Kubernetes 101 - GDG Cloud Vancouver

Transcript

1. Kubernetes 101 #k8sbday #gdgcv @Vikram_Tiwari @gdgvancouver

2. 2 2 What’s in this for you...

3. 3 3 SlackGuest Slack4U2!

4. 4 The App (Monolith) nginx monolith

5. 5 The App (Microservices) nginx hello auth

6. 6 6 Packaging and Distributing Apps

7. 7 Dependency Matrix Dev 1 Laptop Dev 2 Laptop QA

   Stage Production OS ? ? ? ? ? Frontend ? ? ? ? ? Services ? ? ? ? ? Database ? ? ? ? ? Logs ? ? ? ? ?

8. 8 Dependency Matrix Dev 1 Laptop Dev 2 Laptop QA

   Stage Production OS OS X Windows Debian Debian Debian Frontend nginx (homebrew) nginx (download) nginx (apt-get) nginx (apt-get) nginx (apt-get) Services php (homebrew) php (download) php (apt-get) php (apt-get) php (apt-get) Database mysql (download) mysql (download) mysql (apt-get) mysql (apt-get) mysql (apt-get) Logs /usr/local/etc/nginx/logs/ C:\nginx-1.9.5\logs /var/log/nginx/ /var/log/nginx/ /var/log/nginx/

9. 9 Virtual Machines Hypervisor OS OS OS

10. ‹#› @kubernetesio

11. 11 Container Host OS Containers

12. 12 Docker Containers FROM alpine:3.1 MAINTAINER Vikram Tiwari <[email protected]> ADD

    monolith /usr/bin/monolith ENTRYPOINT ["monolith"]

13. 13 Dependency Matrix Dev 1 Laptop Dev 2 Laptop QA

    Stage Production OS Frontend Services Database Logs

14. 14 14 But that's just one machine! Discovery Scaling Security

    Monitoring Configuration Scheduling Health

15. 15 Kubernetes Manage applications, not machines Open source, open API

    container orchestrator Supports multiple cloud and bare-metal environments Inspired and informed by Google’s experiences and internal systems

16. 16 16 Kubernetes Concepts Cattle > Pets No grouping Modular

    Control Loops Network-centric Open > Closed Simple > Complex Legacy compatible

17. 17 17 Cattle vs Pets

18. 18 Cattle vs Pets Cattle • Has a number •

    One is much like any other • Run as a group • If it gets ill, you make hamburgers Pet • Has a name • Is unique or rare • Personal Attention • If it gets ill, you make it better

19. 19 19 Desired State

20. 20 Desired States ./create_docker_images.sh ./launch_frontend.sh x 3 ./launch_services.sh x 2

    ./launch_backend.sh x 1

21. 21 Desired States ./create_docker_images.sh ./launch_frontend.sh x 3 ./launch_services.sh x 2

    ./launch_backend.sh x 1

22. 22 Desired States There should be: 3 Frontends 2 Services

    1 Backend

23. 23 23 Employees, not Children

24. 24 Children vs Employees Child • Go upstairs • Get

    undressed • Put on pajamas • Brush your teeth • Pick out 2 stories Employee • Go get some sleep

25. 25 25 Pods

26. 26 Pods Logical Application • One or more containers and

    volumes • Shared namespaces • One IP per pod Pod nginx monolith NFS iSCSI GCE 10.10.1.100

27. 27 27 Health checks

28. 28 Monitoring and Health Checks Node Kubelet Pod Pod app

    v1

29. 29 Monitoring and Health Checks Hey, app v1... You alive?

    Node Kubelet Pod app v1 app v1

30. 30 Monitoring and Health Checks Node Kubelet Nope! Pod app

    v1 app v1

31. 31 Monitoring and Health Checks OK, then I’m going to

    restart you... Node Kubelet Pod app v1 app v1

32. 32 Monitoring and Health Checks Node Kubelet Pod

33. 33 Monitoring and Health Checks Node Kubelet Pod app v1

34. 34 Monitoring and Health Checks Node Kubelet Hey, app v1...

    You alive? Pod app v1

35. 35 Monitoring and Health Checks Node Kubelet Yes! Pod app

    v1

36. 36 36 Secrets

37. 37 Secrets and Configmaps Kubernetes Master etcd API Server Node

    Kubelet secret $ kubectl create secret generic tls-certs --from-file=tls/

38. 38 Secrets and Configmaps Kubernetes Master etcd API Server Node

    Kubelet pod $ kubectl create -f pods/secure-monolith.yaml

39. 39 Secrets and Configmaps Kubernetes Master etcd API Server Node

    Kubelet API Server Node Kubelet Pod Pod

40. 40 Secrets and Configmaps Kubernetes Master etcd API Server Node

    Kubelet API Server Node Kubelet Pod Pod secret

41. 41 Secrets and Configmaps Kubernetes Master etcd API Server Node

    Kubelet API Server Node Kubelet Pod Pod /etc/tls secret

42. 42 Secrets and Configmaps Kubernetes Master etcd API Server Node

    Kubelet Node Kubelet Pod Pod /etc/tls /etc/tls 10.10.1.100 secret API Server

43. 43 Secrets and Configmaps Kubernetes Master etcd API Server Node

    Kubelet API Server Node Kubelet Pod Pod /etc/tls nginx 10.10.1.100 secret

44. 44 44 Services

45. 45 Services Pod hello Service Pod hello Pod hello

46. 46 Services Persistent Endpoint for Pods Pod hello Service Pod

    hello Pod hello

47. 47 Persistent Endpoint for Pods • Use Labels to Select

    Pods Services Pod hello Service Pod hello Pod hello

48. 48 Labels Arbitrary meta-data attached to Kubernetes object Pod hello

    Pod hello labels: version: v1 track: stable labels: version: v1 track: test

49. 49 Labels selector: “version=v1” Pod hello Pod hello labels: version:

