Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Kubernetify All The Things

Steve Sloka
June 12, 2017
Technology
0
130

Kubernetify All The Things

Kubernetes 101 talk for Pittsburgh Tech Fest 2017

Steve Sloka

June 12, 2017
Tweet

More Decks by Steve Sloka

See All by Steve Sloka
Top 10 Kubernetes Tips/Tricks
stevesloka
2
480
Ship it! Containerized Cloud-Native Deployments
stevesloka
0
75
Micro-datacenter chaos monkeys! Raspberry Pi & Kubernetes
stevesloka
0
240
Kubernetify All The Things!
stevesloka
2
190
Ship it! Containerized Cloud-Native Deployments
stevesloka
1
130
Application Orchestration with Kubernetes
stevesloka
0
230

Other Decks in Technology

See All in Technology
一休.comレストランにおけるRustの活用
kymmt90
3
640
プロダクトエンジニアが活躍する環境を作りたくて 事業責任者になった話 ~プロダクトエンジニアの行き着く先~
gimupop
1
510
End of Barrel Files: New Modularization Techniques with Sheriff
rainerhahnekamp
0
210
君は隠しイベントを見つけれるか?
mujyun
0
380
「視座」の上げ方が成人発達理論にわかりやすくまとまってた / think_ perspective_hidden_dimensions
shuzon
2
13k
IDOLY PRIDEのバックエンドリーダーになって2年半取り組んできたこと / idoly-pride-knowledge
cyberagentdevelopers
PRO
2
110
カメラを用いた店内計測におけるオプトインの仕組みの実現 / ai-optin-camera
cyberagentdevelopers
PRO
1
130
エムスリー流!難読クイズを作ってPythonの深淵に触れるコツ! - 技育CAMPアカデミア
vaaaaanquish
0
100
リンクアンドモチベーション ソフトウェアエンジニア向け紹介資料 / Introduction to Link and Motivation for Software Engineers
lmi
4
290k
新卒1年目が挑む!生成AI × マルチエージェントで実現する次世代オンボーディング / operation-ai-onboarding
cyberagentdevelopers
PRO
1
180
20241031_AWS_生成AIハッカソン_GenMuck
tsumita
0
120
プロポーザルのつくり方
〜個人技編〜 / How to come up with proposals
ohbarye
4
280

Featured

See All Featured
Designing the Hi-DPI Web
ddemaree
280
34k
RailsConf 2023
tenderlove
29
880
Building Adaptive Systems
keathley
38
2.2k
Building Applications with DynamoDB
mza
90
6.1k
The Cult of Friendly URLs
andyhume
78
6k
Optimizing for Happiness
mojombo
376
69k
We Have a Design System, Now What?
morganepeng
50
7.2k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
irinanazarova
4
330
Designing for Performance
lara
604
68k
The Straight Up "How To Draw Better" Workshop
denniskardys
232
140k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
92
16k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
228
52k

Transcript

  1. KUBERNETIFY ALL THE THINGS @STEVESLOKA PghTechFest 2017

  2. OVERVIEW ▸ Overview ▸ Background of Kubernetes ▸ k8s concepts

    ▸ Demos ▸ Even More Demo ▸ Lulz throughout

  3. SOFTWARE ARCHITECT ABOUT ME GOLANG / OPENSOURCE / KUBERNETES /

    CONTAINERS

  4. KUBERNETES ▸ open-source platform for automating deployment, scaling, and operations

    of application containers ▸ Servers 2-N ▸ Open Sourced by Google 2014 ▸ github.com/kubernetes/kubernetes ▸ Written in Go ▸ #GIFEE (Google-like Infrastructure for Everyone Else)

  5. GOOGLE EXPERIENCE ‣ Google has been using containers for over

    a decade ‣ 2 BILLON Per Week! (With a “B”) ‣ Everything at Google runs in a container

  6. KUBERNETES “HELMSMAN OF A SHIP” ▸ Managing distributed solutions at

    scale, based on years of industry expertise (Google-scale experience) ▸ High availability of the control plane and user workloads (when using pod replication), avoiding most single points of failure ▸ Modular control plane architecture, allowing many peices to be replaced without disrupting workload availability ▸ Persist all of it's internal platform state within an etcd database

  7. COMMUNITY KUBERNETES

  8. ARCHITECTURE Master: Node(s): ETCD API SERVER CONTROLLER MANAGER KUBELET PROXY

    SCHEDULER CONTAINER ENGINE CADVISOR SOFTWARE DEFINED NETWORK ADDONS

  9. PAM WEBO2 DWIGHT DB01 JIM

  10. APPLICATION CONTAINERS KUBERNETES CLUSTER OF MACHINES

  11. HIGH LEVEL CONCEPTS ▸node ▸pod ▸scheduler ▸labels ▸deployments ▸services

  12. ADVANCED ▸run a cluster ▸operators

  13. NODE

  14. NODE RESPONSIBILITIES 1.Runs containers ‣container engine (docker / rkt) ‣kubelet

    2.Proxies service requests ‣kube-proxy

  15. POD

  16. PODS REPRESENTS A LOGICAL APPLICATION CONTAINER CONTAINER ‣Shared ‣namespaces ‣volumes

  17. POD EXAMPLE: REST API (CONTAINER) LOGGER (CONTAINER) Logs

  18. SCHEDULER

  19. SCHEDULER ▸assign workloads to nodes ▸best fit chosen based on

    pod requirements ▸allows for over-commit ▸pluggable

  20. LABELS

  21. LABELS LABELS EXAMPLE: TYPE=FRONTEND
 ENV=PRODUCTION TYPE=FRONTEND
 ENV=STAGING TYPE=BACKEND
 ENV=PRODUCTION ENG=STEVE


