@k2r2bai Setup Kubernetes Federation v2 on AWS AWS User Group Taiwan

@k2r2bai About Me ⽩白凱仁(Kyle Bai) • RDSS • Interested in emerging technologies. • Kubernetes Projects Contributor. • Certified Kubernetes Administrator. • CNTUG(Cloud Native Taiwan User Group) co-organizer. • Kubernetes 200+ nodes experience. @kairen(k2r2.bai@gmail.com) https://k2r2bai.com

@k2r2bai • Motivations • Introducing Federation V2 • Live setup • Summary Agenda Today I would like to talk about

Motivations

@k2r2bai • Sensitive Workloads: I have multiple clusters but want to run sensitive workloads only in specific clusters. • Avoiding provider lock-in: By making it easier to migrate applications across clusters, federation prevents cluster provider lock-in. • High availability: Single region outage does not impact the availability of workloads. • Hybrid Cloud: Extend Deployments from on-premise clusters to the cloud. Multiple clusters

@k2r2bai • Distribution of applications, services, and policy to multiple clusters. • Migration of applications and services and their storage between clusters • Disaster recovery for those applications and services. • Serving users from clusters closest to them. Benefit of applications

Introducing Federation V2

@k2r2bai Concepts

@k2r2bai Sync controller kubefed2 federate (autogenerate typeConfig and type CRDs) kubefed2 join/unjoin Propagation refers to how resources are distributed to the target clusters.

@k2r2bai Type configuration declares which API types federation should handle. Type configuration

@k2r2bai e.g. FederatedDeployment (template) type CRD. Federated Type

@k2r2bai Templates define the representation of a resource common across clusters. Templates

@k2r2bai Placement defines which clusters the resource is intended to appear in Placement

@k2r2bai Overrides define per-cluster field-level variation to apply to the template. Overrides

@k2r2bai Scheduling Manager SchedulingPreference Controller ServiceDNS Controller IngressDNS Controller DNSEndpoint Controller

@k2r2bai Federation V2: API grouping

Live setup and demo!! (BOOM~)

@k2r2bai Architecture

@k2r2bai Architecture

@k2r2bai Step by step guide to setup Federation v2 on AWS https://bit.ly/2GDjHu1

@k2r2bai Multi-Cluster Service DNS with ExternalDNS

@k2r2bai ExternalDNS is not a DNS server itself, instead it is a custom controller that watches Kubernetes resources, and configures corresponding DNS records using external DNS providers like AWS Route 53, AzureDNS, CloudFlare, DigitalOcean, DNSimple, Dyn, PowerDNS, CoreDNS, Exoscale, and more. ExternalDNS https://github.com/kubernetes-incubator/external-dns

Summary

@k2r2bai • Federation v2 uses CustomResourceDefinitions to extend Kubernetes with new APIs. • The building blocks approach allows the extension of federation to supported and custom resources, which only enhances the flexibility Federation v2 is providing for future development. • Although Federation v2 is in the prototype stage, I believe that the community behind the Federation V2 project is strong and that the project seems to be headed in the right direction. Summary

@k2r2bai • https://github.com/kubernetes-sigs/federation-v2 • https://blog.openshift.com/combining-federation-v2-and-istio-multicluster/ • https://blog.openshift.com/kubernetes-federation-v2-on-openshift-3-11/ • https://medium.com/condenastengineering/k8s-federation-v2-a-guide-on- how-to-get-started-ec9cc26b1fa7 • https://kubernetes.io/blog/2018/12/12/kubernetes-federation-evolution/ • https://static.sched.com/hosted_files/kccna18/d4/ SIG%20MultiCluster%20Deep%20dive%20at%20Kubecon%20Seattle%202018. pdf References

@k2r2bai KAIREN OUT!! THANK YOU!!!