd-cloudwatch
spec:
serviceAccountName: fluentd
terminationGracePeriodSeconds: 30
# Because the image's entrypoint requires to write on /fluentd/etc but we mount configmap there which is read-only,
# this initContainers workaround or other is needed.
# See https://github.com/fluent/fluentd-kubernetes-daemonset/issues/90
initContainers:
- name: copy-fluentd-config
image: busybox
command: ['sh', '-c', 'cp /config-volume/..data/* /fluentd/etc']
volumeMounts:
- name: config-volume
mountPath: /config-volume
- name: fluentdconf
mountPath: /fluentd/etc
ʢུʣ
Slide 125
Slide 125 text
)FMNΛͬͯΈΑ͏⛑
125
Slide 126
Slide 126 text
)FMN
‣ ,VCFSOFUFT༻ͷύοέʔδཧπʔϧ
ύοέʔδ$IBSUͱݺΕɺϚχϑΣετϑΝΠϧͷςϯϓϨʔτؚ͕·ΕΔ
5JMMFSͱݺΕΔαʔόʔΞϓϦέʔγϣϯ ͜Ε1PE
Λհͯ͠ΫϥελʹύοέʔδΛΠϯετʔϧ
‣ ͪͳΈʹIFMNדͰͳ͘ધͷɺDIBSUւਤɺUJMMFSฑͷҙຯ
126
helm (CLI)
Tiller
Repository
Chart A
Chart B
Chart C
Manifest Files
Custom Values
Slide 127
Slide 127 text
3PMF#BTFE"DDFTT$POUSPM 3#"$
‣ ,VCFSOFUFTͷݖݶ੍ޚͷΈ
,VCFSOFUFTͷϦιʔεͷΞΫηεΛϩʔϧʹΑ੍ͬͯޚ
ϢʔβʔͱϩʔϧΛ#JOEJOHʹΑͬͯඥ͚Δ͜ͱʹΑͬͯػೳ͢Δ
‣ Ϣʔβʔछผ
ೝূϢʔβʔɾάϧʔϓΫϥελ֎͔Β,VCFSOFUFT"1*Λૢ࡞͢ΔͨΊͷϢʔβʔ
4FSWJDF"DDPVOU1PE͕,VCFSOFUFT"1*Λૢ࡞͢ΔͨΊͷϢʔβʔ
‣ ϩʔϧछผ
3PMFࢦఆͷOBNFTQBDFͰͷΈ༗ޮ
$MVTUFS3PMFΫϥελશମͰ༗ޮ
‣ )FMNʹ3#"$Λ༗ޮʹͰ͖Δ$IBSU͕
ଟ͘ཧ͞Ε͍ͯΔ
127
ServiceAccount
認証ユーザーグループ
認証ユーザー
RoleBinding
ClusterRoleBinding
Role
ClusterRole
Slide 128
Slide 128 text
)FMNͷΠϯετʔϧ
‣ https://helm.sh/docs/using_helm/#installing-helm
‣ .BDͷ߹
CSFXJOTUBMMLVCFSOFUFTIFMN
128
Slide 129
Slide 129 text
)FMNͷηοτΞοϓ
129
# Tiller༻ͷαʔϏεΞΧϯτͷϚχϑΣετϑΝΠϧΛ࡞
# "cluster-admin"σϑΥϧτͰଘࡏ͢ΔClusterRole
$ cat < tiller_rbac.yaml
---
apiVersion: v1
kind: ServiceAccount
metadata:
name: tiller
namespace: kube-system
---
apiVersion: rbac.authorization.k8s.io/v1beta1
kind: ClusterRoleBinding
metadata:
name: tiller
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: cluster-admin
subjects:
- kind: ServiceAccount
name: tiller
namespace: kube-system
EoF
# Tiller༻ͷαʔϏεΞΧϯτΛ࡞
$ kubectl apply -f tiller_rbac.yaml
# TillerͷαʔϏεΞΧϯτΛࢦఆͯ͠ΫϥελʹHelmΛಋೖ
# ͜ΕͰTillerͷPod͕kube-systemωʔϜεϖʔεʹσϓϩΠ͞ΕΔ
$ helm init --service-account tiller
Slide 130
Slide 130 text
)FMNͰ+FOLJOTΛΠϯετʔϧ
130
# CustomValueϑΝΠϧΛ࡞
# ύϥϝʔλʔৄࡉ "helm inspect values stable/jenkins" Ͱ֬ೝ
$ cat < jenkins.yaml
rbac:
create: true
master:
service_port: 8080
persistence:
size: 1Gi
EoF
# JenkinsΛΠϯετʔϧ
$ helm install -f jenkins.yaml --name jenkins stable/jenkins
