Building Reliable Distributed Systems on GCP

Building Reliable Microservices on GCP Jun Sakata Google Developers Expert,
Cloud

Building Reliable Microservices on GCP Jun Sakata Google Developers Expert,
Cloud Distributed Systems

- Google Developers Expert, Cloud - SRE/Technical Advisor - Travel/Photography/Cooking
- GKE/Cloud Run @sakajunquality

Agenda - Microservices and Kubernetes - Service Mesh - Trafﬁc
Director - Serverless Runtime - Proxyless gRPC services - Takeaways

- Deﬁnition of microservices - Difference between microservices and distributed
monolith - Pros and Cons of microservices - Technical Details of Kubernetes/Istio Those are NOT to be covered today!

Microservices and Kubernetes Distributed Systems

Microservices?

“Microservices are independently deployable services modeled around a business domain.
They communicate with each other via networks, and as an architecture choice offer many options for solving the problems you may face.” Monolith to Microservices by Sam Newman

They communicate with each other via networks, and as an architecture choice offer many options for solving the problems you may face.” Monolith to Microservices by Sam Newman Not covered today!

They communicate with each other via networks, and as an architecture choice offer many options for solving the problems you may face.” Monolith to Microservices by Sam Newman

“Today, it’s arguable that most applications are distributed in some
fashion, even if they don’t use microservices.” Distributed Tracing in Practice by Rebecca Isaacs; Ben Sigelman; Daniel Spoonhower; Jonathan Mace; Austin Parker

should support… - communication over network - variety of workloads,
backends... Platform for Microservice-like Architecture

- Platform for container workloads - based on on Google’s
Borg - Orchestrates computing, networking, and storage resources for containers Kubernetes (Quick Recap)

With Kubernetes… Kubernetes master Service A Manifest Image gcr.io/sakajunquality-test/foo-bar CPU
1, Memory 2G

With Kubernetes… Kubernetes master Service A Manifest Image gcr.io/sakajunquality-test/foo-bar CPU
1, Memory 2G apiVersion: apps/v1 kind: Deployment metadata: name: service-a labels: app: service-a spec: replicas: 1 selector: matchLabels: app: nginx template: metadata: labels: app: service-a spec: containers: - name: service-a image: gcr.io/sakajunquality... ports: - containerPort: 8080

Service A Workloads With Kubernetes… Kubernetes master Service A Manifest
Image gcr.io/sakajunquality-test/foo-bar CPU 1, Memory 2G Image gcr.io/sakajunquality-test/foo-bar CPU 1, Memory 2G

Service A Workloads Service B Workloads With Kubernetes… Kubernetes master
Service A Manifest Service B Manifest In the same way... And More…!

Perfect?

Not so much...

Consider Service to Service connection Service A Service B

Service to Service connection Service A Service B Where is
Service B? When I should retry? How long should I wait the response? Is this a valid request? What’s going on here?

- (Intelligent) Service Discovery - (Intelligent) Trafﬁc Control - Observability
- Authn/Authz etc... What’s missing in Kubernetes

Service to Service connection Service A Service B Where is
Service B? When I should retry? How long should I wait the response? Is this a valid request? What’s going on here? Observability Service Discovery Authn/Authz Trafﬁc Control

Service Mesh

“A service mesh is a programmable framework that allows you
to observe, secure, and connect microservices. It doesn’t establish connectivity between microservices, but instead has policies and controls that are applied on top of an existing network to govern how microservices interact. ” Istio Explained by By Lin Sun and Daniel Berg

Without Service Mesh.. (or something equivalent)

Without Service Mesh Service A Service B

Without Service Mesh Service A Service B Service Discovery Business
Logic Authentication Observability

Logic Authentication Observability Non-Business Logic

Logic Authentication Traffic Control Service Discovery Business Logic Authentication Traffic Control Non-Business Logic on every application

Trying to implement tracing! Service A Service B Service Discovery
Business Logic Authentication Traffic Control Service Discovery Authentication Traffic Control Tracing Tracing Business Logic Increases non-business loging in codebase

With Service Mesh

Instead of communicating directly Service A Service B

In Service Mesh, proxies, called “sidecar”, communicate on behalf of
applications Service A Service B Sidecar Proxy Sidecar Proxy

In Service Mesh, proxies, called “sidecar”, communicate on behalf of
applications Service A Service B Sidecar Proxy Sidecar Proxy Each Application communicates only to sidecar-proxy

And sidecar proxies do non-business logic Service A Service B
Sidecar Proxy Sidecar Proxy Service Discovery Traffic Control Tracing etc...

