Managing Kubernetes and OpenShift with ManageIQ - Container Camp London 2015

Slide 1

Slide 1 text

Managing Kubernetes and OpenShift with ManageIQ Alissa Bonas Container Camp London 2015

Slide 2

Slide 2 text

The stages of containers world

Slide 3

Slide 3 text

Containerizing an app Alissa Bonas @ Container Camp London 2015

Slide 4

Slide 4 text

Run a container Alissa Bonas @ Container Camp London 2015

Slide 5

Slide 5 text

Run multiple containers Alissa Bonas @ Container Camp London 2015

Slide 6

Slide 6 text

● Orchestrate containers ● Run many containers on multiple hosts ● Manage a containers based environment Run multiple containers Alissa Bonas @ Container Camp London 2015

Slide 7

Slide 7 text

Today we’ll focus on Kubernetes OpenShift ManageIQ Alissa Bonas @ Container Camp London 2015

Slide 8

Slide 8 text

Kubernetes ● Deployment, scaling and orchestration of containers across clusters of hosts. ● 1.0 release - July 2015 Developed in Go Alissa Bonas @ Container Camp London 2015

Slide 9

Slide 9 text

Kubernetes concepts ● Node - a machine that containers run on ● Pod - a group of containers ● Replication controller - ensures there are always X replicas of pods Alissa Bonas @ Container Camp London 2015

Slide 10

Slide 10 text

Kubernetes concepts ● Service - a base load balancer that provides traffic to pods ● Namespace - partitioning resources created by users into logical groups Alissa Bonas @ Container Camp London 2015

Slide 11

Slide 11 text

OpenShift ● Platform as a service for building and running applications - for developers ● Built on top of Kubernetes ● 3.0 release - June 2015 Developed in Go Alissa Bonas @ Container Camp London 2015

Slide 12

Slide 12 text

OpenShift concepts ● Provides additional capabilities ○ application lifecycle ○ routing - extends service ○ projects - extension of namespaces Build Deploy Run Alissa Bonas @ Container Camp London 2015

Slide 13

Slide 13 text

● How many containers exist in my environment? ● Does a specific node have enough resources? ● How many distinct images are used? ● Which registries are used? Insight and control Alissa Bonas @ Container Camp London 2015

Slide 14

Slide 14 text

ManageIQ ● A cloud management platform ○ supports multiple virtualization providers ● Insight and control ○ inventory overview and events ○ smart state analysis ○ workflow/orchestration a Ruby on Rails project Alissa Bonas @ Container Camp London 2015

Slide 15

Slide 15 text

New in upstream ManageIQ ● Providers for container management ● Supported providers ○ Kubernetes ○ OpenShift Alissa Bonas @ Container Camp London 2015

Slide 16

Slide 16 text

Container management providers Alissa Bonas @ Container Camp London 2015

Slide 17

Slide 17 text

Working together ManageIQ Kubernetes / Openshift Master REST Node A Node B Alissa Bonas @ Container Camp London 2015

Slide 18

Slide 18 text

Inventory ● Entities ● Relationships ● Additional information Alissa Bonas @ Container Camp London 2015

Slide 19

Slide 19 text

Creating more insights ● Modelling additional entities as first class citizens ● Deducing relationships Alissa Bonas @ Container Camp London 2015

Slide 20

Slide 20 text

Kubernetes provider summary Alissa Bonas @ Container Camp London 2015

Slide 21

Slide 21 text

Kubernetes provider relationships Alissa Bonas @ Container Camp London 2015

Slide 22

Slide 22 text

OpenShift provider summary

Slide 23

Slide 23 text

OpenShift provider relationships Alissa Bonas @ Container Camp London 2015

Slide 24

Slide 24 text

Nodes ● OS and Software versions ● How many entities are on a node ● Capacity and utilization ● Which infrastructure is it running on Alissa Bonas @ Container Camp London 2015

Slide 25

Slide 25 text

Node summary page Alissa Bonas @ Container Camp London 2015

Slide 26

Slide 26 text

What do we know about nodes? Capacity Docker and Kubernetes info OS info Alissa Bonas @ Container Camp London 2015

