Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Kubernetes - The Swiss Army Knife for your Prox...

ProxySQL LLC
May 19, 2020
0
550

Kubernetes - The Swiss Army Knife for your ProxySQL Deployments

ProxySQL LLC

May 19, 2020
Tweet

More Decks by ProxySQL LLC

See All by ProxySQL LLC
ProxySQL 2.0 native support for Percona XtraDB Cluster (PXC) 5.7 by Vinicius Grippa
proxysql_sysown
0
270
ProxySQL, the journey from a MySQL proxy to being the de-facto multi-functional tool that scales MySQL
proxysql_sysown
1
350
Ensuring MySQL High Availability at Scale
proxysql_sysown
0
280
Exploring the latest features in ProxySQL 2.0 (updated to 2.0.9) - FOSDEM 2020
proxysql_sysown
0
900
What's new in ProxySQL 2.0? (Updated to version 2.0.9)
proxysql_sysown
0
860
MySQL DevOps: MySQL High Load Operation (Russian)
proxysql_sysown
0
780
Fault-Tolerance and Load Balancing for Your MySQL Backend (Russian)
proxysql_sysown
0
820
Introduction to High Performance for MySQL, Vlad Fedorkov (ProxySQL)
proxysql_sysown
0
850
ProxySQL: Traffic management and Performance Troubleshooting
proxysql_sysown
0
880

Featured

See All Featured
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
37
1.8k
What's in a price? How to price your products and services
michaelherold
243
12k
Practical Tips for Bootstrapping Information Extraction Pipelines
honnibal
PRO
9
670
Principles of Awesome APIs and How to Build Them.
keavy
126
17k
Agile that works and the tools we love
rasmusluckow
327
21k
Fashionably flexible responsive web design (full day workshop)
malarkey
404
65k
Fantastic passwords and where to find them - at NoRuKo
philnash
50
2.8k
Mobile First: as difficult as doing things right
swwweet
222
8.9k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
191
16k
Building an army of robots
kneath
302
42k
XXLCSS - How to scale CSS and keep your sanity
sugarenia
246
1.3M
RailsConf 2023
tenderlove
29
870

Transcript

  1. Kubernetes the Swiss Army Knife for your ProxySQL Deployments by

    René Cannaò, 19th of May 2020

  2. Introduction

  3. Who am I? René Cannaò • Founder of ProxySQL LLC

    • Author of ProxySQL • MySQL DBA © ProxySQL 2013-2020. All rights reserved.

  4. ProxySQL LLC We provide services to help build, support and

    improve the performance & reliability of your Cloud-Based and On-Premise MySQL infrastructure. © ProxySQL 2013-2020. All rights reserved.

  5. ProxySQL LLC • ProxySQL Development • ProxySQL Support Services •

    ProxySQL, MySQL, DevOps & Outsourcing • ProxySQL Training • Consulting Services © ProxySQL 2013-2020. All rights reserved.

  6. What is ProxySQL? MySQL protocol aware data gateway – Clients

    connect to ProxySQL – Requests are evaluated – Various actions are performed © ProxySQL 2013-2020. All rights reserved.

  7. Deployment and HA for ProxySQL

  8. Production Deployment © ProxySQL 2013-2020. All rights reserved. The three

    main approaches for deploying ProxySQL are either: - Deploy ProxySQL on your application servers - Deploy ProxySQL in a dedicated layer of servers - Deploy ProxySQL on your application servers and in a separate dedicated layer of servers Each approach has its own advantages and disadvantages.