Envoy - L7 Proxy - Originally from Lyft - High
Performance / High Reliability - Configurable via API - https://www.envoyproxy.io/

“The network should be transparent to applications. When network and
application problems do occur it should be easy to determine the source of the problem.” What is Envoy (https://www.envoyproxy.io/docs/envoy/latest/intro/what_is_envoy) Announcing Envoy: C++ L7 proxy and communication bus by Matt Klein (https://eng.lyft.com/announcing-envoy-c-l7-proxy-and-communication-b us-92520b6c8191)

Envoy as a sidecar proxy Service A Service B

Envoy also works as a gateway Service A Service B
Gateway

Generally combination of both Service A Service B Gateway

Need to configure each of proxies Service A Service B
Sidecar Proxy Sidecar Proxy Configure

Need to configure each of proxies Service A Service B
Sidecar Proxy Sidecar Proxy Configure { "configs": [ { "@type": "type.googleapis.com/envoy.admin.v3.BootstrapConfigDump", "bootstrap": { "node": { "id": "sidecar~10.23.3.28~foo-68f69cbfd5-7jdq7.fbar.svc.cluster.local", "cluster": "foo-68f69cbfd5.foo-staging", "metadata": { "PROXY_CONFIG": { "parentShutdownDuration": "60s", "proxyAdminPort": 15000, "controlPlaneAuthPolicy": "MUTUAL_TLS", "drainDuration": "45s", "proxyMetadata": { "DNS_AGENT": "" }, "terminationDrainDuration": "5s", "tracing": { "zipkin": { "address": "zipkin.istio-system:9411" } }, "statusPort": 15020, "serviceCluster": "foo-68f69cbfd5.bar", "envoyMetricsService": {}, "binaryPath": "/usr/local/bin/envoy", "discoveryAddress": "istiod.istio-system.svc:15012", "concurrency": 2, "envoyAccessLogService": {}, "statNameLength": 189, "configPath": "./etc/istio/proxy" }, "PLATFORM_METADATA": { "gcp_project_number": "1234566791234", "gcp_location": "asia-northeast1", "gcp_gke_cluster_url": "https://container.googleapis.com/v1/projects/sakajunquality-test/locations/asia-northeast1/clusters/kluster", "gcp_gke_cluster_name": "kluster", "gcp_project": "sakajunquality-test", "gcp_gce_instance_id": "1234566791234" }, "CLUSTER_ID": "Kubernetes", "APP_CONTAINERS": "foo-app", "LABELS": { "service.istio.io/canonical-revision": "release-20200702-2", "rollouts-pod-template-hash": "68f69cbfd5", "istio.io/rev": "default", "app": "foo", "service.istio.io/canonical-name": "foo-68f69cbfd5", "version": "xxxx", "security.istio.io/tlsMode": "istio" }, ….. Hard work… (not always)

Control Plane Service A Service B Sidecar Proxy Sidecar Proxy
Control Plane Data Plane

- Open-source Service Mesh software - Originally from Google, Lyft
and IBM - https://istio.io/ Open-source example: Istio

Istio https://istio.io/latest/docs/concepts/what-is-istio/

Service A Service B Istio example (simplified) Kubernetes Traffic Management
Manifest Apply manifests as Kubernetes CRD Istiod Configure each proxies

Service Mesh - Using sidecar proxy, decouples infra-related non-business logic
from applications

Looking for fully-managed solutions?

