Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Easy Microservices in the cloud with Kubernetes...

Avatar for Sendil Kumar N Sendil Kumar N
November 14, 2019
Technology
120
0

Easy Microservices in the cloud with Kubernetes and Istio

Avatar for Sendil Kumar N

Sendil Kumar N

November 14, 2019

More Decks by Sendil Kumar N

See All by Sendil Kumar N
[Heapcon-2023] Building High Performance Web Applications
Avatar for Sendil Kumar N sendilkumarn
0
120
Building Reactive Microservices with Kotlin & running on Kubernetes
Avatar for Sendil Kumar N sendilkumarn
0
230
Building Reactive Microservices with JHipster & K8s
Avatar for Sendil Kumar N sendilkumarn
0
40
Designing High Performance React Applications
Avatar for Sendil Kumar N sendilkumarn
1
210
Batching, Suspense, and Server Components
Avatar for Sendil Kumar N sendilkumarn
0
83
DevNexus_Building_with__Zero_Trust_Architecture_Copy.pdf
Avatar for Sendil Kumar N sendilkumarn
0
95
Lessons Learnt with Visual Testing and Snapshots
Avatar for Sendil Kumar N sendilkumarn
0
150
Easy Microservices with K8s & Istio
Avatar for Sendil Kumar N sendilkumarn
0
120
KHipster - Kotlin Hipster
Avatar for Sendil Kumar N sendilkumarn
0
280

Other Decks in Technology

See All in Technology
AIが盛んな時代に 技術記事を書き始めて起きた私の中での小さな変化
Avatar for 松尾淳平 peintangos
0
360
GKE Agent SandboxでAIが生成したコードを 安全に実行してみた
Avatar for Lamaglama39 lamaglama39
0
210
新卒エンジニア研修、ハンズオンの設計における課題と実践知/ #tachikawaany
Avatar for Ichiro Nishiuma nishiuma
2
130
大学職員のための生成AI最前線 :最前線を、AIガバナンスとして読み直すためのTips
Avatar for gmoriki | 森木銀河 gmoriki
2
3.8k
ServiceによるKubernetes通信制御ーClusterIPを例に
Avatar for 周学勤(Zhou Xueqin) miku01
1
150
AIエージェントの支払い基盤 AgentCore Payments概要
Avatar for たけのこ kmiya84377
1
140
[Oracle TechNight#99] 生成AI時代のAI/ML入門 ~ AIとオラクルデータベースの関係 (前半)
Avatar for oracle4engineer oracle4engineer
PRO
2
240
カオナビに Suspenseを導入するまで / The Road to Suspense at kaonavi
Avatar for 株式会社カオナビ kaonavi
1
430
Agent Skillsで実現する記憶領域の運用とその後
Avatar for yamadashy / やまだし yamadashy
2
1.4k
SLI/SLO、「完全に理解した」から「チョットデキル」へ
Avatar for maru maruloop
1
130
アプリブロック機能のつくりかたと、AIとHTMLの不合理な相性の良さについて
Avatar for kumamotone kumamotone
0
120
AI時代に越境し、 組織を変えるQAスキルの正体 / QA Skills for Transforming an Organization
Avatar for miisan mii3king
5
4.1k

Featured

See All Featured
Sam Torres - BigQuery for SEOs
Avatar for Tech SEO Connect techseoconnect
PRO
0
260
Intergalactic Javascript Robots from Outer Space
Avatar for Vicent Martí tanoku
273
27k
Crafting Experiences
Avatar for Bethany Jepchumba bethany
1
140
GraphQLの誤解/rethinking-graphql
Avatar for sonatard sonatard
75
12k
Learning to Love Humans: Emotional Interface Design
Avatar for Aarron Walter aarron
275
41k
Into the Great Unknown - MozCon
Avatar for Noah Learner thekraken
41
2.4k
Large-scale JavaScript Application Architecture
Avatar for Addy Osmani addyosmani
515
110k
HDC tutorial
Avatar for Michiel Stock michielstock
2
650
What's in a price? How to price your products and services
Avatar for Michael Herold michaelherold
247
13k
Making Projects Easy
Avatar for Brett Harned brettharned
120
6.6k
Automating Front-end Workflow
Avatar for Addy Osmani addyosmani
1370
200k
Documentation Writing (for coders)
Avatar for Carmen Chung carmenintech
77
5.3k