# ͠Β͘͢ΔͱσϓϩΠྃ(2-3͙Β͍)
$ kubectl get all
NAME READY STATUS RESTARTS AGE
pod/jenkins-f65b9477-89s69 1/1 Running 0 33m
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
service/jenkins LoadBalancer 10.100.22.208 xxxxxx.ap-northeast-1.elb.amazonaws.com 8081:30196/TCP 33m
service/jenkins-agent ClusterIP 10.100.58.26 50000/TCP 33m
service/kubernetes ClusterIP 10.100.0.1 443/TCP 2h
NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE
deployment.apps/jenkins 1 1 1 1 33m
NAME DESIRED CURRENT READY AGE
replicaset.apps/jenkins-f65b9477 1 1 1 33m
Slide 131
Slide 131 text
Πϯετʔϧͨ͠+FOLJOTʹϩάΠϯ
131
# ύεϫʔυऔಘ
$ printf $(kubectl get secret --namespace default jenkins -o jsonpath="{.data.jenkins-admin-password}" | base64 --decode);echo
XXXXXXXX
# ϩάΠϯURLऔಘ
$ export SERVICE_IP=$(kubectl get svc --namespace default jenkins --template "{{ range (index .status.loadBalancer.ingress 0) }}
{{ . }}{{ end }}")
$ echo http://$SERVICE_IP:8080/login
http://xxxxxx.ap-northeast-1.elb.amazonaws.com:8080/login
VTFSOBNFBENJO
QBTTXPSEίϚϯυͰऔಘͨͭ͠
Slide 132
Slide 132 text
+FOLJOTΛΞϯΠϯετʔϧ
132
# JenkinsΛΞϯΠϯετʔϧ
# --purgeΦϓγϣϯɻ͚ͳ͍߹ɺϦϏδϣϯͷه͕ΓɺϩʔϧόοΫ͕Ͱ͖Δ
$ helm delete --purge jenkins
Slide 133
Slide 133 text
ࢹͰ͖ΔΑ͏ʹͯ͠ΈΑ͏2
133
Slide 134
Slide 134 text
1SPNFUIFVT(SBGBOB
‣ 1SPNFUIFVT
044ͷϦιʔεࢹπʔϧ
ಋೖ͕Χϯλϯɺ͍͍ײ͡ʹ௨͘ΕΔɺߴੑೳͳͲͰਓؾ͕ߴ͍
ͨͩɺσʔλͷՄࢹԽ͕ຊۀͰͳ͍ͷͰྗෆ
‣ (SBGBOB
044ͷϩάɾσʔλՄࢹԽπʔϧ
1SPNFUIFVT͕ऩूͨ͠σʔλΛ͔ͬ͜Α͘දࣔͰ͖Δ
134
Slide 135
Slide 135 text
)FMNͰ1SPNFUIFVTΛΠϯετʔϧ
135
# CustomValueϑΝΠϧΛ࡞
# ύϥϝʔλʔৄࡉ "helm inspect values stable/prometheus" Ͱ֬ೝ
$ cat < prometheus.yaml
alertmanager:
persistentVolume:
size: 1Gi
storageClass: "gp2"
server:
persistentVolume:
size: 1Gi
storageClass: "gp2"
retention: "12h"
pushgateway:
enabled: false
EoF
# PrometheusΛΠϯετʔϧ
$ kubectl create namespace prometheus
$ helm install -f prometheus.yaml --name prometheus --namespace prometheus stable/prometheus
# σϓϩΠ͕ྃͨ͠ΒΞΫηεͯ͠ΈΔʢ্ཱ͕ͪΔ·Ͱ͔͔Δʣ
# URLͷऔಘίϚϯυ͕Α͘มΘΔͷͰɺhelm installͰग़͖ͯͨϩάͷํΛࢀߟʹͨ͠΄͏͕͍͍͔
$ export POD_NAME=$(kubectl get pods --namespace prometheus -l "app=prometheus,component=server" -o
jsonpath="{.items[0].metadata.name}")
$ kubectl --namespace prometheus port-forward $POD_NAME 9090
Slide 136
Slide 136 text
1SPNFUIFVTʹΞΫηε
136
http://localhost:9090/targets
Slide 137
Slide 137 text
)FMNͰ(SBGBOBΛΠϯετʔϧ
137
# CustomValueϑΝΠϧΛ࡞
# ύϥϝʔλʔৄࡉ "helm inspect values stable/grafana" Ͱ֬ೝ
$ cat < grafana.yaml
