EKS_Auto_Mode_Deep_Live.pdf

Slide 1

Slide 1 text

EKS Deep Live JAWSUG 横浜#81 re:invent 2024 re:Cap Container

Slide 2

Slide 2 text

hello! I am Soushi Hiruta X @web_se Facebook shiruta Github clouddev-code Zenn clouddev-code 2 ● AWS CDK ● Microservice architecture ● Prometheus/Grafana Loki ● Rust

Slide 3

Slide 3 text

3 What’s newからContainerカテゴリで絞ると。。

Slide 4

Slide 4 text

Agemda ✘ 主な特徴 ✘ EKS on Fargate都の違い ✘ 制限事項、サポートしていない考慮事項 ✘ 既存からのマイグレーション . 4

Slide 5

Slide 5 text

1. EKS Auto Modeの特徴 EKS Auto Modeはノード管理がフルマネージド 5

Slide 6

Slide 6 text

EKS Auto Mode Feature Streamline Kubernetes Cluster Management Application Avaiability Auto scaling Reply on Karpenter Efﬁciency Automated Upgrade 6 Security EKS Pod Identiy Agent Managed Components https://docs.aws.amazon.com/eks/latest/userguide/automode.html

Slide 7

Slide 7 text

EKS Auto Mode Shared Responsibility Model 7

Slide 8

Slide 8 text

EKS Auto Mode Node Pool 8 https://github.com/eksctl-io/eksctl/blob/main/userdocs/src/usage/auto-mode.md

Slide 9

Slide 9 text

EKS Auto Mode Node 9

Slide 10

Slide 10 text

EKS Auto Mode v.s. EKS on Fargate EKS Auto Mode EKS on Fargate Support DaemonSets, ARM, Spot No Support (*) GPU,DaemonSets, ARM, Spot, EBS mount Pricing Instance Pod 10

Slide 11

Slide 11 text

2. EKS Auto Modeの考慮事項 EKS Auto Modeはノード管理がマネージドになりましたが、制限事項もある。 11

Slide 12

Slide 12 text

EKS Auto Mode does not support. Security Groups per Pod(SGPP) Custom Networking. The IP Addresses of Pods and Nodes must be from the same CIDR Block.. Warm IP, warm prefid and warm ENI configurations and courage. Network Policy configurations such a contrack timer customization Enabling or disabling prefix delegration. 12 Minimum IP Targetrs configuration. Exporting network event logs to Cloudwatch Other configurations supported by open-source AWS CNI.

Slide 13

Slide 13 text

Slide 14

Slide 14 text

既存からのマイグレーション AWS Load Balancer Controller Migrating volumes from EBS CSI Controller to EKS Auto Mode Block Storage VPC CNI 14

Slide 15

Slide 15 text

Load Balancer マイグレーションの考慮事項 The default targeting mode is IP Mode , not instance mode EKS Auto Mode only supports Security group mode for Network Load Balancer AWS does not support migrating load balancers from self managed AWS load balancer controller to management by EKS Auto Mode You cannot bring your own target groups. 15 The networking.ingress.ipBlock ﬁeld in TargetGoundBinding spec is not supported

Slide 16

Slide 16 text

EKS Clusters with alternative CNI EKS auto Mode not supopport alternative CNI 16 https://docs.aws.amazon.com/eks/latest/userguide/alternate-cni-plugins.html

Slide 17

Slide 17 text

EKS Auto Modeで運用削減サポートしていない事項を考慮したうえでどうすべきか 17

Slide 18

Slide 18 text

Ballon Pod Podがいなくなるとノードも削除されるので、優先度の低いPodをうごかしておく、ノード起動のレイテンシー削減運用の考慮事項 18 ノードのログをCloudwatch出力なし

Slide 19

Slide 19 text

2. Extra Resources For Business Plans, Marketing Plans, Project Proposals, Lessons, etc

Slide 20

Slide 20 text

Appendix Learn about VPC Networking and Load Balancing in EKS Auto Mode https://docs.aws.amazon.com/eks/latest/userguide/auto-networking.html Enable EKS Auto Mode on existing EKS clusters https://docs.aws.amazon.com/eks/latest/userguide/migrate-auto.html Amazon EKS AutoModeをはじめよう https://aws.amazon.com/jp/blogs/news/getting-started-with-amazon-eks-auto-mode/ 20

Slide 21

Slide 21 text

thanks! Any questions? You can ﬁnd me at @web_se 21