  9. Production Deployment © ProxySQL 2013-2020. All rights reserved. Regardless of

    your underlying infrastructure, there are various implementation methods to implement all three approaches for: - On-premises bare metal servers - Virtualized environments (VMWare, KVM, etc) - Cloud environments (AWS, GCP, Azure, etc) - Containerized environments (Kubernetes, Docker, etc)

  10. App Server Deployment © ProxySQL 2013-2020. All rights reserved. ProxySQL

    is deployed locally • No network overhead • No single point of failure • Isolated configuration • Rolling upgrades 2

  11. App Server Deployment © ProxySQL 2013-2020. All rights reserved. ProxySQL

    is deployed locally • No network overhead • No single point of failure • Isolated configuration • Rolling upgrades 2 • DB monitoring overhead • More backend connections • Configuration effort • Query cache isolated Configuration management is essential QC1 QC2 QC3

  12. ProxySQL Layer Deployment © ProxySQL 2013-2020. All rights reserved. ProxySQL

    is deployed on a standalone server • DB monitoring overhead • Less backend connections • Configuration effort • Shared Query Cache Configuration management is optional Global QC

  13. ProxySQL Layer Deployment © ProxySQL 2013-2020. All rights reserved. ProxySQL

    is deployed on a standalone server • DB monitoring overhead • Less backend connections • Configuration effort • Shared Query Cache Global QC • Additional Round Trip Time • Single point of failure • Shared configuration • No rolling upgrades 2 Configuration management is optional

  14. What is kubernetes?

  15. Containers © ProxySQL 2013-2020. All rights reserved.

  16. Containers © ProxySQL 2013-2020. All rights reserved.

  17. Container Orchestrators • Amazon Elastic Container Service (ECS) • Azure

    Container Instance (ACI) • Kubernetes (by Google) • Nomad (by HashiCorp) • Docker Swarm (Docker) © ProxySQL 2013-2020. All rights reserved.

  18. Container Orchestrator capabilities • Manage hundreds or thousands of containers

    • Group hosts together • Schedule where containers need to run based on resources • Enable communication between containers • Associated containers to storage resources • Group similar containers behind a load balancer • Manage and optimize resources © ProxySQL 2013-2020. All rights reserved.

  19. What is Kubernetes (k8s) From https://kubernetes.io/ : Kubernetes is an

    open-source system for automating deployment, scaling, and management of containerized applications. Often referred to as k8s © ProxySQL 2013-2020. All rights reserved.

  20. Interesting Features • Self-healing • Service discovery and Load Balancing

    • Automated Rollouts and Rollbacks • Secret and configuration management • Storage orchestration • High Availability and Scaling features © ProxySQL 2013-2020. All rights reserved.

  21. Kubernetes Objects: Pods Pod: The basic unit of deployment. •

    Pods that run a single container • Pods that run multiple containers that need to work together Networking: each Pod is assigned a unique IP Storage: a Pod can have a series of shared storage volumes © ProxySQL 2013-2020. All rights reserved.

  22. Pods and Networking Network namespace: all containers in the same

    Pod can use localhost IP-per-Pod: Each Pod is treated similarly to a VM, and assigned a unique IP. Communication between Pods occurs as if they were VMs. - Multiple containers per pod need to coordinate for port assignment © ProxySQL 2013-2020. All rights reserved.

  23. Deploying on Kubernetes - with Helm charts

  24. Tools used in the demo • minikube: a tool to

    run a single-node Kubernetes cluster inside a Virtual Machine (VM) • libvirt/KVM: hypervisor and toolkit to run the minikube virtual machine • kubectl: the Kubernetes command-line tool to run commands against Kubernetes clusters • helm: the package manager for Kubernetes ( define / install / upgrade / etc. ) © ProxySQL 2013-2020. All rights reserved.

  25. Installing Minikube Details: https://kubernetes.io/docs/tasks/tools/install-minikube/ curl -Lo minikube https://storage.googleapis.com/minikube/releases/lat est/minikube-linux-amd64 &&

    chmod +x minikube sudo mv ./minikube /usr/local/bin/ © ProxySQL 2013-2020. All rights reserved.

  26. Installing Helm Details: https://helm.sh/docs/intro/install/ curl -fsSL -o get_helm.sh https://raw.githubusercontent.com/helm/helm/master/scripts/get -helm-3

    chmod 700 get_helm.sh ./get_helm.sh © ProxySQL 2013-2020. All rights reserved.

