Kubernetes x PaaS – コンテナアプリケーションのNoOpsへの挑戦 / Kubernetes x PaaS – Challenging NoOps for Container Applications

Transcript

1. 4 0 .10 . 4 1 2 0 10 .0

2. D @yokawasa / https://github.com/yokawasa C :A // 4 V 2

   4 4 2 4 e01 4
3. None

4. &')/cHfZb<lBJLmN   8hfZRF?   ]O  _`\X= fZMGa

   • &')/fZ:UjAS? • iEdTfZU> 
   9 KIU>Y LeP   • ^Qhg[   → fZVbg[nSRE → ,2#6&15g[nDev "5*06%6 $6+';WQhRF?
   4'.5' (!/CD?
   k$6+'4-3 CD 7@

5. žSelf Healing žIn-Flight Renewing žAdaptive Scale

6. ž  
       ž S O ž

   ž ž ž ž ž Self Healing Photo on oemupdate.com

7. ž 
     ž O ž ž ž

   ž In-Flight Renewing https://www.flickr.com/photos/usnavy/8019591466/

8. ž    
    ž C ž C

   ž ž ž W E Adaptive Scale
9. None

10. https://www.slideshare.net/hiromasaoka/noops-88082246

11. None
12. None

13. • Phase = Pending | Running | Succeeded | Failed

    | Unknown • Probe: • Liveness probe:  
      • Readiness probe RestartPolicy= Always| OnFailure | Never https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/ https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/ https://kubernetes.io/docs/user-guide/walkthrough/k8s201/ : Pod with an HTTP health check

14. DeploymentReplicaSet;2
    ! <6"%$#? Pod7 5)/,Pod:1  DeploymentReplicaSet9-
    ReplicaSetPod 3+0(Replica0).89-';2 Pod&"%07*(Pod:1
    4

    *(Pod>=  Deployment ReplicaSet Pod A Pod B Pod C Deployment ReplicaSet Pod A Pod B Pod C Pod C

15. Deployment ReplicaSet V1 Pod Pod Pod Deployment ReplicaSet v1 Pod

    Pod ReplicaSet V2 Pod Deployment ReplicaSet V2 Pod Pod Pod

16. • Kubernetes version .spec.updateStrategy.type
    RollingUpdate https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#rolling-updates kubectl patch statefulset web –p

    '{"spec":{"updateStrategy":{"type":"RollingUpdate"}}}'

17. 
      2.
     

18. •
    ReplicaSet / DeploymentA,Pod8( replica# ) CPUD | %&(D (%&(#*kubernetes1.8-B)7

    <1>9 • Heapster0 !* 2C %(#*64/*/? )"(8>9 E$%( >93;F • SPOF@ ' :.G -+)"(=5 ReplicaSet Pod Pod Pod Pod Holizontal Pod Autoscaler cAdvisor cAdvisor kubelet kubelet https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/ Deployment kubectl autoscale deployment php-apache --cpu-percent=50 --min=1 --max=10

19. • "4'*TN.9-A5)9';]PodK[ =:'$&3958#  CQ IH.9-^D[
    ;\ .9-CQ IH" 4'*% ('$96+!8[

    • ;\.9-` - FBS_5)9'@XW>
     EPod<YEGZIH
     .9-;\  • CA-1.0.XGAOJ"4'*kubernetes-1.8 • "4'*716'$958#P 804%9/'L\ • GCP, AWS, AzureE? • UM: Azure CA-1.1.0%29,Kubernetes-1.9.X2018/04/19 RVVMSS / acs-engineE? • See also Cluster Autoscaler on Azure
20. None
21. None

22. https://twitter.com/kelseyhightower/status/963413508300812295 https://twitter.com/kelseyhightower/status/963419882376241153 E8CF Kubernetes 
    StatefulSets Volumes'1$+1",%#1! -1"&1(*.01 /1)9 :64@=8 

     
    "&1(*. 01 /1)6;>?<     ADB  E8CF53>Kubernetes 2 ?< 7

23.  
    
       
    
       

24. Key/value Orders Cart Catalog & Reviews Document Suggestions Graph E-Commerce

    Service RDBMS  
    

25. Open Service Broker API + Service Catalog 
    ")($  

    & ž Open Service Broker API : *# %!' ž Service Catalog : KubernetesOpen Service Broker API ($!'

