Upgrade to Pro — share decks privately, control downloads, hide ads and more …

ChaDevOps: Deploying Self Healing Services with Kubernetes

Rob Scott
June 21, 2017
Technology
0
630

ChaDevOps: Deploying Self Healing Services with Kubernetes

In this talk I tell the story of how Kubernetes kept Spire systems running through an AWS service disruption. From there I go through a demo showing just how simple it is to deploy self healing services with Kubernetes. You'll learn how to avoid some common problems, and should leave this talk with everything you need to get started with Kubernetes.

Related to this Presentation:

GitHub (https://github.com/robscott/self-healing-k8s-demo)

Further Reading:

The Children's Illustrated Guide to Kubernetes (https://deis.com/blog/2016/kubernetes-illustrated-guide/)

Quickstart for Google Container Engine (https://cloud.google.com/container-engine/docs/quickstart)

Setting up an HA Kubernetes Cluster in AWS with private topology with Kops 1.5.1 (https://www.nivenly.com/kops-1-5-1/)

KubeCon Videos (https://www.youtube.com/playlist?list=PLj6h78yzYM2PAavlbv0iZkod4IVh_iGqV)

Rob Scott

June 21, 2017
Tweet

More Decks by Rob Scott

See All by Rob Scott
ChaDev: From Cargo Ships to Shipping Docker Containers
robscott
1
260
ChaDev: Deploying Self Healing Services with Kubernetes
robscott
0
400

Other Decks in Technology

See All in Technology
TransitGatewayの基礎
toru_kubota
0
230
コードを書く隙間を見つけて生きていく技術/Findy 思考の現在地
fujiwara3
24
4.9k
ユーザーストーリーのレビューを自動化したみたの
bun913
1
300
元インフラエンジニアに成る / Human Resources to Human Relations
bobtani
2
750
転移学習とドメイン適応の基礎
kmatsui
2
570
Discord とビルダー&チャットボットの使い方 / How to use Discord and Builder & Chatbots
ks91
PRO
0
130
長期間TiDBを使ってきた話 @ 私たちはなぜNewSQLを使うのかTiDB選定5社が語る選定理由と活用LT / Experiences with TiDB Over Time
chibiegg
2
650
[2024年3月版] Databricksのシステムアーキテクチャ
databricksjapan
7
1.9k
【SORACOM UG】SIM Deep Dive セキュアエレメント編
soracom
PRO
0
250
4年前、あるじゃん老害エンジニアLT合戦に登壇、米国西海岸コンピュータ歴史博物館体験記の続編
toshi_atsumi
0
190
Signals Unleashed: The Full Guide
rainerhahnekamp
0
360
SREとその組織類型
tatsuo48
8
1.5k

Featured

See All Featured
What the flash - Photography Introduction
edds
64
11k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
18
1.7k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
60
14k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
1
3.4k
GraphQLの誤解/rethinking-graphql
sonatard
50
9.2k
Designing for Performance
lara
602
67k
Design by the Numbers
sachag
274
18k
Become a Pro
speakerdeck
PRO
10
4.5k
Large-scale JavaScript Application Architecture
addyosmani
503
110k
Designing for humans not robots
tammielis
247
25k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
119
38k
Imperfection Machines: The Place of Print at Facebook
scottboms
258
12k

Transcript

  1. Deploying Self Healing Services with Kubernetes Rob Scott | @robertjscott

    ChaDevOps, June 20, 2017

  2. @spire spire.me

  3. Remember This? February 28, 2017

  4. None

  5. All Spire systems were still up

  6. It’s never that simple

  7. All Spire systems were still up

  8. Our Systems Before Kubernetes

  9. The core services powering Spire Website API Scheduler HTTP Services

    Background Services Background Processing Notifications Management Portal

  10. Node 1 Notifications Background Processing API Management Portal What it

    all looks like in Kubernetes API Website STAGING DEMO QA QA Scheduler Website QA STAGING STAGING Node 2 Notifications Background Processing API Management Portal API Website DEMO QA QA Website STAGING Node 3 Notifications Background Processing Management Portal API STAGING DEMO DEMO Scheduler Website DEMO DEMO Notifications Notifications DEMO DEMO Background ProcessingQA Node 4 Notifications API Management Portal Website QA QA Scheduler Background Processing DEMO Background ProcessingQA Management Portal STAGING DEMO STAGING STAGING QA Management Portal STAGING STAGING STAGING DEMO QA

  11. Node 1 Notifications Background Processing API Management Portal What if

    a Node dies? API Website STAGING DEMO QA QA Scheduler Website QA STAGING STAGING Node 2 Notifications Background Processing API Management Portal API Website DEMO QA QA Website STAGING Node 3 Notifications Background Processing Management Portal API STAGING DEMO DEMO Scheduler Website DEMO DEMO Notifications Notifications DEMO DEMO Background ProcessingQA Node 4 Notifications API Management Portal Website QA QA Scheduler Background Processing DEMO Background ProcessingQA Management Portal STAGING DEMO STAGING STAGING QA Management Portal STAGING STAGING STAGING DEMO QA