Trafﬁc Director

- Service Mesh Control Plane - Fully-managed w/ SLA -
Supports both VMs and containers Traffic Director

Traffic Director: Control Plane as a Service Service A Service
B Traffic Director Data Plane Control Plane

- Trafﬁc Splitting - Circuit Breaking - Outlier detection -
Locality Load Balancing - etc Traffic Director’s Traffic Management

Example of traffic splitting Clients Service A Service B Version
1 Service B Version 2 10% 90%

- Manual Deployment for VM/Container - Automatic Deployment for GCE
- GKE automatic injection - Proxyless Sidecar w/ Traffic Director

Traffic Director: GCE Service A Service B Traffic Director GCE
envoy auto-deployment -service-proxy=enabled

Traffic Director: GKE Service A Service B Traffic Director Using
Istio’s sidecar injection

Serverless Runtime

- Pay as you go - All the workloads are
not necessarily required to be running all the time - e.g. event-driven workloads Serverless Computing Runtime

Serverless Computing Runtime Cloud Functions App Engine Cloud Run

- Fully-managed serverless environment for containers - Container with HTTP/gRPC
listening to $PORT - Pay for CPU and memory @100ms + network transfer Cloud Run

- Managed Endpoint w/ TLS termination - Custom Domains w/
TLS - 1-80 concurrent requests per instance - Scale from zero to 1000 instance - Cloud SQL connection / VPC connection - 1-4 vCPU / 127MiB-4GiB RAM - Gradual Trafﬁc Thrifting Cloud Run

- Managed Endpoint w/ TLS termination - Custom Domains w/
TLS - 1-80 concurrent requests per instance - Scale from zero to 1000 instance - Cloud SQL connection / VPC connection - 1-4 vCPU / 127MiB-4GiB RAM - Gradual Trafﬁc Thrifting Cloud Run Easily Deployable Easily Scalable

- VPC Access w/ egress setting - GCLB w/ Seveless
Neg - Cloud CDN / Cloud Armor / Cloud IAP - Events for Cloud Run - 1h request timeout - server-streaming for HTTP and gRPC - SIGTERM - 4GB RAM / 4 vCPUs - min instances - Cloud Code / Cloud buildpacs / Deploy YAML - … Cloud Run Updates

- VPC Access w/ egress setting - GCLB w/ Seveless
Neg - Cloud CDN / Cloud Armor / Cloud IAP - Events for Cloud Run - 1h request timeout - server-streaming for HTTP and gRPC - SIGTERM - 4GB RAM / 4 vCPUs - min instances - Cloud Code / Cloud buildpacs / Deploy YAML - … Cloud Run Updates Updated Frequently!

Can I add apps running on serverless to the Mesh?

When you already have GKE-based mesh platform…. Service A Service
B

How can a serverless app join the Mesh? Service A
Service B Serverless Service C ???

No possible. as long as using fully-managed serverless environment

- Network Connectivity - Sidecar Proxy Injection Serveless to Mesh

Serverless VPC Access - Enables VPC access from fully-managed serverless
environment - Supports Cloud Run/ App Engine / Cloud Functions - https://cloud.google.com/vpc/docs/conﬁ gure-serverless-vpc-access?hl=en

Serverless VPC Access Non-VPC resources VPC resources

Sidecar Injection - Impossible... - or give-up the fully-managed env

Severless is nice But still wanna communicate with services in
the mesh.

What if Service Mesh features are implemented as application library?
and hopefully that does not increase the application codebase…

Trafﬁc Director: proxyless gRPC services

- RPC using protocol buffers - Open-sourced by Google -
Ofﬁcially supports many languages - https://grpc.io/docs/languages/ - Great ecosystem gRPC

gRPC: xDS-Based Global Load Balancing https://github.com/grpc/proposal/blob/master/A27-xds-global-load-balancing.md

“gRPC currently supports its own "grpclb" protocol for look-aside load-balancing.
However, the popular Envoy proxy uses the xDS API for many types of conﬁguration, including load balancing, and that API is evolving into a standard that will be used to conﬁgure a variety of data plane software.” xDS-Based Global Load Balancing https://github.com/grpc/proposal/blob/master/A27-xds-global-load-bala ncing.md

xDS Control Plane and Dataplane Control Plane Control Plane Control
Plane ※ and more…!

xDS Client (Data Plane) Application Source Code Application Source Code

xDS Client (Data Plane) Application Source Code Application Source Code
// For client package main import ( // abbreviated // To install the xds resolvers and balancers. _ "google.golang.org/grpc/xds" )

Traffic Director: proxyless gRPC services Control Plane Control Plane Control
Plane

Traffic Director: proxyless gRPC services Provides - Service Discover -
Client-side load-balancing - Route Matching - Trafﬁc Splitting