Slide 27

Slide 27 text

What do we know about nodes? Alissa Bonas @ Container Camp London 2015

Slide 28

Slide 28 text

Cross providers insight ● Connect all layers of infrastructure, cloud and containers ● Currently supports cross linking with ○ OpenStack ○ oVirt / RHEV ○ VMware vCenter Alissa Bonas @ Container Camp London 2015

Slide 29

Slide 29 text

Cross linking demystified Virtual Machines Hosts Nodes Pods Containers Alissa Bonas @ Container Camp London 2015

Slide 30

Slide 30 text

Cross linking zoom out Virtual Machines Hosts Nodes Pods Containers Images Storage Network Services Routes Alissa Bonas @ Container Camp London 2015

Slide 31

Slide 31 text

Cross provider example - Node Alissa Bonas @ Container Camp London 2015

Slide 32

Slide 32 text

Cross provider - VM side Alissa Bonas @ Container Camp London 2015

Slide 33

Slide 33 text

Nodes capacity and utilization

Slide 34

Slide 34 text

Alissa Bonas @ Container Camp London 2015

Slide 35

Slide 35 text

Alissa Bonas @ Container Camp London 2015

Slide 36

Slide 36 text

Container ● Traceability - node, container id, image Alissa Bonas @ Container Camp London 2015

Slide 37

Slide 37 text

Image from a known registry Alissa Bonas @ Container Camp London 2015 Alissa Bonas @ Container Camp London 2015

Slide 38

Slide 38 text

Image from an unknown source Alissa Bonas @ Container Camp London 2015

Slide 39

Slide 39 text

Registries

Slide 40

Slide 40 text

Pods ● Which containers are part of it ● Which services work with it ● Which node does it run on ● Is it controlled by a replicator? Alissa Bonas @ Container Camp London 2015

Slide 41

Slide 41 text

Pod Alissa Bonas @ Container Camp London 2015

Slide 42

Slide 42 text

Replicators Searches for pods with this label Alissa Bonas @ Container Camp London 2015

Slide 43

Slide 43 text

More information collected ● Services ● Routes (OpenShift only) ● Events ● Projects and Namespaces Alissa Bonas @ Container Camp London 2015

Slide 44

Slide 44 text

● “A picture is worth a thousand words” ● Includes cross provider relationships ● Status color indication Topology view Alissa Bonas @ Container Camp London 2015

Slide 45

Slide 45 text

Topology live demo Alissa Bonas @ Container Camp London 2015

Slide 46

Slide 46 text

A glimpse into the future

Slide 47

Slide 47 text

Dashboard - providers overview

Slide 48

Slide 48 text

Dashboard - a single provider view

Slide 49

Slide 49 text

Dashboard of a project Alissa Bonas @ Container Camp London 2015

Slide 50

Slide 50 text

Smart State Analysis ● Inspect the packages included in an image ● Combined with vulnerabilities db, generate alerts for important security issues on running containers Alissa Bonas @ Container Camp London 2015

Slide 51

Slide 51 text

Analysis of an image Alissa Bonas @ Container Camp London 2015

Slide 52

Slide 52 text

An image after analysis

Slide 53

Slide 53 text

ManageIQ community ● http://talk.manageiq.org ● https://github.com/ManageIQ/manageiq ○ Follow label #providers/containers ● #manageiq IRC on freenode Alissa Bonas @ Container Camp London 2015

Slide 54

Slide 54 text

Projects info ● http://www.openshift.org/ ● http://kubernetes.io/ ● http://manageiq.org/ Alissa Bonas @ Container Camp London 2015

Slide 55

Slide 55 text

Icons Credits ● The Go gopher - Renee French ● Diamond by MarkieAnn Packer, the Noun Project ● Rails by Luis Martins, the Noun Project ● Light Bulb by artworkbean, the Noun Project ● Sherlock by James Keuning, the Noun Project ● Twitter by Lubos Volkov, the Noun Project ● Link by Vitor Fernandes, the Noun Project

Slide 56

Slide 56 text

Thank you! @mikeyteva