プロダクションレディ Pods / Production-Ready Pods

䋐٠靼(FFLӹ/JHIU ,B[VLJ4VEBLTVEB![MBCDPKQ !TVQFSCSPUIFST ϓϩμΫγϣϯϨσΟ Pods

,B[VLJ4VEB!TVQFSCSPUIFST Ӝ اؿزؐؑ،ؒٝآص،!;-BC Ӝ ,VCFSOFUFT.FFUVQ5PLZP⚺⪵

،آؑٝت 1PETהכ⡦ַ فٗتؙءّٖٝر؍1PET

1PETהכ⡦ַ

Ӝ 醱侧ך؝ٝذشה醱侧ךنُٔ٦ي Ӝ رفٗ؎ך剑㼭⽃⡘ Ӝ *1QFS1PE 1PET 1PE Volume 8FCTFSWFS
'JMF1VMMFS

apiVersion: v1 kind: Pod metadata: name: nginx spec: containers: -
name: nginx image: nginx:1.13.7 ports: - containerPort: 80 Ӝ 醱侧ך؝ٝذشה醱侧ךنُٔ٦ي Ӝ رفٗ؎ך剑㼭⽃⡘ Ӝ *1QFS1PE 1PET

1PEٓ؎ؿ؟؎ؙٕ 3VOOJOH 5FSNJOBUJOH 4DIFEVMJOH

فٗتؙءّٖٝر؍1PET

#VJMEJOH $POUBJOFST Ӝ 5IF5XFMWF'BDUPS"QQ Ӝ 㼭ְׁك٦أ؎ً٦آ׾⢪ֲ Ӝ ♶銲זػح؛٦آ׾؎ٝأز٦ٕ׃זְ NVMUJTUBHFCVJMET Ӝ
فٗإأ؝ٝذش Ӝ ؚٗכTUEPVU TUEFSSח⳿⸂ׅ׷

NVMUJTUBHFCVJMET 6TFNVMUJTUBHFCVJMET]%PDLFS%PDVNFOUBUJPO FROM golang:1.7.3 WORKDIR /go/src/github.com/alexellis/href-counter/ RUN go get -d
-v golang.org/x/net/html COPY app.go . RUN CGO_ENABLED=0 GOOS=linux go build -a -installsuffix cgo -o app . FROM alpine:latest RUN apk --no-cache add ca-certificates WORKDIR /root/ COPY --from=0 /go/src/github.com/alexellis/href-counter/app . CMD ["./app"]

㹋遤ח䗳銲זٔا٦أָ婍׏גְזְظ٦سחأ؛آُ٦ٕ ׁ׸ג׃תֲ Ӝ ؝ٝذشך䗳銲剑⡚ꣲ䗳銲זٔا٦أ׾䭷㹀ׅ׷ SFTPVSDFSFRVFTUT 4DIFEVMJOH

SFTPVSDFSFRVFTUT Ӝ ؝ٝذشך㹋遤ח䗳銲剑⡚ꣲ䗳銲זٔا٦أ Ӝ أ؛آُ٦ׁٕ׸׋؝ٝذشךٔا٦أ銲実ך  さ鎘ָظ٦سך㺁ꆀ״׶׮㼰זְֿה׾⥂鏾ׅ׷ apiVersion: v1 kind: Pod
metadata: name: kuard spec: containers: - image: gcr.io/kuar-demo/kuard- name: kuard resources: requests: cpu: "500m" memory: "128Mi" ports: - containerPort: 8080 name: http protocol: TCP

3VOOJOH ظ٦سךٔا٦أ׾⢪ְⴖ׏ג׃תֲ ،فٔ؛٦ءָؙّٝٓحءُ׃ג㔿ת׏ג׃תֲ ؙٔؒأز׾「ֽ׷彊⪒ָ穄׻׷⵸חؙٔؒأزָֹג׃תֲ Ӝ ؝ٝذشךٔا٦أ⢪欽ꆀך♳ꣲ׾䭷㹀ׅ׷ SFTPVSDFMJNJUT Ӝ ؝ٝذشךقٕأثؑحؙ׾鏣㹀ׅ׷ -JWFOFTTQSPCF
欰ֹגְ׷ַוֲַ 3FBEJOFTTQSPCF 䘔瘶דֹ׷ַוֲַ

apiVersion: v1 kind: Pod metadata: name: kuard spec: containers: -
image: gcr.io/kuar-demo/kuar name: kuard resources: requests: cpu: "500m" memory: "128Mi" limits: cpu: "1000m" memory: "256Mi" ports: - containerPort: 8080 name: http protocol: TCP Ӝ ؝ٝذشךٔا٦أ⢪欽ꆀך♳ꣲ׾䭷㹀ׅ׷ $16♳ꣲ׾馄ִג⢪欽׃זְ NFNPSZ♳ꣲ׾馄ִ׷ה00.ח״׶فٗإأָ媷ׁ׸׷ SFTPVSDFMJNJUT

