$30 off During Our Annual Pro Sale. View Details »

【第2回】はじめてのRancherシリーズ「Hosted Rancher編」

cheng
June 05, 2020
Technology
0
290

【第2回】はじめてのRancherシリーズ「Hosted Rancher編」

一般提供が開始されたHosted Rancherにフォーカスを当ててご紹介します。
Hosted Rancherとは、AWS上にホストされたマネージド型Rancher Management Serverです。利用者はManagement Serverの管理工数を削減することが可能となり、Kubernetesの導入と運用に大きなメリットを享受できます。
Hosted Rancherは有償のサービスとなります。詳細はhttps://www.rancher.co.jp/contact/までお問い合わせください

cheng

June 05, 2020
Tweet

More Decks by cheng

See All by cheng
OSSでセキュリティをCI/CDパイプラインに透過的に取込む方法
qiang1981cn
0
86
Rancher v2.6.5 Update情報
qiang1981cn
0
250
NeuVector(Container Security) online meetup 06/30
qiang1981cn
0
170
Harvester 2022/01, オンラインミートアップ
qiang1981cn
0
130
Japan International Kubernetes Day
qiang1981cn
0
44
2021/01/20(水) はじめてのRancherオンラインミートアップ
qiang1981cn
0
220
"Rancherハンズオン with v2.5" ワークショップ 2020/12
qiang1981cn
0
290
Rancher Day 2020 - Rancher Update(racher v2.5))
qiang1981cn
0
36
Rancher Update 2020/10,Rancher v2.5の最新情報
qiang1981cn
0
240

Other Decks in Technology

See All in Technology
なぜコピペで使うコンポーネント集を利用するのか?
mottox2
6
4.5k
Podman with WebAssembly
utam0k
2
230
スクラムマスターやマネージャーのための信頼構築につながる傾聴の技術
kawagoi
6
2.8k
Oracle Cloud Infrastructure(OCI):ご利用ガイド/Onboarding Session Part1(はじめてのOracleCloud)
oracle4engineer
PRO
0
3.3k
イベント企画設計における「フロントエンド」な考え方とその魅力
kgsi
1
1.8k
Snowflake x Terraformに自動テストを導入した話
kddisnowvillage
0
150
なぜ
リアーキテクティング専任チームを作ったのか
kei_s
PRO
1
950
RealSense T265とD415とUFACTORY Lite 6で模倣学習の実験
hygradme
0
290
実践 脱Modifier.composed / Let's Modifier.Node
gya
2
220
ソフトウェアの内部品質に生じる様々な問題は組織設計にその原因があることも多い / Internal Quality Issues Caused by Organizational Design
mtx2s
99
38k
GitHub Universe 主要アップデート
yuhattor
0
200
ExaDB-D dbaascli で出来ること
oracle4engineer
PRO
0
1.1k

Featured

See All Featured
Docker and Python
trallard
31
2.4k
Making the Leap to Tech Lead
cromwellryan
120
8.2k
Faster Mobile Websites
deanohume
296
29k
Typedesign – Prime Four
hannesfritz
35
1.8k
Automating Front-end Workflow
addyosmani
1354
200k
Imperfection Machines: The Place of Print at Facebook
scottboms
257
12k
How to train your dragon (web standard)
notwaldorf
71
4.8k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
0
2.7k
Fantastic passwords and where to find them - at NoRuKo
philnash
34
2.2k
Art Directing for the Web. Five minutes with CSS Template Areas
malarkey
197
11k
Become a Pro
speakerdeck
PRO
8
3.6k
The Invisible Side of Design
smashingmag
291
49k

Transcript

  1. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 1
    © Copyright 2020 Rancher Labs. All Rights Reserved. 1
    Hosted Rancher
    2020/06/05
    CHENG
    Field Engineer

    View Slide

  2. About me
    Jianqiang Cheng(ͪΜ)
    Field Engineer at Rancher Labs.
    [email protected]
    slack.rancher.jp
    ■Favorite technologies:
    Rancher, Kubernetes, AWS, Jenkins.
    ■Certifications:

    View Slide

  3. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 3 3
    Agenda
    • Why Rancher?
    • Why Hosted Rancher?
    • Demo

    View Slide

  4. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 4
    Rancher –
    Kubernetes Management Platform

    View Slide

  5. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 5
    Container Image
    Application Code Application Dependencies
    Container Image

    View Slide

  6. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 6
    Container Image
    Container Image
    Container
    Container
    Container

    View Slide

  7. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 7
    Containers are great……..but
    Managing a couple – no problem

    View Slide

  8. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 8
    Containers are great……..but
    How about managing many? How do we address:
    Networking, Security, Scheduling, Automation, etc?