  27. Configuring minikube minikube config set memory 6144 minikube config set

    cpus 3 minikube config set disk-size 50000MB minikube config set vm-driver kvm2 minikube start minikube status © ProxySQL 2013-2020. All rights reserved.

  28. Add dashboard kubectl apply -f https://raw.githubusercontent.com/kubernetes/dashboard/v2.0.0/aio/d eploy/recommended.yaml minikube addons enable

    dashboard minikube dashboard --url http://127.0.0.1:45536/api/v1/namespaces/kube-system/services/http: kubernetes-dashboard:/proxy/ © ProxySQL 2013-2020. All rights reserved.

  29. Start dashboard # Start dashboard on local IP (forwarded from

    within # Minikube VM) - default port is 8001 and the address in # this example 10.18.120.41 is the host physical machine # IP (not the VM) kubectl proxy --address=10.18.120.41 --accept-hosts='^.*' © ProxySQL 2013-2020. All rights reserved.

  30. Install MySQL using Helm We are going to use Helm

    Charts to define, install, and upgrade application. Add repo: helm repo add bitnami https://charts.bitnami.com/bitnami Install: helm install mysql-8 -f ./mysql/values.yaml bitnami/mysql © ProxySQL 2013-2020. All rights reserved.

  31. MySQL cluster: deployment NAME: mysql-8 LAST DEPLOYED: Tue May 19

    13:45:30 2020 NAMESPACE: default STATUS: deployed REVISION: 1 TEST SUITE: None NOTES: Please be patient while the chart is being deployed © ProxySQL 2013-2020. All rights reserved.

  32. MySQL cluster: how to connect Administrator credentials: echo Username: root

    echo Password : $(kubectl get secret --namespace default mysql-8 -o jsonpath="{.data.mysql-root-password}" | base64 --decode) To connect to your database: 1. Run a pod that you can use as a client: kubectl run mysql-8-client --rm --tty -i --restart='Never' --image docker.io/bitnami/mysql:8.0.19-debian-10-r94 --namespace default --command -- bash 2. To connect to master service (read/write): mysql -h mysql-8.default.svc.cluster.local -uroot -p my_database 3. To connect to slave service (read-only): mysql -h mysql-8-slave.default.svc.cluster.local -uroot -p my_database © ProxySQL 2013-2020. All rights reserved.

  33. MySQL cluster: how to upgrade To upgrade this helm chart:

    1. Obtain the password as described on the 'Administrator credentials' section and set the 'root.password' parameter as shown below: ROOT_PASSWORD=$(kubectl get secret --namespace default mysql-8 -o jsonpath="{.data.mysql-root-password}" | base64 --decode) helm upgrade mysql-8 bitnami/mysql --set root.password=$ROOT_PASSWORD © ProxySQL 2013-2020. All rights reserved.

  34. MySQL cluster © ProxySQL 2013-2020. All rights reserved.

  35. Deploying ProxySQL as a ReplicaSet Service

  36. Deploy ProxySQL as a Service Install: vi proxysql-cluster/values.yaml helm install

    proxysql-cluster ./proxysql-cluster © ProxySQL 2013-2020. All rights reserved.

  37. ProxySQL as a Service © ProxySQL 2013-2020. All rights reserved.

  38. ProxySQL as a Service © ProxySQL 2013-2020. All rights reserved.

  39. ProxySQL as a Service © ProxySQL 2013-2020. All rights reserved.

  40. ProxySQL as a Service © ProxySQL 2013-2020. All rights reserved.

  41. Kubernetes Service © ProxySQL 2013-2020. All rights reserved. • HA

    provided Kubernetes Replicaset, applications connect to one K8s service • Provides load balancing as well as HA • No need for config management, one step deployment / configuration

  42. Kubernetes Service • HA provided Kubernetes Replicaset, applications connect to

    one K8s service • Provides load balancing as well as HA • No need for config management, one step deployment / configuration • All client connections LOST must be re-established by the application © ProxySQL 2013-2020. All rights reserved.

