Slide 1
Slide 1 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 1
© Copyright 2020 Rancher Labs. All Rights Reserved. 1
Hosted Rancher on AWS
2020/05/29
CHENG
Field Engineer
Slide 2
Slide 2 text
About me
Jianqiang Cheng(ͪΜ)
Field Engineer at Rancher Labs.
[email protected]
slack.rancher.jp
■Favorite technologies:
Rancher, Kubernetes, AWS, Jenkins.
■Certifications:
Slide 3
Slide 3 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 3 3
Agenda
• Why Rancher?
• Why Hosted Rancher?
• Demo
Slide 4
Slide 4 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 4
Rancher –
Kubernetes Management Platform
Slide 5
Slide 5 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 5
Kubernetesを正しく管理出来なければ、
オーバーヘッドとリスクを発生させる可能性
集中的な管理と
可視化が出来ない
一貫した
セキュリティポリシーが
適用出来ていない
管理がサイロ化
されていることがある
よくあるKubernetesクラスタの実情は、
© Copyright 2020 Rancher Labs. All Rights Reserved. 5
Slide 6
Slide 6 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 6
ΫϥελҰݩཧ
ηϧϑαʔϏε
Ϋϥελڥͷར༻
*OGSBTUSVDUVSF
&,4 "OZ
3,& 3,&
6TFS*OUFSGBDF
4FSWJDF$BUBMPH
$*$%
.POJUPSJOH
-PHHJOH
"MFSUJOH
*50QT
%FW0QT 1SPWJTJPOJOH
"VUI3#"$
1PMJDZ
4FDVSJUZ
$BQBDJUZ
© Copyright 2020 Rancher Labs. All Rights Reserved. 6
Rancher is delivering Kubernetes Everywhere
Slide 7
Slide 7 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 7
Kubernetes
KubernetesΤίγεςϜ͕ɺେͳͷͰ͢ - https://landscape.cncf.io
Slide 8
Slide 8 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 8
RancherがKubernetesにもたらすもの
8
,VCFSOFUFT
"VUIFOUJDBUJPO
4FDVSJUZ3#"$141
.POJUPSJOH
-PHHJOH
3FHJTUSZ
$POUBJOFS3VOUJNF
/FUXPSL4UPSBHF
"QQ$BUBMPH
4FSWJDF.FTI
$*$%
8IBU3BODIFSUBLFTBO4-"PO
.BOBHFBMMUIJT ʜPSUIJT
3BODIFS$FSUJGJFE*OUFHSBUJPOT
8
Slide 9
Slide 9 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 9
UseCase – Alpaca Japan
Slide 10
Slide 10 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 10
Alpaca Japanのインフラ
引用:https://speakerdeck.com/taishin/rancherday2019-alpacajapan
Slide 11
Slide 11 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 11
Rancherによる課題解決
引用:https://speakerdeck.com/taishin/rancherday2019-alpacajapan
Slide 12
Slide 12 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 12
Rancherによる課題解決
引用:https://speakerdeck.com/taishin/rancherday2019-alpacajapan
Slide 13
Slide 13 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 13
Rancherによる課題解決
引用:https://speakerdeck.com/taishin/rancherday2019-alpacajapan
Slide 14
Slide 14 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 14
Rancherによる課題解決
引用:https://speakerdeck.com/taishin/rancherday2019-alpacajapan
Slide 15
Slide 15 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 15
Hosted Rancher
Slide 16
Slide 16 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 16
nRancherの構築と運用の手間を省きたい
n運用管理メンバーが足りない
n環境関連の問合せを減らしたい
Customer Pain Points
nRancherの構築運用のベストプラクティスが知らない
nRancherバージョンアップの作業に不安を感じる
nノンコア業務のRancher運用を他社に任せたい
Slide 17
Slide 17 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 17
Typical Rancher Deployment
Rancher HA
Deployment
etcd etcd etcd
Endpoint URL
On-premises infrastructure Cloud infrastructure
Imported
Clusters
EKS Other
Vanity URL Endpoint
Hosted Rancher HA
Deployment
Slide 18
Slide 18 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 18
How Hosted Rancher works
RDS ALB
ASG
VPC
Downstream cluster
(on-prem datacenter)
Downstream clusters
(cloud-hosted)
Customer on-prem
datacenter
RKE Etcd
Nodes
RKE Control
Plane Nodes
Control
Plane
MS AD or
LDAP
Route 53
DNS
API/UI over
HTTPS/TLS
(443)
Websocket
over
HTTPS/TLS
(443)
Customer
RKE Worker
Nodes
RKE Worker
Nodes
RKE Worker
Nodes
Worker
Nodes
RKE Worker
Nodes
vSphere
Nodes
VPC Peering or VPN
Splunk
Elasticsearch
etc
Slide 19
Slide 19 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 19
Hosted RancherͷϝϦοτ
Add-on to Platinum
subscription
‘White glove’
DevOps service with
99.9% SLA
Remote monitoring and
log management by
Rancher’s experts
Hosted Rancher
control plane,
available 24/7/365
Stress-free
upgrades, security
patches & backups
Maintain full visibility
& control of
downstream clusters
24/7/365の稼働 99.9%の可用性 Rancher管理者権限の付与
Rancher定期メンテナンス不要 Rancher運用監視不要 サポートの追加オプションとして提供
Slide 20
Slide 20 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 20
Why Hosted Rancher?
Ensure
Business
Continuity
Reduced Total
Cost of
Ownership
Reduce time to
production
Kubernetes
Focus on
Day 2 cluster
operations
Slide 21
Slide 21 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 21
• Amazon Web Services (AWS)
• Packer & Terraform
• Ubuntu Server 18.04.3 LTS
• K8s -> K3s
• Docker -> Containerd
• etcd -> MySQL using RDS
• Prometheus Monitoring & Alerting (via Rancher)
• Longhorn (for metrics persistent storage)
• Latest stable Rancher
Tech Stack
Slide 22
Slide 22 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 22
Demo
Slide 23
Slide 23 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 23
RancherがKubernetesにもたらすもの
23
,VCFSOFUFT
"VUIFOUJDBUJPO
4FDVSJUZ3#"$141
.POJUPSJOH
-PHHJOH
3FHJTUSZ
$POUBJOFS3VOUJNF
/FUXPSL4UPSBHF
"QQ$BUBMPH
4FSWJDF.FTI
$*$%
8IBU3BODIFSUBLFTBO4-"PO
.BOBHFBMMUIJT ʜPSUIJT
3BODIFS$FSUJGJFE*OUFHSBUJPOT
23
Slide 24
Slide 24 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 24
Rancher Labs Products & Projects
Ϋϥελؒ௨৴
ܰྔ,VCFSOFUFT04
ࢄϒϩοΫετϨʔδ $MPVE/BUJWFίϯςφ
σΟετϦϏϡʔγϣϯ
࠷͞Εͨ
ίϯςφཧϓϥοτϑΥʔϜ
$PNNFSDJBMMZ"WBJMBCMF
ܰྔ,VCFSOFUFT
σΟετϦϏϡʔγϣϯ
GA
Slide 25
Slide 25 text
© Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 25
5IBOLT
͋Γ͕ͱ͏͍͟͝·͢ɻ