Running Kubernetes on an existing BOSH

Slide 1

Slide 1 text

Title Text Body Level One Body Level Two Body Level Three Body Level Four Body Level Five Running Kubernetes   with an existing BOSH CF Summit Boston MA April 2018 Dr Nic Williams @drnic

Slide 2

Slide 2 text

bosh -d cfcr deploy <(curl -L http://bit.ly/bosh-cfcr) https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 3

Slide 3 text

$ bosh instances -d cfcr Instance Process State AZ IPs master/a957bed5-8e09-46f5-94a8-ef2964cfebdb running z1 10.10.1.10 worker/169c76e7-76b9-4546-949c-89e7630c9bed running z2 10.10.1.12 worker/2e5a58aa-5e7d-4e8d-9918-a5400cd6f278 running z1 10.10.1.11 worker/e3ad4443-2d67-47ba-b661-5f68929bd711 running z3 10.10.1.13 bosh -d cfcr deploy <(curl -L http://bit.ly/bosh-cfcr) https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 4

Slide 4 text

No content

Slide 5

Slide 5 text

https://github.com/starkandwayne/cfcr-compiled-deployment Complete walk thru ɑ CFCR core-team walk thru: https://docs-cfcr.cfapps.io/ https://github.com/cloudfoundry-incubator/kubo-deployment

Slide 6

Slide 6 text

Bare bones private subnet BOSH UAA CredHub bosh deploy M Wk Wk Wk https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 7

Slide 7 text

Bare bones BOSH UAA CredHub bosh deploy M Wk Wk Wk https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 8

Slide 8 text

more bones dmz private subnet BOSH UAA CredHub bosh deploy M Jumpbox NAT Wk Wk Wk https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 9

Slide 9 text

HTTP & TCP Routers dmz BOSH M Wk Wk Wk Jumpbox NAT Routers LBs https://github.com/starkandwayne/cfcr-compiled-deployment CF

Slide 10

Slide 10 text

Cloud Provider BOSH UAA CredHub bosh deploy M Wk Wk Wk https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 11

Slide 11 text

Cloud Provider BOSH UAA CredHub bosh deploy M Wk Wk Wk https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 12

Slide 12 text

Our story begins dmz private subnet BOSH UAA CredHub Jumpbox NAT https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 13

Slide 13 text

bosh -d cfcr deploy <(curl -L http://bit.ly/bosh-cfcr) https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 14

Slide 14 text

git clone https://github.com/starkandwayne/cfcr-compiled-deployment cd cfcr-compiled-deployment bosh -d cfcr deploy cfcr.yml https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 15

Slide 15 text

No access from Internet dmz BOSH UAA CredHub bosh deploy M Jumpbox NAT W W W https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 16

Slide 16 text

bosh -d cfcr deploy cfcr.yml \ -o ops-files/allow-privileged-containers.yml https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 17

Slide 17 text

git clone https://github.com/kubernetes/examples kubernetes-examples kubectl create -f kubernetes-examples/staging/elasticsearch/service-account.yaml kubectl create -f kubernetes-examples/staging/elasticsearch/es-svc.yaml kubectl create -f kubernetes-examples/staging/elasticsearch/es-rc.yaml watch kubectl get pods https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 18

Slide 18 text

HTTP & TCP Routers dmz BOSH M Wk Wk Wk Jumpbox NAT Routers LBs https://github.com/starkandwayne/cfcr-compiled-deployment CF

Slide 19

Slide 19 text

credhub find -n cfcr/tls-kube # delete them helper/cf-routing-vars.sh > cf-vars.yml bosh -d cfcr deploy cfcr.yml \ -o ops-files/allow-privileged-containers.yml \ -o ops-files/cf-routing.yml \ -l cf-vars.yml https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 20

Slide 20 text

10:20:46 | Creating missing vms: route-sync/081cdb2c-7784-40e6-a3db-b20690d258fd (0) (00:01:06) 10:21:52 | Updating instance master: master/7b900ba9-4546-4946-83e3-520d6f4b8a23 (0) (canary) (00:01:50) 10:23:42 | Updating instance worker: worker/40782c3c-ad4f-4fbf-a03a-4397beec0cbe (0) (canary) (00:00:48) 10:24:30 | Updating instance worker: worker/39764434-dd81-44fb-8754-3a72f8eb3ab9 (1) (00:00:54) 10:25:24 | Updating instance worker: worker/82475150-eabb-47c8-9cd4-2475c0b0e4c2 (2) (00:00:55) 10:26:19 | Updating instance route-sync: route-sync/081cdb2c-7784-40e6-a3db-b20690d258fd (0) (canary) (00:00:59) Task 2006 Duration 00:09:58

Slide 21

Slide 21 text

HTTP & TCP Routers dmz BOSH M Wk Wk route sync Jumpbox NAT Routers LBs https://github.com/starkandwayne/cfcr-compiled-deployment Wk :8443 :8443 :8443

Slide 22

Slide 22 text

HTTP & TCP Routers dmz BOSH M Wk Wk route sync Jumpbox NAT Routers LBs https://github.com/starkandwayne/cfcr-compiled-deployment Wk

Slide 23

Slide 23 text

$ cf domains name status type your-cf-domain.com shared tcp.your-cf-domain.com shared tcp $ kubectl get service frontend NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE frontend NodePort 10.100.200.238 80:30750/TCP 8h $ kubectl label services frontend http-route-sync=guestbook Now visit https://guestbook.your-cf-domain.com https://github.com/starkandwayne/cfcr-compiled-deployment

Slide 24

Slide 24 text

No content