    ENV=STAGING

  22. LABELS TYPE=FRONTEND TYPE=FRONTEND
 ENV=PRODUCTION TYPE=FRONTEND
 ENV=STAGING TYPE=BACKEND
 ENV=PRODUCTION ENG=STEVE
 ENV=STAGING

  23. LABELS ENV=PRODUCTION TYPE=BACKEND
 ENV=PRODUCTION ENG=STEVE
 ENV=STAGING TYPE=FRONTEND
 ENV=PRODUCTION TYPE=FRONTEND
 ENV=STAGING

  24. LABELS ENG=STEVE TYPE=FRONTEND
 ENV=PRODUCTION TYPE=FRONTEND
 ENV=STAGING TYPE=BACKEND
 ENV=PRODUCTION ENG=STEVE
 ENV=STAGING

  25. DESIRED STATE

  26. DESIRED STATE

  27. CREATE PODS Desired: Actual: POD POD POD POD POD POD

    ACTION IS TO CREATE 3 PODS ——>

  28. DELETE PODS Desired: Actual: POD POD POD POD ACTION IS

    TO DELETE 2 PODS ——>

  29. HEALTH CHECK Desired: Actual: POD POD POD POD ACTION IS

    TO CREATE 2 PODS ——> POD POD
  30. None

  31. DEPLOYMENTS

  32. DEPLOYMENTS ▸Pod template ▸Docker image(s) ▸Labels ▸CPU / Memory ▸Replicas

    ▸Volume Mounts ▸Define in JSON || YAML

  33. DEPLOYMENT EXAMPLE

  34. VOLUMES ▸ emptyDir ▸ hostPath ▸ gcePersistentDisk ▸ awsElasticBlockStore ▸

    nfs ▸ persistentVolumeClaim ▸ flocker ▸ glusterfs ▸ rbd ▸ gitRepo ▸ secret ▸ iscsi

  35. SERVICES

  36. KUBERNETES SAMPLE NGINX NGINX LOAD BALANCER API API API API

    LOAD BALANCER NGINX DB LOAD BALANCER K8S SERVICE K8S SERVICE K8S SERVICE NGINX.NAMESPACE.SVC.CLUSTER.LOCAL API.NAMESPACE.SVC.CLUSTER.LOCAL DB.NAMESPACE.SVC.CLUSTER.LOCAL

  37. KUBERNETES PODS ARE MORTAL. THEY ARE BORN AND THEY DIE,

    AND THEY ARE NOT RESURRECTED.

  38. SERVICES SERVICE DISCOVERY FOR PODS ▸proxy runs on each node

    ▸virtual IP per service ▸dns address ▸[serviceName] ▸[serviceName].[namespace] ▸[serviceName].[namespace].svc.cluster.local ▸dynamic “pods” based on label queries ▸pods are auto-injected with environment variables
  39. None

  40. SERVICES SERVICE TYPES ▸NodePort: Allocated port (range 30000-32767) ▸LoadBalancer: Provision

    loadbalancer on cloud provider ▸External IP’s

  41. NAMESPACES

  42. NAMESPACES PARTITION RESOURCES ▸A mechanism to partition resources created by

    users into a logically named group ▸Allows for work to be done in isolation ▸Each namespace is given its own: 1.resources (pods, services, replication controllers, etc.) 2.policies (who can or cannot perform actions in their namespace) 3.constraints (this namespace is allowed this much quota, etc.)

  43. HEALTH CHECKS

  44. HEALTH CHECKS READINESS PROBES ▸Am I ready to take requests?

    ▸Types: ▸Command ▸HTTP ▸TCP

  45. HEALTH CHECKS LIVENESS PROBES ▸I was ready, am I still?

    ▸/healthz
  46. None

  47. RUNNING A CLUSTER

  48. RUNNING A CLUSTER MINIKUBE ▸https://github.com/kubernetes/minikube ▸google kubeadm (1st link) ▸Google

    Container Engine (Kubernetes) KUBEADM GKE

  49. RUNNING A CLUSTER UPMC ENTERPRISES ▸https://github.com/upmc-enterprises/ kubernetes-on-aws ▸CoreOS ▸NIST Standards

    ▸Bastion Hosts ▸Autoscaling

  50. OPERATORS

  51. OPERATORS THAT’S ME RIGHT? ▸“An Operator represents human operational knowledge

    in software to reliably manage an application.” 
 ~ CoreOS

  52. OPERATORS EXAMPLES ▸etcd 
 (https://github.com/coreos/etcd-operator/) ▸Prometheus 
 (https://github.com/coreos/prometheus-operator) ▸Rook
 (https://github.com/rook/rook)

    ▸Elasticsearch
 (https://github.com/upmc-enterprises/elasticsearch-operator) ▸Kong
 (https://github.com/upmc-enterprises/kong-operator)

  53. THANK YOU! @stevesloka github.com/stevesloka github.com/upmc-enterprises enterprises.upmc.com