persistence:
storageClassName: gp2
adminPassword: password
datasources:
datasources.yaml:
apiVersion: 1
datasources:
- name: Prometheus
type: prometheus
url: "http://prometheus-server.prometheus.svc.cluster.local"
access: proxy
isDefault: true
service:
type: LoadBalancer
EoF
# GrafanaΛΠϯετʔϧ
$ kubectl create namespace grafana
$ helm install -f grafana.yaml --name grafana --namespace grafana stable/grafana
# σϓϩΠ͕ྃͨ͠ΒΞΫηεͯ͠ΈΔʢ্ཱ͕ͪΔ·Ͱ͔͔Δʣ
# URLͷऔಘίϚϯυ͕Α͘มΘΔͷͰɺhelm installͰग़͖ͯͨϩάͷํΛࢀߟʹͨ͠΄͏͕͍͍͔
$ export ELB=$(kubectl get svc -n grafana grafana -o jsonpath='{.status.loadBalancer.ingress[0].hostname}')
$ echo "http://$ELB"
http://xxxxxx.ap-northeast-1.elb.amazonaws.com
Slide 138
Slide 138 text
(SBGBOBʹΞΫηε
138
VTFSOBNFBENJO
QBTTXPSEQBTTXPSE HSBGBOBZBNMʹॻ͍ͨ
Slide 139
Slide 139 text
μογϡϘʔυͷ*%Λೖྗ
139
Λೖྗ ެ։͞Ε͍ͯΔςϯϓϨʔτͷ൪߸
ΫϦοΫ
Slide 140
Slide 140 text
Φϓγϣϯઃఆ
140
ΫϦοΫ
1SPNFUIFVTΛબ
Slide 141
Slide 141 text
ͦΕΒ͍͠ͷ͕ग़͖ͯͨʂ
141
Slide 142
Slide 142 text
ͳΒ͜Μͳײ͡
142
Slide 143
Slide 143 text
͓ย͚
143
Slide 144
Slide 144 text
͓ย͚
144
# PrometheusͱGrafanaΛআ
# EBSΛ࡞͍ͬͯΔͷͰɺ͍͖ͳΓeksctlͰΫϥελΛআ͢ΔͱEBS͕ͬͯ͠·͏
$ helm delete --purge prometheus
$ helm delete --purge grafana
# fluentdΛআ
$ kubectl delete -f fluentd.yml
# μογϡϘʔυΛআ
$ kubectl delete -f https://raw.githubusercontent.com/kubernetes/dashboard/v1.10.1/src/deploy/recommended/
kubernetes-dashboard.yaml
# guestbookΞϓϦΛআ
$ kubectl delete -f examples/guestbook/
# ϩάऩू༻ʹIAM Roleʹ͚ͬͭͨ͘PolicyΛ֎͢
# $ROLE_NAME121ϖʔδͰઃఆ͞Ε͍ͯΔ
# ֎͓͔ͯ͠ͳ͍ͱeksctlͰΫϥελΛআ͢Δͱ͖ʹcloudformationʹౖΒΕΔ
$ aws iam delete-role-policy --role-name $ROLE_NAME --policy-name Logs-Policy-For-Worker
# eksctlͰΫϥελΛআ
# ్த·Ͱ͔͠ݟͯ͘Εͳ͍ͷͰɺAWSίϯιʔϧͰຊʹআ͞Ε͔ͨ֬ೝͨ͠΄͏͕͍͍
$ eksctl delete cluster --name eksctl-handson
Slide 145
Slide 145 text
145
͓·͚
(,&ͰΫϥελΛ࡞ͬͯΈΑ͏
Slide 146
Slide 146 text
(,&ͰΫϥελΛ࡞Δ
‣ ͬͺΓຊՈݟ͓͔ͯͳ͍ͱɺͱ͍͏͜ͱͰͪΐͬͱ͚ͩ
‣ $-*ϓϩδΣΫτͷઃఆऴΘ͍ͬͯΔલఏ
146
Slide 147
Slide 147 text
(,&ͰΫϥελΛ࡞Δ
147
# ίϚϯυ1ͭͰNodeؚΊͯΫϥελΛ࡞ͬͯ͘ΕΔ
# 3͙Β͍ͰͰ͖Δʂʂ
$ gcloud container clusters create gke-handson --cluster-version=1.12.7-gke.10 --machine-type=n1-standard-1 --num-nodes=3
# kubectlͷconfigมΘͬͯΔ
$ kubectl config get-contexts
CURRENT NAME CLUSTER AUTHINFO NAMESPACE
docker-for-desktop docker-for-desktop-cluster docker-for-desktop
* xxxxxx_asia-northeast1-a_gke-handson xxxxxx_asia-northeast1-a_gke-handson xxxxxx_asia-northeast1-a_gke-handson