-JWFOFTTQSPCF Ӝ ؝ٝذشⰻفٗإأך娤崞湊鋔 Ӝ 㣟侁ׅ׷ה؝ٝذش׾䓼ⵖ涸חⱄ饯⹛ׅ׷ name: kuard spec: containers: -
image: gcr.io/kuar-demo/kuard-amd64:1 name: kuard ports: - containerPort: 8080 name: http protocol: TCP livenessProbe: httpGet: path: /healthy port: 8080 initialDelaySeconds: 5 timeoutSeconds: 1 periodSeconds: 10 failureThreshold: 3 readinessProbe: httpGet: path: /ready port: 8080 initialDelaySeconds: 30 timeoutSeconds: 1 periodSeconds: 10 failureThreshold: 3

-JWFOFTTQSPCF Ӝ FYFD؝وٝسך㹋遤 &YJU؝٦سָדIFBMUIZⴻ㹀 Ӝ IUUQ(FU)551(&5ؙٔؒأز أذ٦ةأ؝٦سָ⟃♳劢弫דIFBMUIZⴻ㹀 Ӝ UDQ4PDLFU5$14PDLFU ؝طؙءָّٝ然甧ׅ׸לIFBMUIZⴻ㹀

http.HandleFunc("/healthy", func(w http.ResponseWriter, r *http.Request) { w.Write([]byte("OK")) } http.ListenAndServe(":8080", nil)

3FBEJOFTT1SPCF Ӝ ؝ٝذشⰻفٗإأָؙٔؒأزח 䘔瘶דֹ׷ַ Ӝ 㣟侁ׅ׷ה4FSWJDFT׾鸐ׄג  زٓؿ؍حؙ׾「⥋׃זְ 6OSFBEZ name: kuard
spec: containers: - image: gcr.io/kuar-demo/kuard-amd64:1 name: kuard ports: - containerPort: 8080 name: http protocol: TCP livenessProbe: httpGet: path: /healthy port: 8080 initialDelaySeconds: 5 timeoutSeconds: 1 periodSeconds: 10 failureThreshold: 3 readinessProbe: httpGet: path: /ready port: 8080 initialDelaySeconds: 30 timeoutSeconds: 1 periodSeconds: 10 failureThreshold: 3

4FSWJDFT Ӝ ⟎䟝*1הه٦ز Ӝ ٓكٕإؙٖةח״׷  1PEךؚٕ٦ؾؚٝ Ӝ ؟٦ؽأة؎ف $MVTUFS*1 /PEF1PSU
-PBE#BMBODFS  1PE app web 1PE app web 3FQMJDB4FU 4FSWJDF VIP: 10.0.0.249 Selector: app=web

apiVersion: v1 kind: Service metadata: name: kuard spec: type: ClusterIP
selector: app: kuard ports: - protocol: TCP port: 8080 targetPort: 8080 4FSWJDFT Ӝ ⟎䟝*1הه٦ز Ӝ ٓكٕإؙٖةח״׷  1PEךؚٕ٦ؾؚٝ Ӝ ؟٦ؽأة؎ف $MVTUFS*1 /PEF1PSU -PBE#BMBODFS 

http.HandleFunc("/ready", func(w http.ResponseWriter, r *http.Request) { message := "" //
Check database if err := db.Ping(); err != nil { message += fmt.Sprintf("database: %s\n", err) } if len(message) > 0 { // Send 503 http.Error(w, message, http.StatusServiceUnavailable) } else { w.Write([]byte("OK")) } }) http.ListenAndServe(":8080", nil)

5FSNJOBUJOH 穄✪⚥חؙٔؒأزָֹגؒٓ٦׾鵤׃ג׃תֲ Ӝ ؝ٝذش׾(SBDFGVMTIVUEPXOׇׁ׷ UFSNJOBUJPO(SBDF1FSJPE4FDPOET QSF4UPQؿحؙ4*(5&3.ךعٝسؚٔٝ

apiVersion: apps/v1 kind: Deployment metadata: name: kuard spec: selector: matchLabels:
app: kuard template: metadata: labels: app: kuard spec: terminationGracePeriodSeconds: 60 containers: - image: gcr.io/kuar-demo/kuard-amd64:1 name: kuard ports: - containerPort: 8080 name: http protocol: TCP livenessProbe: UFSNJOBUJPO(SBDF1FSJPE4FDPOET Ӝ 1PE׾(SBDFGVMח穄✪ׇׁ׷׋׭䗳銲ז猱侧 Ӝ 鏣㹀׃׋猱侧ָ穗麓ׅ׷ה؝ٝذشח4*(,*--ָ鷏⥋ׁ׸׷