  12. Node 1 Notifications Background Processing API Management Portal After redistribution

    API Website STAGING DEMO QA QA Scheduler Website QA STAGING STAGING Node 2 Notifications Background Processing API Management Portal API Website DEMO QA QA Website STAGING Node 3 Notifications Background Processing Management Portal API STAGING DEMO DEMO Scheduler Website DEMO DEMO Notifications Notifications DEMO DEMO Background ProcessingQA Notifications API Management Portal Website QA QA Scheduler Background Processing DEMO Background ProcessingQA Management Portal STAGING DEMO STAGING STAGING QA Management Portal STAGING STAGING STAGING DEMO QA

  13. Kuberwhat?

  14. Initial Release: July 21, 2015 Google partnered with the Linux

    Foundation to form the Cloud Native Computing Foundation (CNCF) to govern Kubernetes.

  15. Container Orchestration Tools SWARM

  16. Container Orchestration Trends

  17. Container Orchestration Trends

  18. Demo Everything you’ll need to deploy your own self healing

    services with Kubernetes.

  19. Namespace Kubernetes Foundation

  20. apiVersion: v1 kind: Namespace metadata: name: self-healing-k8s-demo

  21. None

  22. Service Kubernetes Foundation

  23. apiVersion: v1 kind: Service metadata: name: self-healing-k8s-demo spec: type: LoadBalancer

    selector: app: self-healing-k8s-demo ports: - protocol: TCP port: 80 targetPort: 3000
  24. None

  25. Pod Kubernetes Foundation

  26. apiVersion: v1 kind: Pod metadata: name: demo-pod labels: app: self-healing-k8s-demo

    spec: containers: - name: demo-http-server image: quay.io/robertjscott/demo-http-server:0.1.1
  27. None
  28. None
  29. None

  30. Deployment Kubernetes Foundation

  31. apiVersion: extensions/v1beta1 kind: Deployment metadata: name: demo-deployment spec: replicas: 3

    template: metadata: labels: app: self-healing-k8s-demo spec: containers: - name: demo-http-server image: quay.io/robertjscott/demo-http-server:0.1.1
  32. None
  33. None

  34. Example: Bad Code Example

  35. None
  36. None

  37. Liveness Probes Key Concept

  38. spec: containers: - name: demo-http-server image: quay.io/robertjscott/demo-http-server:0.1.1 livenessProbe: httpGet: path:

    /alive port: 3000 periodSeconds: 5 timeoutSeconds: 1
  39. None

  40. Example: Slow Server Example

  41. containers: - name: demo-http-server image: quay.io/robertjscott/demo-http-server:0.1.1 livenessProbe: httpGet: path: /alive

    port: 3000 periodSeconds: 5 timeoutSeconds: 1 initialDelaySeconds: 45 env: - name: STARTUP_DELAY_SECONDS value: '40'
  42. None

  43. Readiness Probes Key Concept

  44. containers: - name: demo-http-server image: quay.io/robertjscott/demo-http-server:0.1.1 livenessProbe: httpGet: path: /alive

    port: 3000 periodSeconds: 5 timeoutSeconds: 1 initialDelaySeconds: 45 readinessProbe: httpGet: path: /ready port: 3000 periodSeconds: 5 timeoutSeconds: 1
  45. None

  46. Example: Mayhem Example

  47. apiVersion: extensions/v1beta1 kind: Deployment metadata: name: mayhem-deployment spec: replicas: 5

    template: metadata: labels: app: mayhem spec: containers: - name: mayhem image: quay.io/robertjscott/mayhem:0.1.0
  48. None

  49. Resource Limits Key Concept

  50. spec: containers: - name: mayhem image: quay.io/robertjscott/mayhem:0.1.0 resources: requests: memory:

    64Mi cpu: 125m limits: memory: 64Mi cpu: 125m
  51. None

  52. Recap

  53. Liveness Probes When these probes fail, Kubernetes attempts to restart

    the container.

  54. Readiness Probes Kubernetes does not send traffic to the container

    until these probes succeed.

  55. Resource Limits Without enforcing proper resource limits, a single rogue

    container can take down a node.

  56. Bonus

  57. Affinity and Anti-Affinity Proper configuration can ensure your pods are

    deployed across availability zones or regions.

  58. nodeAffinity: requiredDuringSchedulingIgnoredDuringExecution: nodeSelectorTerms: - matchExpressions: - key: failure-domain.beta.kubernetes.io/zone operator: In

    values: - us-east-1c - us-east-1d

  59. preferredDuringSchedulingIgnoredDuringExecution: - weight: 1 preference: matchExpressions: - key: beta.kubernetes.io/instance-type operator:

    In values: - m4.large

  60. Where to go from here • The Children's Illustrated Guide

    to Kubernetes • Quickstart for Google Container Engine • Setting up an HA Kubernetes Cluster in AWS with private topology with Kops 1.5.1 • KubeCon Videos

  61. With proper configuration, Kubernetes services can heal themselves @robertjscott |

    robertjscott.ca