# σϑΥϧτͰfluentdprometheus͕ೖͬͯΔ!?
$ kubectl get pods --namespace=kube-system
NAME READY STATUS RESTARTS AGE
event-exporter-v0.2.3-f9c896d75-52nkr 2/2 Running 0 2m5s
fluentd-gcp-scaler-69d79984cb-zm56b 1/1 Running 0 113s
fluentd-gcp-v3.2.0-5mncb 2/2 Running 0 63s
fluentd-gcp-v3.2.0-9sdg7 2/2 Running 0 74s
fluentd-gcp-v3.2.0-t59sr 2/2 Running 0 54s
heapster-v1.6.0-beta.1-6fc8df6cb8-54qrk 3/3 Running 0 85s
kube-dns-autoscaler-76fcd5f658-22l8j 1/1 Running 0 104s
kube-dns-b46cc9485-5kspm 4/4 Running 0 92s
kube-dns-b46cc9485-j8fmn 4/4 Running 0 2m5s
kube-proxy-gke-gke-handson-default-pool-d757b1ec-9ld7 1/1 Running 0 108s
kube-proxy-gke-gke-handson-default-pool-d757b1ec-lcl8 1/1 Running 0 110s
kube-proxy-gke-gke-handson-default-pool-d757b1ec-z2m6 1/1 Running 0 110s
l7-default-backend-6f8697844f-s8lgv 1/1 Running 0 2m6s
metrics-server-v0.3.1-5b4d6d8d98-tn8cw 2/2 Running 0 87s
prometheus-to-sd-4v26j 1/1 Running 0 111s
prometheus-to-sd-k4jj7 1/1 Running 0 110s
prometheus-to-sd-mhs8h 1/1 Running 0 110s
Slide 148
Slide 148 text
/PEFͷΫϥελ͕Ͱ͖ͨ
148
Slide 149
Slide 149 text
ΞϓϦέʔγϣϯΛσϓϩΠ
149
# ͪΖΜࠓ·Ͱ͖ͬͯͨϚχϑΣετϑΝΠϧ͕͑Δ
$ kubectl apply -f examples/guestbook/
Slide 150
Slide 150 text
͓ย͚
150
# আ3͙Β͍ͰऴΘΔʂʂ
$ gcloud container clusters delete gke-handson
# kubectlͷconfigফ͑ͯΔ
$ kubectl config get-contexts
CURRENT NAME CLUSTER AUTHINFO NAMESPACE
docker-for-desktop docker-for-desktop-cluster docker-for-desktop
# ೦ͷͨΊ͍ͬͯΔϦιʔε͕ແ͍͔ίϯιʔϧͰ֬ೝ͓ͯ͘͠ͱ٢
Slide 151
Slide 151 text
&,4ͱ(,&
‣ ॊೈੑ
&,4ϢʔβʔʹΑΔΧελϚΠζͷ෯͕େ͖͍
w ͰͬͺΓ໘ͳͷͰFLTDUMͱ͔͕ੜ͍ͯͨ͠Γ͢Δʜ
(,&͍͍ײ͡ʹͯ͘͠ΕΔ
‣ ্ཱ͕ͪΓͷ͞
&,4 FLTDUMར༻Ͱ
͙Β͍
(,&͙Β͍
‣ අ༻
&,4NBTUFSʹඅ༻͕͔͔Δ ౦ژϦʔδϣϯͰ݄͙Β͍
(,&NBTUFSʹඅ༻͕͔͔Βͳ͍ʂ
‣ ͲͬͪΛબ΅͏ʁ
७ਮʹ,VCFSOFUFTΛ͍͍͚ͨͩͳΒѹతʹ(,&
"84ͷΖΖͷαʔϏεͱ߹Θ͍͍ͤͯͨͳΒ&,4
151