Transcript

  1. Sveiki Lithuania

  2. Questions @ sli.do

  3. Easy microservices in the cloud with Kubernetes & Istio

  4. Sendil Kumar @sendilkumarn

  5. None
  6. None

  7. Senior Software Engineer @uber

  8. Passionate about Open Source Senior Software Engineer @uber

  9. Passionate about Open Source Senior Software Engineer @uber Team member

    @JHipster

  10. Passionate about Open Source Senior Software Engineer @uber Team member

    @JHipster Crafting @KHipster

  11. Agenda K8s Istio JHipster Microservices JHipster Microservices K8s & Istio

  12. Docker

  13. Docker Self Contained images

  14. Docker Self Contained images Portability

  15. Docker Managing the infrastructure

  16. Docker Managing the infrastructure Deciding when and how to run

    the applications

  17. Kubernetes

  18. Kubernetes De-coupled infrastructure completely

  19. K8s is an open-source system

  20. K8s is an open-source system that automates deployment containerised applications

  21. K8s is an open-source system that automates deployment scales (up/down/in/out)

    Containerised applications

  22. K8s is an open-source system that automates deployment scales (up/down/in/out)

    manages Containerised applications

  23. K8s makes it easy and simple

  24. But K8s itself is not simple

  25. How Kubernetes works?

  26. Cluster mode

  27. Kubernetes Master Nodes Nodes Nodes

  28. kubectl apply -f some.yml Api Server etcd Scheduler Controller create

    yaml file connects via CLI adds to the queue stores sends to the controller Kubernetes Land

  29. Api Server etcd Scheduler Controller Kubernetes Land Control Plane

  30. Worker Node signals to start the deployment Kubelet Kubelet Kubelet

    Worker Node Kubelet Kubelet Kubelet Worker Node Kubelet Kubelet Kubelet Scheduler

  31. handles networking Worker Node Kubelet Kube proxy Kubelet Kube proxy

    Kubelet Kube proxy Kubelet Kube proxy

  32. K8s states the (desired) running state of application

  33. Microservices

  34. more freedom to react Microservices

  35. respond faster Microservices

  36. Technology Heterogeneity

  37. Fault isolation

  38. Granular Scaling

  39. ❌ ❌ ❌ ❌ ❌ ❌ ❌ ❌ ❌

  40. Don’t violate DRY inside microservice.

  41. Microservices with JHipster

  42. API Gateway BFF Pattern

  43. How does JHipster app looks like?

  44. Java / Kotlin backend Zuul UAA

  45. Java / Kotlin backend Zuul UAA Microservices Gateway

  46. Service Registry

  47. JHipster Registry Consul

  48. JHipster Registry Consul Eureka + Spring Cloud Config Admin Server

    Easier in multi-node cluster Availability over consistency Consistency over Availability - All nodes provide correct detail every time

  49. Consoles

  50. Elasticsearch Logstash Kibana JHipster Console

  51. Consul / JHipster Registry Console Microservices Gateway Microservices

  52. We will generate…

  53. Store Gateway Notification Invoice Product

  54. JHipster demo time

  55. None

  56. Harder to control

  57. Harder to Manage

  58. Harder to Secure

  59. Service A Service B Service C

  60. Service A Service B Service C Logging Monitoring Networking

  61. Service A Service B Service C Common Services…

  62. Istio

  63. Service mesh

  64. network of inter connected microservices

  65. Without any changes in your services

  66. Without any changes in your services Control Connect Secure Observe

  67. But how Istio does it?

  68. App PROXY Envoy proxy

  69. Envoy proxy Lightweight c++ protocol Platform-agnostic Network abstraction

  70. App PROXY Mixer Policy control Telemetry collection

  71. App PROXY Mixer Control Plane

  72. Control Plane App PROXY Mixer Pilot Galley Citadel Service discovery

    Validate, process & distribute Authentication

  73. Control Plane App PROXY Mixer Pilot Galley Citadel Service discovery

    Validate, process & distribute Authentication Data plane

  74. Control Plane App PROXY Mixer Pilot Galley Citadel Control Connect

    Secure Observe

  75. JHipster kubernetes

  76. • Kubernetes + Istio configuration • Running in GCloud

  77. The best practices

  78. Single Responsibility Principle Smaller YAML files Split the files

  79. Smaller image sizes Alpine images for the win Faster to

    boot

  80. Healthy - Zombie

  81. Single process in a container… Docker don’t know which process

    crashed

  82. Services - RED pattern Requests - Errors - Duration pattern

    RED

  83. Resources - USE pattern Utilization - Saturation - Errors pattern

  84. Think about Requests / Limits

  85. Clean up unused resources

  86. Monitor and tune

  87. Questions…

  88. Thanks…