2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 1/54 Multi-Cluster Management with Rancher

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 2/54 Kyohei Mizumoto(@kyohmizu) C# Software Engineer Interests Docker/Kubernetes Go Security whoami

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 3/54 Target People who: haven't used Rancher are interested in multi-cluster management

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 4/54 Preferred The basic knowledge of: Docker Kubernetes Microsoft Azure

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 5/54 Agenda What is Rancher? Get Started Manage Clusters Add Clusters Deploy WordPress from Catalog

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 6/54 What is Rancher?

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 7/54 Container packaging and runtime standard Build container images from Dockerfiles(IaC) Distribute container images from Docker registries Docker

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 8/54 Container orchestration standard Manage resources as manifest files(IaC) OSS which CNCF hosts (Graduated) Kubernetes

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 9/54 Container management platform Open source software Deliver Kubernetes as a Service(KaaS) Paid support Rancher

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 10/54 Features GUI based management Add clusters Deploy resources using catalogs Easy to start No need to have in-depth knowledge of Kubernetes

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 11/54 Run Kubernetes Everywhere Create Kubernetes clusters with: Rancher Kubernetes Engine (RKE) Cloud Kubernetes services(e.g. GKE, AKS, EKS) Import & manage existing Kubernetes clusters

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 12/54 Empower DevOps Teams Each team deploys their applications on the public/ private clouds they choose

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 13/54 Architecture

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 14/54 Get Started

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 15/54 Installation Single Node Install Install by running a single Docker container For development and testing environments High Availability (HA) Install Install in a Kubernetes cluster For production environments

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 16/54 Installation Single Node Install Install by running a single Docker container For development and testing environments High Availability (HA) Install Install in a Kubernetes cluster For production environments

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 17/54 Create VM on Azure

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 18/54 Install ssh to the VM Install Docker with the following command: $ curl https://releases.rancher.com/install-docker/18.09.sh | sh Install Rancher with the following command: $ sudo docker run -d --restart=unless-stopped -p 80:80 \ -p 443:443 rancher/rancher:v2.2.2

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 19/54 Access to VM https://[IP address of VM]

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 20/54 Settings Set a password Save the URL(default)

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 21/54 Done :)

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 22/54 Manage Clusters

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 23/54 Sample Add Clusters Custom AKS Deploy WordPress from Catalog

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 24/54 Create Custom Cluster

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 25/54 Advance Preparation Create an another VM for node on Azure name: rancher-node image: Ubuntu Server 18.04 LTS OS-disk-type: Standard SSD auto-shutdown: off Add inbound port rules 22, 443

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 26/54 Select Custom

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 27/54 Set IPs of VM

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 28/54 Create a Cluster Run the copied command on VM $ sudo docker run -d --privileged --restart=unless-stopped --net=host \ -v /etc/kubernetes:/etc/kubernetes -v /var/run:/var/run rancher/rancher-agent:v2.2.2 \ --server https://xx.xx.xxx.xx --token 666ltr6qntjz2xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx \ --ca-checksum f707d53266d14e03ff3452896dxxxxxxxxxxxxxxxxxxxxxxxxxxx --address xx.xx.xxx.xx \ --internal-address 10.x.x.x --etcd --controlplane --worker

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 29/54 Provisioning...

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 30/54 Done :)

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 31/54 View Resources

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 32/54 Create AKS Cluster

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 33/54 Advance Preparation(on Azure) Create a new resource group for AKS rancher-aks-sample Create a service principal $ az ad sp create-for-rbac --skip-assignment -n sp-aks-sample appId: 03f94503-xxxx-xxxx-xxxx-xxxxxxxxxxxx displayName: sp-aks-sample name: http://sp-aks-sample password: xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx tenant: 2bdec7af-xxxx-xxxx-xxxx-xxxxxxxxxxxx $ az role assignment create --assignee 03f94503-xxxx-xxxx-xxxx-xxxxxxxxxxxx \ --role Contributor --resource-group rancher-aks-sample

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 34/54 Advance Preparation(on Azure) Register resource providers $ az provider register -n Microsoft.OperationalInsights $ az provider register -n Microsoft.OperationsManagement https://docs.microsoft.com/en-us/azure/azure-resource- manager/resource-manager-register-provider-errors

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 35/54 Select AKS

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 36/54 Set Credentials Client ID is appId Client secret is the password value

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 37/54 Done :)

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 38/54 But...

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 39/54 Unsolved Problem

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 40/54 Issue AKS https://github.com/Azure/AKS/issues/173 Rancher https://github.com/rancher/rancher/issues/11496

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 41/54 Deploy WordPress from Catalog

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 42/54 Deploy on Custom Cluster

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 43/54 Select WordPress

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 44/54 Settings Set Password, and change others if necessary

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 45/54 Launch Endpoint is created http://xip.io-wordpress.wordpress.00.000.000.000.xip.io

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 46/54 Access to Endpoint

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 47/54 Deploy on AKS Cluster Deploy WordPress without L7 Load Balancer

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 48/54 Because...

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 49/54 Need to deploy LB on Azure Deploy nginx-ingress with helm(by default) Deploy wordpress-ingress.yaml apiVersion: extensions/v1beta1 kind: Ingress metadata: name: wordpress-ingress annotations: kubernetes.io/ingress.class: nginx nginx.ingress.kubernetes.io/ssl-redirect: "false" nginx.ingress.kubernetes.io/rewrite-target: / spec: rules: - http: paths: - path: / backend: serviceName: wordpress-wordpress servicePort: 80

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 50/54 Access to Public IP

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 51/54 What I Felt Good for cluster management Can deploy many applications on GUI Can start monitoring & logging on GUI Not a few things we have to know But useful to manage multi-clusters on different platforms

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 52/54 Thank you!

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 53/54 Links マルチクラウド時代の最強コンビ RancherによるKubernetes 活⽤ガイド https://thinkit.co.jp/series/8740 Official - Rancher 2.x https://rancher.com/docs/rancher/v2.x/en/

2019/4/25 Multi-Cluster Management with Rancher 127.0.0.1:5500/#54 54/54 Actually, everything is here... Azure with Rancher !! https://speakerdeck.com/cyberblack28/azure-with-rancher