Slide 152
Slide 152 text
152
ͦͷଞΖΖ
Slide 153
Slide 153 text
ొ͠ͳ͔ͬͨϦιʔεͨͪ
153
Slide 154
Slide 154 text
+PC
‣ ୯ൃͷॲཧΛཧ
ࢦఆ͚ͨͩ͠1PEΛ࡞ͯ͠ॲཧΛ࣮ߦ
154
apiVersion: batch/v1
kind: Job # JobͷϚχϑΣετ
metadata:
name: example_job
labels:
app: example
spec:
parallelism: 3 # ಉ࣌ʹ࣮ߦ͢ΔPodͷ
template: # ---͔͜͜ΒPodͷఆٛ--------------------------------------------
metadata:
labels:
app: example
spec:
(ུ)
Slide 155
Slide 155 text
$SPO+PC
‣ ఆظ࣮ߦ͢ΔॲཧΛཧ
εέδϡʔϧʹԊͬͯ1PEΛ࡞ͯ͠ॲཧΛ࣮ߦ
155
apiVersion: batch/v1beta1
kind: CronJob # CronJobͷϚχϑΣετ
metadata:
name: example_job
labels:
app: example
spec:
schedule: "*/1 * * * *" # ىಈεέδϡʔϧΛcronͱಉ͡ܕࣜͰఆٛ
jobTemplate:
spec:
template: # ---͔͜͜ΒPodͷఆٛ--------------------------------------------
metadata:
labels:
app: example
spec:
(ུ)
Slide 156
Slide 156 text
$POpH.BQ
‣ ΞϓϦέʔγϣϯͷઃఆใΛఆٛͯ͠1PEʹఏڙ
ڥมͱͯ͠ఏڙ
7PMVNFͱͯ͠ఏڙ
156
Slide 157
Slide 157 text
$POpH.BQ
157
apiVersion: v1
kind: ConfigMap
metadata:
name: cm-example
data: # key-valueܕࣜͰઃఆใΛॻ͍͍ͯ͘
EXAMPLE: this_is_example
example.txt: |
this
is
example
# Podͷఆٛத
(ུ)
env: # ڥมͱͯ͠ఏڙ
- name: EXAMPLE
valueFrom:
configMapKeyRef:
name: cm-example
key: EXAMPLE
(ུ)
containers: # Volumeͱͯ͠ఏڙɻ͜ΕͰ /config/example.txt ͕ѻ͑ΔΑ͏ʹͳΔ
- image: alpine
(ུ)
volumeMounts: ## ίϯςφͰͷVolumeͷϚϯτઃఆ
- name: cm-volume
mountPath: /config
volumes: ## Volumeͷఆٛ
- name: cm-volume
configMap:
name: cm-example
(ུ)
Slide 158
Slide 158 text
4FDSFU
‣ ΞϓϦέʔγϣϯͷػີใΛఆٛͯ͠1PEʹఏڙ
ڥมͱͯ͠ఏڙ
7PMVNFͱͯ͠ఏڙ
‣ $POpH.BQͱͷҧ͍
จࣈྻΛ#BTFΤϯίʔυͨ͠ঢ়ଶͰѻ͏ όΠφϦσʔλΛѻ͑ΔΑ͏ʹ
w ͪΖΜ҉߸Խత͡Όͳ͍ͷͰɺͦͷ··(JUIVCʹ্͛ͨΓͨ͠Βμϝ
ઃఆʹΑͬͯ
FUDE্ʹ҉߸Խͨ͠ঢ়ଶͰอଘ͞ΕΔ
/PEFͰ1PEͷUNQGT ཁ͢ΔʹϝϞϦ
্ʹอଘ͞ΕΔ
/PEFׂΓͯΒΕͨ1PE͕ࢀর͢Δ4FDSFUҎ֎ΞΫηεͰ͖ͳ͍
͍͔ͭ͘5ZQF͕͋Δ
w 0QBRVF$POpH.BQͱಉ͡ߏԽ͞Εͯͳ͍,FZ7BMVFܗࣜ
w LVCFSOFUFTJPUMT5-4ͷൿີݤͱެ։ݤΛ֨ೲ
w LVCFSOFUFTJPTFSWJDFBDDPVOUUPLFO,VCFSOFUFTͷαʔϏεΞΧϯτͷΫϨσϯγϟϧ