apiVersion: apps/v1 kind: Deployment metadata: labels: app: nginx name: nginx
spec: selector: matchLabels: app: nginx template: metadata: labels: app: nginx spec: containers: - image: nginx:1.13.7 name: nginx lifecycle: preStop: exec: command: ["nginx", "-s", "quit"] Ӝ 1PEך穄✪ؿؑ؎ؤך剑ⴱח㹋遤ׁ׸׷ 0QUJPOBM ـٗحؙ׃זֽ׸לז׵זְ ず劍 ֿהח岣䠐 Ӝ QSF4UPQؿحؙ㹋遤䖓ח4*(5&3.ָ鷏⥋ׁ׸׷ QSF4UPQؿحؙ

倜鋉؝طؙءّٝ 䱸竲幥؝طؙءّٝ QSF4UPQⳢ椚 4*(5&3.Ⳣ椚 1PEך穄✪Ꟛ㨣 0QUJPOBM   QSF4UPQؿحؙ 4FSWJDFTךة٦؜حزַ׵㢩׸׷ LVCFQSPYZָJQUBCMFTٕ٦ٕ׾刿倜׃ծ倜鋉䱸竲ָזֻז׷
ֿ׸⟃꣬倜鋉䱸竲כזֻז׷ QSF4UPQؿحַؙ4*(5&3.ד (SBDFGVMחؙٗ٦ؤׅ׷䗳銲ָ֮׷ (SBDF1FSJPE4FDPOET䖓  穄✪׃גְזְ㜥さ رؿٕؓز猱   4*(,*--   4*(5&3. ,VCFSOFUFT鑫鍑1PETך穄✪2JJUB

תה׭

תה׭ Ӝ #VJMEJOH$POUBJOFST كأزفؙٓذ؍أח䖞ֲ Ӝ 1PE4DIFEVMJOH 䗳銲剑⡚ꣲ䗳銲זٔا٦أ׾鏣㹀ׅ׷ SFTPVSDFSFRVFTUT Ӝ
1PE3VOOJOH قٕأثؑحؙ׾鏣㹀ׅ׷ -JWFOFTT3FBEJOFTTQSPCF ٔا٦أ⢪欽ꆀח♳ꣲ׾鏣㹀ׅ׷ SFTPVSDFMJNJUT Ӝ 1PE5FSNJOBUJOH (SBDFGVMTIVUEPXOׇׁ׷ QSF4UPQؿحؙ4*(5&3.عٝسؚٔٝ

8FˏSF)JSJOH IUUQT[MBCDPKQ ,VCFSOFUFT %PDLFS 1SPNFUIFVT (PMBOH $PSF04

2VFTUJPOT

プロダクションレディ Pods / Production-Ready Pods

プロダクションレディ Pods / Production-Ready Pods

Kazuki Suda

More Decks by Kazuki Suda

Other Decks in Technology

Featured

Transcript

䋐٠靼(FFLӹ/JHIU ,B[VLJ4VEBLTVEB![MBCDPKQ !TVQFSCSPUIFST ϓϩμΫγϣϯϨσΟ Pods

,B[VLJ4VEB!TVQFSCSPUIFST Ӝ اؿزؐؑ،ؒٝآص،!;-BC Ӝ ,VCFSOFUFT.FFUVQ5PLZP⚺⪵

،آؑٝت 1PETהכ⡦ַ فٗتؙءّٖٝر؍1PET

1PETהכ⡦ַ

Ӝ 醱侧ך؝ٝذشה醱侧ךنُٔ٦ي Ӝ رفٗ؎ך剑㼭⽃⡘ Ӝ *1QFS1PE 1PET 1PE Volume 8FCTFSWFS

apiVersion: v1 kind: Pod metadata: name: nginx spec: containers: -

1PEٓ؎ؿ؟؎ؙٕ 3VOOJOH 5FSNJOBUJOH 4DIFEVMJOH

فٗتؙءّٖٝر؍1PET

#VJMEJOH $POUBJOFST Ӝ 5IF5XFMWF'BDUPS"QQ Ӝ 㼭ְׁك٦أ؎ً٦آ׾⢪ֲ Ӝ ♶銲זػح؛٦آ׾؎ٝأز٦ٕ׃זְ NVMUJTUBHFCVJMET Ӝ

NVMUJTUBHFCVJMET 6TFNVMUJTUBHFCVJMET]%PDLFS%PDVNFOUBUJPO FROM golang:1.7.3 WORKDIR /go/src/github.com/alexellis/href-counter/ RUN go get -d