Let’s see the same example... Service A Service B

Traffic Director using proxy-less gRPC service Service A Service B

Services can communicate each other with endpoint xds://[service name]:[port], pre-defined
in Traffic Director Service A Service B xds::///service-b:port

Here’s how it works... Service A Service B Traffic Director
1. Service B is registered in Traffic Director 2. gRPC will detect Control Plane using bootstrap file, which is defined in GRPC_XDS_BOOTSTRAP

1. Service B is registered in Traffic Director 2. gRPC will detect Control Plane using bootstrap file, which is defined in GRPC_XDS_BOOTSTRAP { "xds_servers": [ { "server_uri": "trafficdirector.googleapis.com:443", "channel_creds": [ { "type": "google_default" } ] } ], "node": { "id": "b7f9c818-fb46-43ca-8662-d3bdbcf7ec18~10.0.0.1", "metadata": { "TRAFFICDIRECTOR_GCP_PROJECT_NUMBER": "123456789012", "TRAFFICDIRECTOR_NETWORK_NAME": "default" }, "locality": { "zone": "us-central1-a" } } }

1. Service B is registered in Traffic Director 2. gRPC will detect Control Plane using bootstrap file, which is defined in GRPC_XDS_BOOTSTRAP { "xds_servers": [ { "server_uri": "trafficdirector.googleapis.com:443", "channel_creds": [ { "type": "google_default" } ] } ], "node": { "id": "b7f9c818-fb46-43ca-8662-d3bdbcf7ec18~10.0.0.1", "metadata": { "TRAFFICDIRECTOR_GCP_PROJECT_NUMBER": "123456789012", "TRAFFICDIRECTOR_NETWORK_NAME": "default" }, "locality": { "zone": "us-central1-a" } } } //... initContainers: - args: - --output - "/tmp/bootstrap/td-grpc-bootstrap.json" image: gcr.io/trafficdirector-prod/td-grpc-bootstrap:0.9.0 imagePullPolicy: IfNotPresent name: grpc-td-init resources: limits: cpu: 100m memory: 100Mi requests: cpu: 10m memory: 100Mi volumeMounts: - name: grpc-td-conf mountPath: /tmp/bootstrap/ //...

1. Service B is registered in Traffic Director 2. gRPC will detect Control Plane using bootstrap file, which is defined in GRPC_XDS_BOOTSTRAP 3. Get Service B’s Info via xDS 4. make RPC call xds::///service-b:port

Accessing Mesh Service from Serverless Environment Service A Service B
Serverless Service C

Accessing Mesh Service from Serverless Environment Service A Service B
Serverless Service C xds::///service-b:port

- Using xDS implement in gRPC at data plane, Trafﬁc
Director is managing trafﬁc between services. Traffic Director: proxyless gRPC services

- Support in gRPC client only - Limited features in
xDS are available - Some languages are still in progress - e.g. Node.js - or oﬃcially not supported like Rust xDS gRPC

- A28: gRPC xDS trafﬁc splitting and routing - A30:
xDS v3 Support - A31: gRPC xDS Timeout Support and Conﬁg Selector Design - A32: gRPC xDS circuit breaking - A34: `weighted_round_robin` lb_policy for per endpoint weight from `ClusterLoadAssignment` response More xDS features are proposed to implement on gRPC-side

- Istio experimentally supports proxy-less data-plane Open-source project

“gRPC is the second xDS client… … but it will
not be the last!” Mark D. Roth @ EnvoyCon 2020

Takeaways

- Implementations infra/network-related, non-businesslogic, are required in microservice-like architecture or
distributed environment. - Service Mesh resolve this by sidecar proxy like Envoy. Takeaways 1/4

- Service Mesh Control Plane uses xDS API to conﬁgure
Envoy. - Open-source example: Istio - Managed-solution in GCP: Trafﬁc Director Takeaways 2/4

Takeaways 3/4 - gRPC implements xDS for its load-balancing capabilities
- Trafﬁc Director (and Istio experimentally) support gRPC as proxless data plane

- gRPC proxless services is extra dope! Takeaways 4/4

Thank you

Building Reliable Distributed Systems on GCP

Building Reliable Distributed Systems on GCP

More Decks by sakajunquality

Other Decks in Technology

Featured

Transcript