158
Slide 159
Slide 159 text
4FDSFU
159
apiVersion: v1
kind: Secret
metadata:
name: secret-example
stringData:
password: xxxxxxxxxxxx # Base64Τϯίʔυ͞Εͨจࣈྻ
credential.txt: |
xxxxxxxxxxxxx
xxxxxxxxxxxxx
xxxxxxxxxxxxx
# Podͷఆٛத
(ུ)
env: # ڥมͱͯ͠ఏڙ
- name: PASSWORD
valueFrom:
secretKeyRef:
name: secret-example
key: password
(ུ)
containers: # Volumeͱͯ͠ఏڙɻ͜ΕͰ /secrets/credential.txt ͕ѻ͑ΔΑ͏ʹͳΔ
- image: alpine
(ུ)
volumeMounts: ## ίϯςφͰͷVolumeͷϚϯτઃఆ
- name: secret-volume
mountPath: /secrets
volumes: ## Volumeͷఆٛ
- name: secret-volume
secret:
secretName: secret-data
(ུ)
Slide 160
Slide 160 text
ετϨʔδؔ࿈ΖΖ
‣ 1FSTJTUFOU7PMVNF
ετϨʔδͷ࣮ମ
"84ͳΒ/PEFͷ&$͕࣋ͭ
‣ 1FSTJTUFOU7PMVNF$MBJN
ετϨʔδΛཧతʹநԽͨ͠Ϧιʔε
1FSTJTUFOU7PMVNFʹରͯ͠ඞཁͳ༰ྔΛಈతʹ֬อ
‣ 4UPSBHF$MBTT
1FSTJTUFOU7PMVNF͕֬อ͢ΔετϨʔδͷछྨΛఆٛ
"84ͳΒJP HQTDTU
‣ 4UBUFGVM4FU
ܧଓతʹσʔλΛӬଓԽ͢ΔεςʔτϑϧͳΞϓϦέʔγϣϯͷཧʹ͍ͨϦιʔε
ཧԼͷ1PEʹ࿈൪ͷࣝผࢠ͕༩͞Εɺ࠶࡞͞Εͯಉࣝ͡ผࢠͰ͋Εಉ͡ετϨʔδΛࢀর͢Δ
‣ ͰɺΫϥυͰ,VCFSOFUFT͏ͳΒجຊతʹϚωʔδυͷ%#αʔϏεΛ͏
160
Slide 161
Slide 161 text
ϚχϑΣετϑΝΠϧͷ
ϑΥʔϚοτΛௐΔ
161
Slide 162
Slide 162 text
ϚχϑΣετϑΝΠϧͷϑΥʔϚοτ
162
# "kubectl explain [Ϧιʔε] --recursive" ͰશମͷϑΥʔϚοτΛදࣔ
$ kubectl explain service --recursive
KIND: Service
VERSION: v1
DESCRIPTION:
Service is a named abstraction of software service (for example, mysql)
consisting of local port (for example 3306) that the proxy listens on, and
the selector that determines which pods will answer requests sent through
the proxy.
FIELDS:
apiVersion
kind
metadata
annotations
(ུ)
# ֊Λࢦఆ͢Δͱͦͷ߲ͷઆ໌͕֬ೝͰ͖Δ
$ kubectl explain service.spec.type
KIND: Service
VERSION: v1
FIELD: type
DESCRIPTION:
type determines how the Service is exposed. Defaults to ClusterIP. Valid
options are ExternalName, ClusterIP, NodePort, and LoadBalancer.