  43. ProxySQL as a Service rcannao@ercules:~/kubernetes$ kubectl get replicasets NAME DESIRED

    CURRENT READY AGE proxysql-cluster-7c75d64958 2 2 2 11m rcannao@ercules:~/kubernetes$ kubectl get pods NAME READY STATUS RESTARTS AGE mysql-8-master-0 1/1 Running 0 23m mysql-8-slave-0 1/1 Running 0 23m proxysql-cluster-7c75d64958-2lwtd 1/1 Running 0 11m proxysql-cluster-7c75d64958-8l77q 1/1 Running 0 11m © ProxySQL 2013-2020. All rights reserved.

  44. ProxySQL as a Service rcannao@ercules:~/kubernetes$ kubectl delete pod proxysql-cluster-7c75d64958-8l77q pod

    "proxysql-cluster-7c75d64958-8l77q" deleted rcannao@ercules:~/kubernetes$ rcannao@ercules:~/kubernetes$ kubectl get pods NAME READY STATUS RESTARTS AGE mysql-8-master-0 1/1 Running 0 25m mysql-8-slave-0 1/1 Running 0 25m proxysql-cluster-7c75d64958-2lwtd 1/1 Running 0 12m proxysql-cluster-7c75d64958-4l9pn 1/1 Running 0 57s © ProxySQL 2013-2020. All rights reserved.

  45. Redeploying ProxySQL vi proxysql-cluster/files/proxysql.cnf helm upgrade proxysql-cluster ./proxysql-cluster kubectl rollout

    restart deployment/proxysql-cluster © ProxySQL 2013-2020. All rights reserved.

  46. Redeploying ProxySQL rcannao@ercules:~/kubernetes$ helm history proxysql-cluster REVISION UPDATED STATUS CHART

    APP VERSION DESCRIPTION 1 Tue May 19 20:59:50 2020 superseded proxysql-0.1.0 1.0 Install complete 2 Tue May 19 21:17:43 2020 deployed proxysql-0.1.0 1.0 Upgrade complete rcannao@ercules:~/kubernetes$ kubectl get deployments NAME READY UP-TO-DATE AVAILABLE AGE proxysql-cluster 2/2 2 2 32m rcannao@ercules:~/kubernetes$ kubectl rollout restart deployment/proxysql-cluster deployment.apps/proxysql-cluster restarted rcannao@ercules:~/kubernetes$ kubectl get deployments NAME READY UP-TO-DATE AVAILABLE AGE proxysql-cluster 2/2 2 2 33m © ProxySQL 2013-2020. All rights reserved.

  47. Redeploying ProxySQL © ProxySQL 2013-2020. All rights reserved.

  48. Install ingress controller minikube addons enable ingress Patch tcp-services: kubectl

    patch configmap tcp-services -n kube-system --patch '{"data":{"6033":"default/proxysql-cluster:6033"}}' Verify: kubectl get configmap tcp-services -n kube-system -o yaml © ProxySQL 2013-2020. All rights reserved.

  49. Patch ingress controller rcannao@ercules:~/kubernetes$ cat nginx-ingress-controller-patch.yaml spec: template: spec: containers:

    - name: ingress-nginx-controller image: "quay.io/kubernetes-ingress-controller/nginx-ingress-controller:0.32.0" ports: - containerPort: 6033 hostPort: 26033 rcannao@ercules:~/kubernetes$ kubectl patch deployment ingress-nginx-controller --patch "$(cat nginx-ingress-controller-patch.yaml)" -n kube-system deployment.apps/ingress-nginx-controller patched © ProxySQL 2013-2020. All rights reserved.

