CoreOS Through the Looking Glass - Software Circus 2020

Slide 1

Slide 1 text

“How do you know I’m mad?” said Alice. “You must be,” said the Cat, “or you wouldn’t have come here.” CoreOS Through the Looking Glass Software Circus, 21 May 2020 Andrew Randall, VP business development, Kinvolk @andrew_randall @kinvolkio

Slide 2

Slide 2 text

@andrew_randall @kinvolkio

Slide 3

Slide 3 text

‘Beware the Kuberwock, my son! The pods that fail, the ports that hack! Beware bloated distros, and shun The privilege escalation attack!’ @andrew_randall @kinvolkio

Slide 4

Slide 4 text

@andrew_randall @kinvolkio Tweedlepolvi Tweedlephilips CEO CTO

Slide 5

Slide 5 text

Q ♥ Q ♥ Reduce attack surface K ♥ K ♥ Immutable ﬁle system A ♠ A ♠ Atomic, automatic updates @andrew_randall @kinvolkio K ♣ K ♣ Secure container runtime J ♦ J ♦ Principle of least privilege Untitled Goose

Slide 6

Slide 6 text

“GIFEE is a style of managing infrastructure the way hyperscale companies like Google operate, with infrastructures designed for maximum robustness, scalability, security, and reliability.” - Alex Tweedlepolvi Google’s Infrastructure For Everyone Else @andrew_randall @kinvolkio

Slide 7

Slide 7 text

The CoreOS Stack for GIFEE @andrew_randall @kinvolkio Tectonic etcd rkt CoreOS Container Linux Enterprise-grade cluster orchestration Distributed state store (consensus algorithm) Secure runtime for application containers Quay/Clair Container registry w/ built-in security scanner Container-optimized operating system

Slide 8

Slide 8 text

Oh, Kitty! how nice it would be if we could only get through into Looking-glass House! @andrew_randall @kinvolkio

Slide 9

Slide 9 text

@andrew_randall @kinvolkio

Slide 10

Slide 10 text

The GIFEE Stack Through the Looking Glass @andrew_randall @kinvolkio Active CNCF project; core Kubernetes component Retired in favor of containerd, having served its purpose Active* Red Hat product/service End-of-life End-of-life from May 26, 2020

Slide 11

Slide 11 text

@andrew_randall @kinvolkio One, two! One, two! With wicked git fu The Kinvolk team went snicker-snack! Container Linux built anew Flatcar galumphing back.

Slide 12

Slide 12 text

Dedicated team of Linux experts Built and maintained independently Public roadmap published New Edge channel for experimental features In-place migration for CoreOS hosts Update Service replacement for CoreUpdate 24x7 Customer Support infrastructure in place Large, growing community of users & partners Flatcar Container Linux Today @andrew_randall @kinvolkio

Slide 13

Slide 13 text

@andrew_randall @kinvolkio

Slide 14

Slide 14 text

@andrew_randall @kinvolkio Lokomotive: What’s in the Box? Self-hosted Kubernetes distro inspired by Tectonic Self-installed container platform with Managed Service experience Secure out of the box lokoctl for managing clusters and components with simpliﬁed conﬁg Supports AWS, AKS, Packet - more coming Dashboard for monitoring and control

Slide 15

Slide 15 text

@andrew_randall @kinvolkio flatcar-linux.org github.com/kinvolk/lokomotive

Slide 16

Slide 16 text

“Would you tell me, please, which way I ought to go from here?” “That depends a good deal on where you want to get to,” said the Cat. Thank you @andrew_randall @kinvolkio

Slide 17

Slide 17 text

No content