    View Slide

  9. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 9
    DEV DATA
    CENTER
    CLOUD
    BRANCH EDGE
    ü Common API & Packaging
    ü Health Checks/HA
    ü Load Balancing
    ü Overlay Networking
    ü Network Security Policies
    ü Backup and Recovery
    ü Autoscaling
    ü Service Discovery
    ü Networking
    ü RBAC & Access Control
    © Copyright 2020 Rancher Labs. All Rights Reserved. 9
    Kubernetes

    View Slide

  10. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 10
    Kubernetesを正しく管理出来なければ、
    オーバーヘッドとリスクを発生させる可能性
    集中的な管理と
    可視化が出来ない
    一貫した
    セキュリティポリシーが
    適用出来ていない
    管理がサイロ化
    されていることがある
    よくあるKubernetesクラスタの実情は、
    © Copyright 2020 Rancher Labs. All Rights Reserved. 10

    View Slide

  11. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 11
    Rancherは幅広いプラットフォームに対応
    Hybrid Cloud、Multi Cloud一元管理を実現
    Infrastructure
    ITOps
    DevOps - Provisioning
    - Auth/RBAC
    - Policy
    - Security
    - Capacity
    © Copyright 2020 Rancher Labs. All Rights Reserved. 11
    - User Interface
    - Service Catalog
    - CI/CD
    - Monitoring
    - Logging
    - Alerting
    クラスタ一元管理
    セルフサービス
    クラスタ環境の利用
    Amazon
    EKS
    Azure
    AKS
    Google
    GKE
    Cloud
    Datacenter Dev Branch Edge
    Windows Linux

    View Slide

  12. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 12
    Kubernetes
    KubernetesΤίγεςϜ͕ɺ๲େͳ΋ͷͰ͢ - https://landscape.cncf.io
    (These are just the
    Storage projects)

    View Slide

  13. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 13
    RancherがKubernetesにもたらすもの
    13
    Network & Storage
    Registry
    App Catalog
    Monitoring
    Kubernetes
    Container Runtime
    CI/CD
    Service Mesh
    Logging
    Security RBAC & PSP
    Authentication
    What Rancher takes an SLA on
    Manage all this? … or this?
    Rancher Certified Integrations
    Cloud
    Datacenter
    Dev Branch Edge
    Google
    GKE
    Azure
    AKS
    Amazon
    EKS

    View Slide

  14. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 14
    UseCase – Alpaca Japan

    View Slide

  15. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 15
    Alpaca Japanのインフラ
    引用:https://speakerdeck.com/taishin/rancherday2019-alpacajapan

    View Slide

  16. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 16
    Rancherによる課題解決
    引用:https://speakerdeck.com/taishin/rancherday2019-alpacajapan

    View Slide

  17. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 17
    Rancherによる課題解決
    引用:https://speakerdeck.com/taishin/rancherday2019-alpacajapan

    View Slide

  18. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 18
    Rancherによる課題解決
    引用:https://speakerdeck.com/taishin/rancherday2019-alpacajapan

    View Slide

  19. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 19
    Rancherによる課題解決
    引用:https://speakerdeck.com/taishin/rancherday2019-alpacajapan

    View Slide

  20. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 20
    Hosted Rancher

    View Slide

  21. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 21
    nRancherの構築と運用の手間を省きたい
    n運用管理メンバーが足りない
    n環境関連の問合せを減らしたい
    Customer Pain Points
    nRancherの構築運用のベストプラクティスが知らない
    nRancherバージョンアップの作業に不安を感じる
    nノンコア業務のRancher運用を他社に任せたい