㹋遤ח䗳銲זٔا٦أָ婍׏גְזְظ٦سחأ؛آُ٦ٕ ׁ׸ג׃תֲ Ӝ ؝ٝذشך䗳銲剑⡚ꣲ䗳銲זٔا٦أ׾䭷㹀ׅ׷ SFTPVSDFSFRVFTUT 4DIFEVMJOH

SFTPVSDFSFRVFTUT Ӝ ؝ٝذشך㹋遤ח䗳銲剑⡚ꣲ䗳銲זٔا٦أ Ӝ أ؛آُ٦ׁٕ׸׋؝ٝذشךٔا٦أ銲実ך  さ鎘ָظ٦سך㺁ꆀ״׶׮㼰זְֿה׾⥂鏾ׅ׷ apiVersion: v1 kind: Pod

3VOOJOH ظ٦سךٔا٦أ׾⢪ְⴖ׏ג׃תֲ ،فٔ؛٦ءָؙّٝٓحءُ׃ג㔿ת׏ג׃תֲ ؙٔؒأز׾「ֽ׷彊⪒ָ穄׻׷⵸חؙٔؒأزָֹג׃תֲ Ӝ ؝ٝذشךٔا٦أ⢪欽ꆀך♳ꣲ׾䭷㹀ׅ׷ SFTPVSDFMJNJUT Ӝ ؝ٝذشךقٕأثؑحؙ׾鏣㹀ׅ׷ -JWFOFTTQSPCF

apiVersion: v1 kind: Pod metadata: name: kuard spec: containers: -

-JWFOFTTQSPCF Ӝ ؝ٝذشⰻفٗإأך娤崞湊鋔 Ӝ 㣟侁ׅ׷ה؝ٝذش׾䓼ⵖ涸חⱄ饯⹛ׅ׷ name: kuard spec: containers: -

-JWFOFTTQSPCF Ӝ FYFD؝وٝسך㹋遤 &YJU؝٦سָדIFBMUIZⴻ㹀 Ӝ IUUQ(FU)551(&5ؙٔؒأز أذ٦ةأ؝٦سָ⟃♳劢弫דIFBMUIZⴻ㹀 Ӝ UDQ4PDLFU5$14PDLFU ؝طؙءָّٝ然甧ׅ׸לIFBMUIZⴻ㹀

http.HandleFunc("/healthy", func(w http.ResponseWriter, r *http.Request) { w.Write([]byte("OK")) } http.ListenAndServe(":8080", nil)

3FBEJOFTT1SPCF Ӝ ؝ٝذشⰻفٗإأָؙٔؒأزח 䘔瘶דֹ׷ַ Ӝ 㣟侁ׅ׷ה4FSWJDFT׾鸐ׄג  زٓؿ؍حؙ׾「⥋׃זְ 6OSFBEZ name: kuard

4FSWJDFT Ӝ ⟎䟝1הه٦ز Ӝ ٓكٕإؙٖةח״׷  1PEךؚٕ٦ؾؚٝ Ӝ ؟٦ؽأة؎ف $MVTUFS1 /PEF1PSU

apiVersion: v1 kind: Service metadata: name: kuard spec: type: ClusterIP

http.HandleFunc("/ready", func(w http.ResponseWriter, r *http.Request) { message := "" //

5FSNJOBUJOH 穄✪⚥חؙٔؒأزָֹגؒٓ٦׾鵤׃ג׃תֲ Ӝ ؝ٝذش׾(SBDFGVMTIVUEPXOׇׁ׷ UFSNJOBUJPO(SBDF1FSJPE4FDPOET QSF4UPQؿحؙ4*(5&3.ךعٝسؚٔٝ

apiVersion: apps/v1 kind: Deployment metadata: name: kuard spec: selector: matchLabels:

apiVersion: apps/v1 kind: Deployment metadata: labels: app: nginx name: nginx

倜鋉؝طؙءّٝ 䱸竲幥؝طؙءّٝ QSF4UPQⳢ椚 4*(5&3.Ⳣ椚 1PEך穄✪Ꟛ㨣 0QUJPOBM   QSF4UPQؿحؙ 4FSWJDFTךة٦؜حزַ׵㢩׸׷ LVCFQSPYZָJQUBCMFTٕ٦ٕ׾刿倜׃ծ倜鋉䱸竲ָזֻז׷

תה׭

תה׭ Ӝ #VJMEJOH$POUBJOFST كأزفؙٓذ؍أח䖞ֲ Ӝ 1PE4DIFEVMJOH 䗳銲剑⡚ꣲ䗳銲זٔا٦أ׾鏣㹀ׅ׷ SFTPVSDFSFRVFTUT Ӝ

8FˏSF)JSJOH IUUQT[MBCDPKQ ,VCFSOFUFT %PDLFS 1SPNFUIFVT (PMBOH $PSF04

2VFTUJPOT