    v1 track: stable labels: version: v1 track: test

50. 50 Labels selector: “track=stable” Pod hello Pod hello labels: version:

    v1 track: stable labels: version: v1 track: test

51. 51 Services Persistent Endpoint for Pods • Use Labels to

    Select Pods • Internal or External IPs Pod hello Service Pod hello Pod hello

52. 52 52 Deployments

53. 53 Drive current state towards desired state Deployments Node1 Node2

    Node3 Pod hello app: hello replicas: 1

54. 54 Drive current state towards desired state Deployments Node1 Node2

    Node3 Pod hello app: hello replicas: 3

55. 55 Drive current state towards desired state Deployments Node1 Node2

    Node3 Pod hello app: hello replicas: 3 Pod hello Pod hello

56. 56 Drive current state towards desired state Deployments Node1 Node2

    Node3 Pod hello app: hello replicas: 3 Pod hello

57. 57 Drive current state towards desired state Deployments Node1 Node2

    Node3 Pod hello app: hello replicas: 3 Pod hello Pod hello

58. 58 58 Rolling Updates

59. 59 Rolling Update Node1 Node3 Node2 ghost Pod app v1

    Service ghost Pod app v1 Pod app v1

60. 60 Rolling Update Node1 Node3 Node2 ghost Pod app v1

    Service ghost Pod app v1 Pod app v1 Pod app v2

61. 61 Rolling Update Node1 Node3 Node2 ghost Pod app v1

    Service ghost Pod app v1 Pod app v1 Pod app v2

62. 62 Rolling Update Node1 Node3 Node2 ghost Pod app v1

    Service ghost Pod app v1 Pod app v1 Pod app v2

63. 63 Rolling Update Node1 Node3 Node2 Service ghost Pod app

    v1 Pod app v1 Pod app v2

64. 64 Rolling Update Node1 Node3 Node2 Service ghost Pod app

    v1 Pod app v1 Pod app v2 Pod app v2

65. 65 Rolling Update Node1 Node3 Node2 Service ghost Pod app

    v1 Pod app v1 Pod app v2 Pod app v2

66. 66 Rolling Update Node1 Node3 Node2 Service ghost Pod app

    v1 Pod app v1 Pod app v2 Pod app v2

67. 67 Rolling Update Node1 Node3 Node2 Service Pod app v1

    Pod app v2 Pod app v2

68. 68 Rolling Update Node1 Node3 Node2 Service Pod app v1

    Pod app v2 Pod app v2 Pod app v2

69. 69 Rolling Update Node1 Node3 Node2 Service Pod app v1

    Pod app v2 Pod app v2 Pod app v2

70. 70 Rolling Update Node1 Node3 Node2 Service Pod app v1

    Pod app v2 Pod app v2 Pod app v2

71. 71 Rolling Update Node1 Node3 Node2 Service Pod app v2

    Pod app v2 Pod app v2

72. 72 72 Recap

73. 73 Kubernetes Manage applications, not machines Open source, Open API

    container orchestrator Supports multiple cloud and bare-metal environments Inspired and informed by Google’s experiences and internal systems

74. 74 Container • Subatomic unit in Kubernetes • Can use

    Dockerfile just like you’re used to

75. 75 Pods Logical Application • One or more containers and

    volumes • Shared namespaces • One IP per pod Pod nginx monolith NFS iSCSI GCE 10.10.1.100

76. 76 Monitoring and Health Checks Hey, app v1... You alive?

    Node Kubelet Pod app v1 app v1

77. 77 Secrets and Configmaps Kubernetes Master etcd API Server Node

    Kubelet secret $ kubectl create secret generic tls-certs --from-file=tls/

78. 78 Services Persistent Endpoint for Pods • Use Labels to

    Select Pods • Internal or External IPs Pod hello Service Pod hello Pod hello

79. 79 Labels Arbitrary meta-data attached to Kubernetes object Pod hello

    Pod hello labels: version: v1 track: stable labels: version: v1 track: test

80. 80 Drive current state towards desired state Deployments Node1 Node2

    Node3 Pod hello app: hello replicas: 3 Pod hello Pod hello

81. 81 Rolling Update Node1 Node3 Node2 ghost Pod app v1

    Service ghost Pod app v1 Pod app v1 Pod app v2

82. 82 But wait there’s more. • Persistent disks • Logging

    & Monitoring • Node & Pod Autoscaling • Web UI • Jobs & Daemon Sets • Cluster Federation • Ingress

83. 83 Scalable Microservices with Kubernetes https://www.udacity.com/course/scalable-microservices-with-kubernetes--ud615

84. Thank you! (Additional resources in the slide notes below) Transition

    to CodeLab