  50. Connect to ProxySQL MYPASS=$(kubectl get secret --namespace default mysql-8 -o

    jsonpath="{.data.mysql-root-password}" | base64 --decode) mysql -u root -h$(minikube ip) -P26033 -p$MYPASS © ProxySQL 2013-2020. All rights reserved.

  51. Delete ProxySQL service rcannao@ercules:~/kubernetes$ kubectl get deployments NAME READY UP-TO-DATE

    AVAILABLE AGE proxysql-cluster 2/2 2 2 40m rcannao@ercules:~/kubernetes$ kubectl get pods NAME READY STATUS RESTARTS AGE mysql-8-master-0 1/1 Running 0 53m mysql-8-slave-0 1/1 Running 0 53m proxysql-cluster-6fcc9bb6d8-8fz5f 1/1 Running 0 8m34s proxysql-cluster-6fcc9bb6d8-w6glw 1/1 Running 0 8m25s rcannao@ercules:~/kubernetes$ helm delete proxysql-cluster release "proxysql-cluster" uninstalled © ProxySQL 2013-2020. All rights reserved.

  52. Delete ProxySQL service rcannao@ercules:~/kubernetes$ kubectl get deployments No resources found

    in default namespace. rcannao@ercules:~/kubernetes$ kubectl get pods NAME READY STATUS RESTARTS AGE mysql-8-master-0 1/1 Running 0 53m mysql-8-slave-0 1/1 Running 0 53m proxysql-cluster-6fcc9bb6d8-8fz5f 1/1 Terminating 0 8m50s proxysql-cluster-6fcc9bb6d8-w6glw 1/1 Terminating 0 8m41s rcannao@ercules:~/kubernetes$ kubectl get pods NAME READY STATUS RESTARTS AGE mysql-8-master-0 1/1 Running 0 54m mysql-8-slave-0 1/1 Running 0 54m © ProxySQL 2013-2020. All rights reserved.

  53. Deploying ProxySQL as a Sidecar Container

  54. App Server Deployment © ProxySQL 2013-2020. All rights reserved. ProxySQL

    is deployed locally • No network overhead • No single point of failure • Isolated configuration • Rolling upgrades 2

  55. App Server Deployment © ProxySQL 2013-2020. All rights reserved. ProxySQL

    is deployed locally • No network overhead • No single point of failure • Isolated configuration • Rolling upgrades 2 • DB monitoring overhead • More backend connections • Configuration effort • Query cache isolated Configuration management is essential QC1 QC2 QC3

  56. Deploy ProxySQL as a sidecar Install: vi proxysql-sidecar/templates/deployment.yaml helm install

    proxysql-sidecar ./proxysql-sidecar © ProxySQL 2013-2020. All rights reserved.

  57. Deploy ProxySQL as a sidecar rcannao@ercules:~/kubernetes$ kubectl get deployments NAME

    READY UP-TO-DATE AVAILABLE AGE proxysql-sidecar 2/2 2 2 85s rcannao@ercules:~/kubernetes$ kubectl get pods NAME READY STATUS RESTARTS AGE mysql-8-master-0 1/1 Running 0 174m mysql-8-slave-0 1/1 Running 0 174m proxysql-sidecar-fd69678df-4s6f5 2/2 Running 1 89s proxysql-sidecar-fd69678df-xwmcv 2/2 Running 1 89s © ProxySQL 2013-2020. All rights reserved.

  58. Deploy ProxySQL as a sidecar © ProxySQL 2013-2020. All rights

    reserved.

  59. Delete ProxySQL sidecar rcannao@ercules:~/kubernetes$ kubectl get deployments NAME READY UP-TO-DATE

    AVAILABLE AGE proxysql-sidecar 2/2 2 2 16m rcannao@ercules:~/kubernetes$ helm delete proxysql-sidecar release "proxysql-sidecar" uninstalled rcannao@ercules:~/kubernetes$ kubectl get deployments No resources found in default namespace. © ProxySQL 2013-2020. All rights reserved.