    View Slide

  22. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 22
    Typical Rancher Deployment
    Rancher HA
    Deployment
    etcd etcd etcd
    Endpoint URL
    On-premises infrastructure Cloud infrastructure
    Imported
    Clusters
    EKS AKS GKE
    Vanity URL Endpoint
    Hosted Rancher HA
    Deployment

    View Slide

  23. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 23
    Rancher recommended set up model
    Rancher Management
    Server Cluster - prod
    All-in-one nodes
    (cp/etcd/worker)
    Node
    Node Node
    Node Node
    Node Node Node
    Node Node Node
    Managed Kubernetes
    Cluster 1 – prod
    Node Node
    Node Node Node
    Node Node Node
    Node
    Managed Kubernetes
    Cluster 2 – prod
    Node
    Control Plane
    etcd
    Worker
    Worker
    Node Node
    Node Node Node
    Node Node
    Cluster 3- Hosted K8S - prod
    Control Plane
    etcd
    Node
    Worker
    Cloud Hosted
    (GKE, EKS, AKS)
    Environment
    The Rancher Management Server cluster
    manages all downstream k8s. The k8s
    required to run Rancher are not counted in
    the down stream Rancher host count.
    No cost.
    Rancher hosts are the downstream
    Kubernetes compute nodes managed by the
    Rancher Management Server cluster.
    Control Plane
    etcd
    Worker

    View Slide

  24. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 24
    How Hosted Rancher works
    RDS ALB
    ASG
    VPC
    Downstream cluster
    (on-prem datacenter)
    Downstream clusters
    (cloud-hosted)
    Customer on-prem
    datacenter
    RKE Etcd
    Nodes
    RKE Control
    Plane Nodes
    Control
    Plane
    MS AD or
    LDAP
    Route 53
    DNS
    API/UI over
    HTTPS/TLS
    (443)
    Customer
    RKE Worker
    Nodes
    RKE Worker
    Nodes
    RKE Worker
    Nodes
    Worker
    Nodes
    RKE Worker
    Nodes
    vSphere
    Nodes
    VPC Peering or VPN
    Splunk
    Elasticsearch
    etc
    Websocket
    over
    HTTPS/TLS
    (443)

    View Slide

  25. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 25
    Hosted RancherͷϝϦοτ
    Add-on to Platinum
    subscription
    ‘White glove’
    DevOps service with
    99.9% SLA
    Remote monitoring and
    log management by
    Rancher’s experts
    Hosted Rancher
    control plane,
    available 24/7/365
    Stress-free
    upgrades, security
    patches & backups
    Maintain full visibility
    & control of
    downstream clusters
    24/7/365の稼働 99.9%の可用性 Rancher管理者権限の付与
    Rancher定期メンテナンス不要 Rancher運用監視不要 サポートの追加オプションとして提供

    View Slide

  26. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 26
    • Amazon Web Services (AWS)
    • Packer & Terraform
    • Ubuntu Server 18.04.3 LTS
    • K8s -> K3s
    • Docker -> Containerd
    • etcd -> MySQL using RDS
    • Prometheus Monitoring & Alerting (via Rancher)
    • Longhorn (for metrics persistent storage)
    • Latest stable Rancher
    Tech Stack

    View Slide

  27. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 27
    Demo

    View Slide

  28. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 28
    RancherがKubernetesにもたらすもの
    28
    Network & Storage
    Registry
    App Catalog
    Monitoring
    Kubernetes
    Container Runtime
    CI/CD
    Service Mesh
    Logging
    Security RBAC & PSP
    Authentication
    What Rancher takes an SLA on
    Manage all this? … or this?
    Rancher Certified Integrations
    Cloud
    Datacenter
    Dev Branch Edge
    Google
    GKE
    Azure
    AKS
    Amazon
    EKS

    View Slide

  29. © Copyright 2020 Rancher Labs. All Rights Reserved. Confidential 31
    5IBOLT
    ͋Γ͕ͱ͏͍͟͝·͢ɻ

    View Slide