26. https://www.openservicebrokerapi.org/ Open Service Broker API – v2.13

27. Cloud Foundry Cloud Controller https://www.openservicebrokerapi.org/ Any Platform   

     
     API 

28. Secret Service Catalog Architecture https://kubernetes.io/docs/concepts/service-catalog/ Service Catalog Design https://github.com/kubernetes-incubator/service- catalog/blob/master/docs/design.md

29. Cloud Foundry Cloud Controller Any Platform Kubernetes + Service Catalog

    Service Catalog

30. 
      https://github.com/Azure/open-service-broker-azure

31. None
32. None

33. &!. 5 KubernetesBD &!. 5Kubernetes 
    Kubernetes)AFNDEC LP.$0 OJ
    1DHG3 7K 

     .$ • &.4D<9; • I2%+. #: • )8? ".(-% • SDN .'+ M> • .*6@
    ,. ")-/= •

34. 
      Set up High-Availability Kubernetes Masters https://kubernetes.io/docs/tasks/administer-cluster/highly-available- master/#implementation-notes

35. Agent Pool Agent VM Agent VM Agent VM Agent VM

    Agent VM Agent VM Agent VM Agent VM Hosted Control Plane AKS
     13&7*&8

36. 
        az aks scale –name mycluster –resource-group

    rg-aks --node-count 4 az aks upgrade –name mycluster –resource-group rg-aks --kubernetes-version 1.9.2

37. 1#$,28 e!8*4# 7%(!8+# $#( 7%(EXA=)?H vCPU./2`I SA= \a 7%(EX 

    KY !8* / )8'J]  
     1#$UP:[ >Q V7,1 7%( -28"07d; KubernetesZM 7%(c_L[ 
    TG<OBWb^@  6858'CF 
    !8+#"7-3
    9 NR
    *8#&D6858'EXC

38. / - 5 - 5 22 - -/  

    
       13&7*&8

39. Kubernetes control pane Application architect Infrastructure architect Azure Container Instances

    (ACI) ACI Connector Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod VM VM VM VM Deployment/ tasks Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Pod Waste Waste Waste Waste Pod Pod Pod Pod ACI Connector for Kubernetes KubernetesACI "%  
    %!#$  VM ACI     13&7*&8

40. https://github.com/virtual-kubelet/virtual-kubelet Kubetet# –  Kubernetes 
    $   "

    !
41. None
42. None

43. +36) 6$".
    *16/4>SIJL 6) GB  +36) W;GM  H,1#&?7FTZ= 9

    @R • %6!7UA5E<APC • QY6) XV8 • 04&5*1XV8 • :D*16/4-'!14 • NOK4$26/4%1(1 (CI/CD)

44. 6*!fb<  VT8[ `i -46*!]\: 6*!fb< https://docs.microsoft.com/ja-jp/azure/architecture/microservices/interservice-communication • b<GIK •

    6*!fb<GIBj]\)#65: 1&0
    6$&,366 • aYAN • '1 JaYAN21".eU • AN&36! • k&05/5 ZO6*!F@[ ?S 7cMh=;>QL Wg ID :d • 6*!(6 /5XS • E6*!ZO(6 /5XS RH(6 /526%5 • 6*!f&0+$PDC • TLSPDC W9TLS_^

45. • $A3&7+%9$A3&baFHV (4.=8A
    5;B  0+.?A![U`F 6<2A $A3& • ZR$A3&baFL7<A,@"
    L4^XIQ
    KNOHV
    IQ.=A&
    ]\
    '

    9;,TWPE • PodG$/A -5>  #A/LS KNOTW_J  https://github.com/istio/istio https://github.com/linkerd/linkerd https://github.com/runconduit/conduit PodG5;:4 $!<C$/A -5>  $A3&7+%9@1$*A2)A@MYD

46. https://istio.io/docs/concepts/what-is-istio/overview.html https://istio.io https://www.envoyproxy.io/

47. Istio - Creating circuit breaking policies https://istio.io/docs/tasks/traffic-management/circuit-breaking.html https://istio.io

48. Polly   
        https://docs.microsoft.com/ja-jp/dotnet/standard/microservices-architecture/implement-resilient- applications/implement-circuit-breaker-pattern

49. None

50. • 246
    #$9> CI/CD@,5FB* • CD#&) (')%!("%9>  • #'A./ 

    • +2 1?73 • -;=CI/CD0@)%:<8 EB

51. Helm > • Kubernetes#( "-75 #+&, ;-) • Linux apt-getyum
    Mac

    OS Homebrew  /9. • Linux DepsRPM Helm"-  Charts 1 https://helm.sh/ Helm 43<8 • ', ( Helm ): 06: +-)%,CI/CD"#', 06 • -! ( tiller ): Kubernetes' 2= #+&, ; Charts*$ ( https://github.com/kubernetes/charts

52. helm install -f config.yaml <package> … helm upgrade -f config.yaml

    <release-name> …

53. helm rollback <release-name> <revision>

54. None

55. 2*"6; 9Gb DSYL
    DS.6=4;  %0C>BQR  V`]  IT #38;

     1'6$<9Dc • ,=(8/7 %01'6$<9 • CPU
    126
    +$':=
    & @[XW • Kubernetes1'6$<9 • H;%) @[ CPU
    126
    6!= a\^OK • cAdvisorkube-state-metricsZP1'6$UE • .6=4;1'6$<9 • .6F?QR a_OK • AN=- 1'6$<9 • PaaS =-
    5 "=MJ

56. :  :   https://docs.microsoft.com/en-us/azure/architecture/microservices/logging-monitoring •   

     ! Prometheus
    InfluxDB •   !Kibana, Grafana Kibana Grafana OMS/LogAnalytics LogStash cAdvisor Prometheus Elastic Search InflluxDB
57. None
58. None
59. None