Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

IPv6 on Container Plattforms

200 views

Published on

The state of IPv6 with Docker, Kubernetes, OpenShift

Talk at the Swiss IPv6 Council event Oct 1st 2018

Published in: Software
  • Be the first to comment

IPv6 on Container Plattforms

  1. 1. vshn.ch - The DevOps Company 2018-10-01 IPv6 on Container Plattforms Aarno Aukia VSHN AG 1
  2. 2. vshn.ch - The DevOps Company 2018-10-01 About me Aarno Aukia, CTO & Co-Founder @ VSHN ETH → Google → Atrila → VSHN @aarnoaukia http://about.me/aarno VSHN - The DevOps Company Since 2014, currently 30 VSHNeers in Zürich, Switzerland We help developers run web applications 24/7 in any cloud making both visitors happy with stability and developers happy with agility 2
  3. 3. vshn.ch - The DevOps Company 2018-10-01 Agenda - About Aarno/VSHN.ch - From Ops to DevOps - From configuration management to containers - Container orchestration/Kubernetes - Kubernetes Distributions - Kubernetes as a Service: APPUiO.ch - Cloud Native Computing - Demo 3
  4. 4. vshn.ch - The DevOps Company 2018-10-01 OPS = Feuerwehr-as- 4 OPS = Firefighting-as-a-Service ?
  5. 5. vshn.ch - The DevOps Company 2018-10-01 DevOps people, processes & tools 5
  6. 6. vshn.ch - The DevOps Company 2018-10-01 Customer project with Python, Celery, Postgres 6
  7. 7. vshn.ch - The DevOps Company 2018-10-01 Challenges - Scaling (virtual/cloud) servers takes minutes to hours, occasional manual intervention needed - configuration management on server-level, not on project/ deployment-level - dependencies in separate GIT, separate coordination of versions & backends needed - adding new services is complex, affects multiple components, lots of moving parts & risk - managing service dependencies at runtime - scaling up is OK, scaling down is difficult 7
  8. 8. vshn.ch - The DevOps Company 2018-10-01 wishful thinking... - Solving the build-ship-run workflow, integrated in CI/CD, DevOps and self-service-portal - Isolation between environments, projects, services and customers/tenants - solves software operations processes: hitless deployment, scaling, monitoring, backups, logs, metrics, etc - Open standards: 100% open source software - No vendor lock-in, cloud-native not cloud-only, working on any infrastructure - extensible using APIs 8
  9. 9. vshn.ch - The DevOps Company 2018-10-01 Docker - Container runtime - Tools for container image management - Dockerfile describes application environment, can be built automatically and lightweight - Packages application code, appserver, plugins, modules, libraries down to libc - enforces 12 factor app patterns - https://vshn.ch/blog/docker/ - https://github.com/docker/docker-ce/blob/master/components.conf 9
  10. 10. vshn.ch - The DevOps Company 2018-10-01 12 Factor App Patterns - https://12factor.net/ - Use declarative formats for setup automation - Have a clean, portable contract with the underlying operating system - Are suitable for deployment on modern cloud platforms, obviating the need for servers and systems administration; - Minimize divergence between development and production, enabling continuous deployment for maximum agility; - And can scale up without significant changes to tooling, architecture, or development practices. 10
  11. 11. vshn.ch - The DevOps Company 2018-10-01 IPv6 in Docker - Implemented since January 2015 - Add --ipv6 to docker daemon command line flags - -> add {"ipv6": true, "fixed-cidr-v6": "2001:db8:1::/64"} in 
 /etc/docker/daemon.json - sets up dual-stack bridge-device, routes & ip-forwarding docker run -it alpine ash -c "ip -6 addr show dev eth0; ip -6 route show" - https://docs.docker.com/v17.09/engine/userguide/networking/ default_network/ipv6/ 11
  12. 12. vshn.ch - The DevOps Company 2018-10-01 From container to production? 12
  13. 13. vshn.ch - The DevOps Company 2018-10-01 Kubernetes Container Orchestrator - How many container instances should be running per service? - On which IP/port/server are they running on? - Service discovery - What happens if a container/server goes away? - scaling, load balancing, rolling deployments, persistent storage etc 13
  14. 14. vshn.ch - The DevOps Company 2018-10-01 Kubernetes Architecture Example 14
  15. 15. vshn.ch - The DevOps Company 2018-10-01 Kubernetes IPv6 - can currently only handle 1 IP-address per container/service internally - that address can be IPv6 since Kubernetes 1.9 (December 2017)
 -> IPv4-only or IPv6-only - More than 1 address (=dual-stack) -> scheduled for K8s 1.11 -> 1.12 - Ingress load balancers have been dual stack for longer, but are not part of Kubernetes - Howto IPv6-Kubernetes: https://github.com/leblancd/kube-v6 - Scripts: https://github.com/leblancd/kube-in-the-box 15
  16. 16. vshn.ch - The DevOps Company 2018-10-01 Kubernetes Distributions Software distributions: • Redhat OpenShift • Rancher • Canonical • Docker Datacenter Enterprise • IBM cloud private • CoreOS Tectonic (aquired -> will be merged into OpenShift) Services: • EKS, AKS, GKE • APPUiO.ch See also https://thenewstack.io/find-perfect-kubernetes-distribution/ 16
  17. 17. vshn.ch - The DevOps Company 2018-10-01 OpenShift Architecture 17
  18. 18. vshn.ch - The DevOps Company 2018-10-01 APPUiO - Swiss Container Platform - Product from VSHN.ch - Managed Docker, Kubernetes, OpenShift - Shared clusters in Switzerland on cloudscale.ch, exoscale.ch or Swisscom - Shared clusters worldwide on AWS, Azure - Private clusters on any infrastructure and on-premises - Free monthly half-day training/workshops: https://appuio.ch/ techlabs.html - Starting at CHF 40/month 18
  19. 19. vshn.ch - The DevOps Company 2018-10-01 APPUiO Architecture 19
  20. 20. vshn.ch - The DevOps Company 2018-10-01 OpenShift IPv6 - No internal dualstack/IPv6 due to missing feature in upstream Kubernetes - Default HTTP(s)-Loadbalancer supports dualstack-IPv6 since Release 3.6 (August 2017) - IPv6-IP-Failover added in Release 3.7 (November 2017) - But broken (IPv6 address math seems to be hard) - Supposedly fixed in Release 3.9 (March 2018, there was no 3.8) - But broken (produces invalid VRRP config) -> thus not deployed on APPUiO.ch :( - Fixed in 3.9 errata release, live at https:// swissipv6council.appuiolab.ch/ 20
  21. 21. vshn.ch - The DevOps Company 2018-10-01 Cloud Native Computing Next Event 22. November 2018 from 18:30 Uhr https://www.meetup.com/Cloud-Native-Computing-Switzerland Please volunteer for Sponsoring & Talks https://cnc-meetup.ch 21
  22. 22. vshn.ch - The DevOps Company 2018-10-01 Examples & Demo - PHP example: https://github.com/arska/phpinfo - Python example: https://github.com/arska/flask-helloworld - Java/Spring example: https://github.com/appuio/springdemo 22
  23. 23. vshn.ch - The DevOps Company 2018-10-01 Thanks! Would you like to work with IPv6 and Kubernetes? https://vshn.ch/jobs/docker-kubernetes/ 23

×