Rancher Virtual Rodeo Japan 2020/04「初回編」オンラインワークショップ

Transcript

1. © Copyright 2019 Rancher Labs. All Rights Reserved. Confidential 1

   © Copyright 2020 Rancher Labs. All Rights Reserved. 1 Rancher Rodeo Cheng Rancher Labs

2. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 2

   Objectives for the day l Docker͓ΑͼKubernetes͓͞Β͍ l Lab؀ڥ HobbyFarm આ໌ l Rancher Serverߏங l KubernetesΫϥελʔߏங l hello-worldΞϓϦέʔγϣϯΛΫϥελʔʹσϓϩΠ l WordPressΛΫϥελʔʹσϓϩΠ

3. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 3

   Forewarning l ͜ͷRodeo͸ɺKubernetesͱRancherͷॳ৺ऀ޲͚ʹઃܭ͞Ε͍ͯ·͢ l ͜͜ʹ঺հ͞Ε͍ͯΔ಺༰͸ɺඞͣ͠΋ຊ൪؀ڥͰͷӡ༻ํ๏Ͱ͸͋Γ·ͤ Μ͕ɺຊ൪؀ڥ޲͚ͷجૅ஌ࣝͱߟ͍͖͍͑ͯͨͩͨͰ͢

4. © Copyright 2019 Rancher Labs. All Rights Reserved. Confidential 4

   4 Container Images

5. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 5

   Container Image Application Code Application Dependencies Container Image

6. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 6

   Container Image Container Image Container Container Container

7. © Copyright 2019 Rancher Labs. All Rights Reserved. Confidential 7

   7 Containers

8. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 8

   Containers l ΠϝʔδΛݩʹ࡞੒͞ΕΔԾ૝؀ڥͷ࣮ߦ෦෼ʢinstanceʣ l ϙʔλϏϦςΟr ΞϓϦέʔγϣϯΛ̍ճϏϧυ͢Ε͹ɺͲ͜Ͱ΋ಉ࣮͘͡ߦͰ͖Δ l ΞϓϦέʔγϣϯΛɺܰྔͳִ཭͞Εͨ؀ڥʹ࣮ߦͰ͖Δ l ΞϓϦέʔγϣϯͷΠϯελϯεΛਫฏํ޲ʹ؆୯ʹεέʔϦϯάͰ͖Δ

9. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 9

   Containers Source : https://www.docker.com/resources/what-container

10. © Copyright 2019 Rancher Labs. All Rights Reserved. Confidential 10

    10 Registries

11. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 11

    Registries

12. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 12

    Registries l ΠϝʔδΛ֨ೲ͢ΔͨΊͷ৔ॴ l Public l Private l On-prem / Cloud l ੡඼ྫ l Amazon Elastic Container Registry l Azure Container Registry l Docker Hub l Ұ෦ͷ੡඼͸ػೳ֦ு΋͍ͯ͠Δ l Vulnerability scanning l LDAP / AD Support l Auditing l Replication l etc

13. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 13

    Containers are great……..but Managing a couple – no problem

14. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 14

    Containers are great……..but How about managing many? How do we address: Networking, Security, Scheduling, Automation, etc?

15. © Copyright 2019 Rancher Labs. All Rights Reserved. Confidential 15

    15 K8s – Container Orchestration

16. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 16

    Kubernetes l Kubernetes͸ɺίϯςφԽ͞ΕͨϫʔΫϩʔυ΍αʔϏεΛ؅ཧ͢ΔͨΊͷɺ ϙʔλϒϧͰ֦ுੑͷ͋ΔΦʔϓϯιʔεϓϥοτϗʔϜͰ͢ l Kubernetes͸ɺYAMLܗࣜ΍JSONܗࣜͰهड़ͨ͠એݴతͳίʔυʢظ଴ͳঢ় ଶʣʹΑͬͯɺσϓϩΠ͢Δίϯςφ΍पลϦιʔεΛ؅ཧ͠·͢

17. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 17

    Kubernetes Architecture l Controlplane
    Ϋϥε λʔ؅ཧػೳɺ"1*Πϯ λϑΣʔεΛఏڙ l Etcd: ΩʔόϦϡʔετ ΞͰɺKubernetesͷશͯ ͷΫϥελʔ৘ใͷอଘ ৔ॴ l Worker: ίϯςφʢϫʔ Ϋϩʔυʣ͕࣮ࡍʹσϓ ϩΠ͞ΕΔϚγϯ API / CLI

18. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 18

    Kubernetes Resources - Pod l ϫʔΫϩʔυͷ࠷খ୯Ґ l αʔόʔԾ૝Խʹ͓͍ͯɺhypervisor্ͷ1ͭͷ VM૬౰ͷײ͡ l 1ͭҎ্ͷίϯςφΛؚΉ l ԼهϦιʔε΋ؚΉ: l Storage (ie shared volumes) l Networking l 1ͭͷϊʔυׂ͕Γ౰ͯΒΕ͍ͯΔ

19. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 19

    Kubernetes Resources - Deployment l ෳ਺ͷಉ͡ Pod Λ؅ཧ͢ΔͨΊͷϦιʔε l ෳ਺ͷಉ͡ 1PE
    ΛάϧʔϓͰ؅ཧ l Updating l Scaling l Rollback l ݱࡏͷঢ়ଶΛࢦఆ͞Εͨঢ়ଶ΁มߋ

20. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 20

    Kubernetes – Declarative Syntax ✓

21. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 21

    Kubernetes Resources - Service l Pod͸ඞͣ͠΋Ӭଓੑ͕ߴ͍΋ͷͰ͸ͳ͍ l Podʹ௚઀ΞΫηε͠ͳ͍Ͱʂ l Podsͷू߹Ͱ࣮ߦ͞Ε͍ͯΔΞϓϦέʔγϣϯΛ ωοτϫʔΫαʔϏεͱͯ͠ެ։͢Δந৅తͳํ๏ l Podͷηοτʹର͢Δ୯ҰͷIP/DNS໊Λఏڙ l Services͸಺෦ΞΫηε޲͚(ClusterIP)ͱ ֎෦ΞΫη ε޲͚(NodePort & Loadbalancer)ͷ2छྨ

22. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 22

    Kubernetes Resources - Service 10.42.0.4 10.42.0.5 10.42.0.6 Endpoints: 10.42.0.4 10.42.0.5 10.42.0.6 Type : LoadBalancer 10.42.0.7 Endpoints: 10.42.0.4 10.42.0.5 10.42.0.7

23. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 23

    Kubernetes Resources - Ingress l Ϋϥελʔ಺ͷServiceʹର͢Δ֎෦͔ΒͷΞΫηεΛ ؅ཧ l ओʹHTTP l Serviceʹରͯ͠ɺ֎෦͔ΒΞΫηεͳՄೳURLΛఏڙ l ෛՙ෼ࢄ(Load Balance traffic) ͷػೳΛఏڙ l SSLऴ୺(Terminate) ͷػೳΛఏڙ l ໊લϕʔεͷԾ૝ϗεςΟϯάͷػೳΛఏڙ

24. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 24

    Kubernetes Resources - Ingress Kubernetes Cluster /bar /foo ServiceA ServiceB foo.bar.com/bar foo.bar.com/foo

25. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 25

    Kubernetes KubernetesΤίγεςϜ͕ɺ๲େͳ΋ͷͰ͢ - https://landscape.cncf.io (These are just the Database projects)

26. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 27

    Lab環境(HobbyFarm)説明 l [e-mail] ɺ [password] ͰϩάΠϯ

27. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 28

    Lab環境(HobbyFarm)説明 l ؀ڥߏ੒ αʔόʔɿrancher01 αʔόʔɿcluster01

28. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 29

    29 What is RKE RKE͸ɺΫϥ΢υɺΦϯϓϨϛεɺٴͼϩʔΧϧ؀ڥʹkubernetesΫϥελ Λ؆୯ʹσϓϩΠͰ͖ΔCLIπʔϧͰ͢ɻ

29. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 30

    30 What is RKE ಛ௃ • ର৅ϊʔυʹ44)઀ଓͯ͠ϓϩϏδϣχϯάΛ࣮ࢪ • LVCFSOFUFTͷ֤छίϯϙʔωϯτ FUDE΍BQJTFSWFSͳ Ͳ Λίϯςφͱͯ͠ىಈ • )"ͳΫϥελΛߏஙՄೳ

30. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 31

    31 What is RKE

31. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 32

    32 What is RKE ࢖͍ํ • ࣄલʹΫϥελʔ༻ͷϊʔυΛ༻ҙ • SLFఆٛϑΝΠϧΛ࡞੒ • SLF VQ࣮ߦͰΫϥελʔߏங

32. © Copyright 2019 Rancher Labs. All Rights Reserved. Confidential 33

    © Copyright 2020 Rancher Labs. All Rights Reserved. 33 Intermission