Running 30-year old software as a cloud native SaaS solution in Azure with Docker and Kubernetes

Transcript

1. Running 30-Year-Old Software as a Cloud Native SaaS Solution with

   Docker and Kubernetes on Azure Roy Cornelissen Xpirit @roycornelissen Level: Introductory/Intermediate

2. Let’s start with some background @roycornelissen

3. KONGSBERG

4. MARITIME SIMULATION FOR TRAINING, EDUCATION & ENGINEERING

5. DIGITALIZATION FULL MISSION PART TASK TRAINER DESKTOP

6. ANYTIME & ANYWHERE™ FULL MISSION PART TASK TRAINER DESKTOP ANYTIME

   & ANYWHERE

7. PROJECT TRIDENT SIMULATION AS A SERVICE (SAAS)

8. K-SIM CONNECT The ecosystem for connect the users, the data

   and the simulators to create an environment for generating new possibilities and new business CONFIGURATION Seamless integration of site configuration tools for creation, deployment and management. SIMULATORS Bringing the on premise simulators and cloud based simulators together to create seamless virtual simulators and simulator networks ROLE BASED ACCESS Acquiring and managing users and partners through ecosystem registration and login. Designating specific content, forms, and automated workflows for unique users based on roles DEVELOPER WORKFLOW Creating a community of certified K-Sim developers for content and features. Providing tools, services in a tailored automated workflow for accelerating content creation. SUPPORT Connecting user, simulators and data to create more efficient support workflows for user self service and for Kongsberg customer support team. SOFTWARE UPDATES K-Sim software supply chain automates the software update on simulators in a DevOps style controlled by the user. DATA Handling exercises, configurations and other simulation related data.

9. Å svelgenoen kameler First… You have to swallow some camels…

   @roycornelissen

10. MEET: THE ENGINE ROOM SIMULATOR

11. NEPTUNE ERS TOPOLOGY (SIMPLIFIED) User Interface Simulator

12. NEPTUNE ERS TOPOLOGY (SIMPLIFIED) User Interface Simulator

13. NEPTUNE ERS TOPOLOGY (SIMPLIFIED) User Interface Simulator K-SIM CONNECT

14. NEPTUNE ERS TOPOLOGY (SIMPLIFIED) User Interface Simulator K-SIM CONNECT

15. K-SIM CONNECT NEPTUNE ERS TOPOLOGY (SIMPLIFIED) User Interface Simulator

16. DOCKER Dockerize all the things!!1!

17. Å være pling i bollen Containers: at first I was

    a ping in the bowl @roycornelissen

18. RUNNING CONTAINERS ON LINUX

19. CONTAINERS ON WINDOWS Better isolation from hypervisor virtualization Container management

    Docker Engine Compute

20. Å sitter med s kjegget i postkassa To sit with

    your beard in the post box

21. CHALLENGES… How do you containerize: • Low level Win32 API

    calls with C++ • Use of arcane system constructs like /etc/services • Dynamic ports allocated by simulator middleware • Use of OLE32 dll’s • Registry settings • …

22. OUR WINDOWS CONTAINERS mcr.microsoft.com/windows/servercore vcpp simulator scc-ii Base image: mcr.microsoft.com/windows/servercore:1809

    Installs VC++ Runtimes & prerequisites Installs generic Neptune simulator software Installs engine room specific software (TPP, SCC-II, etc.) tpp …

23. DEMO @roycornelissen

24. None

25. HOSTING USING CLUSTER ORCHESTRATORS Largely cloud provider-agnostic Ability to host

    almost anywhere: on-premises or cloud provider of choice Cluster Fabric High Availability Hyper-Scale Hybrid Operations High Density Rolling Upgrades Stateful services Low Latency Fast startup & shutdown Container Orchestration & lifecycle management Replication & Failover Simple programming models Load balancing Self-healing Data Partitioning Automated Rollback Health Monitoring Placement Constraints Microservices Mesos DC/OS Docker Swarm Google Kubernetes Azure Service Fabric

26. NEPTUNE ERS TOPOLOGY (SIMPLIFIED) User Interface Simulator K-SIM CONNECT

27. NEPTUNE ERS TOPOLOGY (SIMPLIFIED) User Interface Simulator K-SIM CONNECT

28. User Interface NEPTUNE ERS TOPOLOGY (SIMPLIFIED) Simulator K-SIM CONNECT Websockets

    HTTPS

29. KUBERNETES: THE ORCHESTRATOR OF CHOICE Simulator Pod 1 Simulator Pod

    n Student 1 Student n

30. KUBERNETES: THE ORCHESTRATOR OF CHOICE Service 1 Simulator Pod 1

    Service N Simulator Pod n Student 1 Student n

31. public IP KUBERNETES: THE ORCHESTRATOR OF CHOICE Service 1 <LoadBalancer>

    Simulator Pod 1 Service N <LoadBalancer> Simulator Pod n Student 1 Student n public IP

32. public IP KUBERNETES: THE ORCHESTRATOR OF CHOICE Service 1 Simulator

    Pod 1 Service n Simulator Pod n Student 1 Student n ?