(ུ)
Slide 163
Slide 163 text
ӡ༻࣌ͷجຊߏΠϝʔδ
163
Slide 164
Slide 164 text
ӡ༻࣌ͷجຊߏΠϝʔδ
164
GitHub CircleCI
DockerImage
Deploy
ECR DockerHub
CloudWatchLogs Prometheus Grafana
Log Metrics
Kubernetes Cluster
CI/CD
ࢹ
ϩάཧ
Slide 165
Slide 165 text
165
·ͱΊ
Slide 166
Slide 166 text
ຊͷඪ ࠶ܝ
‣ ,VCFSOFUFTͱ͓༑ୡʹͳΔ
ΠϝʔδΛ௫Ή
৮ͬͯΈΔ ϩʔΧϧɾ&,4ɾͪΐͬͱ(,&
ߏஙɾӡ༻͕Ͱ͖ΔΑ͏ͳؾʹͳΔ
‣ ʹ͋;ΕΔ,VCFSOFUFTͷهࣄɾεϥΠυ͕
ཧղͰ͖ΔΑ͏ʹͳΔ
166
Slide 167
Slide 167 text
ୡͰ͖ͨͰ͠ΐ͏͔
167
Slide 168
Slide 168 text
ͱ͍͑ʜ
‣ ,VCFSOFUFTେنͰෳࡶͳγεςϜͰਅՁΛൃش
‣ ୯७ͳͷͳΒ'BSHBUFͱ͔&$4ͱ͔ͷ΄͏͕ɻɻ
߹ʹΑͬͯ&$ΛͬͨϨΨγʔͳߏͰࣄΓΔ
168
Slide 169
Slide 169 text
ͱ͍͑ʜ
‣ ,VCFSOFUFTେنͰෳࡶͳγεςϜͰਅՁΛൃش
‣ ୯७ͳͷͳΒ'BSHBUFͱ͔&$4ͱ͔ͷ΄͏͕ɻɻ
߹ʹΑͬͯ&$ΛͬͨϨΨγʔͳߏͰࣄΓΔ
‣ ͰɺޙʹͨΓલͷٕज़ʹͳ͍ͬͯΔՄೳੑ͕ߴ͍
ʜͱࢥ͍ͬͯΔ
ͬͱΧϯλϯʹ͑ΔΑ͏ʹͳ͍ͬͯΔ͔ʜ
&,4ͷ'BSHBUFରԠ͋Δͱ͔ͳ͍ͱ͔ʜ
‣ ݱ࣌Ͱࣗͷબࢶ͕૿͑Δͷ͍͍͜ͱͩΑͶʂ
169
Slide 170
Slide 170 text
·ͱΊ
‣ ͱΓ͋͑ͣඪ͕ୡͰ͖͍ͯͨͳΒ͍Ͱ͢
‣ ,VCFSOFUFTপͷೖΓޱʹཱ͔ͬͨΓ
ࠓճհ͖͠Εͳ͔ͬͨ༻ޠɺΤίγεςϜͳͲ·ͩେʹʜ
‣ Զͨͪͷઓ͍͜Ε͔Βͩʂ
170
Slide 171
Slide 171 text
171
ࢀߟࢿྉ
Slide 172
Slide 172 text
ࢀߟࢿྉ
‣ ,VCFSOFUFTެࣜαΠτ
- https://kubernetes.io/
‣ ,VCFSOFUFTΞΠίϯ
- https://github.com/kubernetes/community/tree/master/icons
‣ %PDLFS,VCFSOFUFT࣮ફίϯςφ։ൃೖ
- https://www.amazon.co.jp/dp/4297100339/ref=cm_sw_em_r_mt_dp_U_vNpSCbV87QB5G
‣ ೖ,VCFSOFUFT
- https://www.amazon.co.jp/dp/4873118409/ref=cm_sw_em_r_mt_dp_U_AMpSCb8MKY1MN
‣ "NB[PO&,4ͷ༻։࢝
- https://docs.aws.amazon.com/ja_jp/eks/latest/userguide/getting-started.html
‣ "NB[PO&,48PSLTIPQ
- https://eksworkshop.com/jenkinsworld/
‣ ,VCFSOFUFTPO"84&,4ϕετϓϥΫςΟε
- https://speakerdeck.com/mumoshu/eksbesutopurakuteisu2019-dot-2-number-jawsdays
‣ ,VCFSOFUFTۜͷؙͰͳ͍"84ʹ͓͚ΔίϯςφΦʔέετϨʔγϣϯͷݱࡏͱՄೳੑ
- https://logmi.jp/tech/articles/305690
172
Slide 173
Slide 173 text
ࢀߟࢿྉ
‣ ͘Β͍ͰΘ͔Δɺ,VCFSOFUFTͱ&,4ͷԿ͕ศརͳͷ͔
- https://qiita.com/masachaco/items/3e50a1ac65cdd661a734
‣ ,VCFSOFUFTߏίϯϙʔωϯτҰཡ
- https://qiita.com/tkusumi/items/c2a92cd52bfdb9edd613
‣ 5PLVT#MPH,VCFSOFUFTಓ
- https://cstoku.dev/tags/kubernetes-dojo/
173