  60. Deploying ProxySQL as a Service + Controller

  61. Kubernetes Service + Controller © ProxySQL 2013-2020. All rights reserved.

    • Optionally an additional controller pod can be added • ProxySQL instances serving traffic are never configured, they just pull config from the Controller via ProxySQL Cluster • Controller is configured dynamically via SQL, updates are pushed to the pod – config is re-used and persisted in a volume

  62. ProxySQL Cluster Topologies © ProxySQL 2013-2020. All rights reserved. A

    ProxySQL Cluster can be configured to pull configuration data from a single specific node • Nodes pulling configuration can start with almost zero configuration, just the IP of the controller specified and a short static configuration

  63. ProxySQL Cluster Topologies © ProxySQL 2013-2020. All rights reserved. A

    ProxySQL Cluster can also be configured to pull configuration data from a set of nodes • The same principle applies as in the previous slide regarding static configuration

  64. Deploy ProxySQL Cluster vi proxysql-cluster-controller/files/proxysql.cnf helm install proxysql-cluster-controller ./proxysql-cluster-controller vi

    proxysql-cluster-passive/files/proxysql.cnf helm install proxysql-cluster-passive ./proxysql-cluster-passive © ProxySQL 2013-2020. All rights reserved.

  65. Connect to ProxySQL Patch tcp-services: kubectl patch configmap tcp-services -n

    kube-system --patch '{"data":{"6033":"default/proxysql-cluster-passive:6033"}}' Verify: kubectl get configmap tcp-services -n kube-system -o yaml Connect: mysql -u root -h$(minikube ip) -P26033 -p$MYPASS © ProxySQL 2013-2020. All rights reserved.

  66. Deploying Cascaded ProxySQL on Kubernetes

  67. What is ProxySQL Cascading? © ProxySQL 2013-2020. All rights reserved.

    ProxySQL can be used to provide HA to itself as it communicates using the MySQL Protocol: • Application layer aware • Provides connection retry • Allows for scale up / scale down without connection loss (during planned maintenance) • Transactions may rollback during edge case unplanned failover

  68. ProxySQL Cascading in K8s © ProxySQL 2013-2020. All rights reserved.

    ProxySQL can also be cascaded in a Kubernetes environment, this requires the following: • ProxySQL deployed in the same pod as the application as a separate container, the application then connects to “localhost” • An additional ProxySQL layer is configured using a K8s Service tied to a Replicaset (auto-scale can be implemented) • [Optionally] a ProxySQL Controller pod for the service, this is a ProxySQL instance used ONLY for configuration, traffic ProxySQL instances pull configuration and serve traffic

  69. ProxySQL Cascading in k8s © ProxySQL 2013-2020. All rights reserved.

    • ProxySQL is deployed in each application pod and in a ProxySQL service layer • Applications connect to the local ProxySQL server • Provides load balancing as well as HA

  70. ProxySQL Cascading in k8s © ProxySQL 2013-2020. All rights reserved.

    • ProxySQL is deployed in each application pod and in a ProxySQL service layer • Applications connect to the local ProxySQL server • Provides load balancing as well as HA

  71. ProxySQL Cascading in k8s © ProxySQL 2013-2020. All rights reserved.

    • ProxySQL is deployed in each application pod and in a ProxySQL service layer • Applications connect to the local ProxySQL server • Provides load balancing as well as HA • Open connections are held and retried on an available backend – no connections are lost

  72. ProxySQL Cascading in k8s © ProxySQL 2013-2020. All rights reserved.

    • Note: If the PRIMARY MySQL instance is lost while multiplexing is disabled or a transaction is active – a ROLLBACK will occur • ProxySQL is deployed in each application pod and in a ProxySQL service layer • Applications connect to the local ProxySQL server • Provides load balancing as well as HA • Open connections are held and retried on an available backend – no connections are lost

  73. Thank you!