33. public IP KUBERNETES: THE ORCHESTRATOR OF CHOICE Ingress Controller Service

    1 Simulator Pod 1 Service n Simulator Pod n Ingress 1 Ingress n Student 1 Student n /abc /xyz

34. public IP KUBERNETES: THE ORCHESTRATOR OF CHOICE Ingress Controller Scheduler

    Service 1 Simulator Pod 1 Service n Simulator Pod n Ingress 1 Ingress n Student 1 Student n /abc /xyz

35. public IP KUBERNETES: THE ORCHESTRATOR OF CHOICE Ingress Controller Scheduler

    Service 1 Simulator Pod 1 Service n Simulator Pod n Ingress 1 Ingress n SignalR Hub Connect Portal Student 1 Student n Launch simulator Create Pod Create service Create ingress Return URL Launch client & connect

36. A look under the hood… @roycornelissen

37. RUNNING WINDOWS CONTAINERS ON AZURE

38. None

39. SOME CAVEATS • Windows containers community is small • Windows

    support in Kubernetes was not there yet (2017) • AKS did not (yet) support Windows Containers • Windows images are were HUGE • Windows container images are tied to Window Server version • Kubernetes services run as Linux containers

40. Windows node pool Linux node pool A MIXED CLUSTER Master

    Node 1.1 Node 2.1 Node 2.2 Node 1.2 Kubernetes cluster

41. ACS AKS ENGINE

42. Windows node pool Linux node pool A MIXED CLUSTER Master

    Node 1.1 Node 2.1 Node 2.2 Node 1.2 Kubernetes cluster
43. None

44. LEARNINGS • The ancient stuff works surprisingly well in Windows

    Containers • Windows containers in Kubernetes were “experimental” • Setting up a mixed cluster was even more “experimental” • Lots and lots of issues with external DNS from Windows pods • Sometimes a Pod just doesn’t start • Sometimes a Pod just “breaks” • Sometimes the disks on a node were full (image size) • Sometimes nodes just “drop out”

45. Snørr og bart To separate the snot from the mustache

46. RECENT DEVELOPMENTS • Windows containers have been a lot more

    stable the past few months • Windows server 1809 images supposed to be much smaller • Since 1.14.0 (25-03) Kubernetes officially supports Windows nodes • Since 0.33.1 (26-03) AKS engine supports Kubernetes 1.14.0 • Support for Windows nodes in AKS have become available

47. WINDOWS SERVER IMAGE SIZE 6560 4990 1400 341 364 94

    0 1000 2000 3000 4000 5000 6000 7000 Windows 1709 Windows 1803 Windows 1809* Windows server core Nano server

48. WINDOWS SERVER 1809 VS LINUX IMAGES 94 129 101 85,8

    1,2 0 20 40 60 80 100 120 140 Windows Nano Server Debian - Jessie Debian - Stretch Ubuntu Busybox Image size

49. I HAVE A DREAM…

50. Windows node pool Linux node pool AKS + VIRTUAL KUBELET

    + ACI Master AKS cluster Azure Container Instances Virtual Kubelet

51. AKS + VIRTUAL KUBELET + ACI • ACI Pay as

    you go pricing model fits perfectly with our business case • AKS does not support multiple node pools (yet) • AKS does not support windows node pools (yet) • Startup time on ACI is too slow (~10 minutes) • Our images MUST match the supported ACI Windows server version

52. TAKEAWAYS •Do you really need Kubernetes? •Use Linux containers (if

    you can) •If you really need Windows, use Nano Server 1809 (if you can) •In very specific scenarios, use Windows Server Core 1809 •Wait for full AKS support for Windows (if you can)

53. Å være midt i smørøyet To be in the middle

    of the butter melting in the porridge @roycornelissen

54. POP QUIZ! @roycornelissen

55. @roycornelissen blog.roycornelissen.com