Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Kubernetes and Cloud Native Meetup - March, 2019

117 views

Published on

This year's first round of Kubernetes and Cloud Native meetups in Eastern Canada began with an update of the CNCF by Ayrat Khayretdinov, CNCF Ambassador and Solutions Architect at CloudOps. He explained the status of various projects and highlights from KubeCon + CloudNativeCon. To learn the basics of cloud native application modernization, sign up for one of our hands-on, three-day workshops on Docker and Kubernetes at https://www.cloudops.com/workshops/#DockerK8s

Published in: Technology
  • Be the first to comment

  • Be the first to like this

Kubernetes and Cloud Native Meetup - March, 2019

  1. 1. Bienvenue! Welcome!
  2. 2. Thank you to our sponsors!
  3. 3. http://K8scanadaslack.herokuapp.com Joignez-vous au Slack K8s Canada!
  4. 4. Aidez-nous ! ● À Montréal, Toronto, Ottawa, Québec, Kitchener-Waterloo ● Soumettez une présentation ● Commanditez ! Rejoignez-nous sur meetup.com ● Aidez nous à organizer un meetup
  5. 5. ● CNCF Update by Archy ● Using K8s to solve K8s persistent workloads problems, DevOps style! By Philippe Theriault ● Deploying Vault on K8s with Terraform by Bart Dziekan ● Kubeadm Upgrades User Story by Suvrojeet Ghosh Agenda
  6. 6. Page Intro Ayrat “Archy” Khayretdinov CNCF Ambassador and Organizer Solution Architect at CloudOps akhayretdinov@cloudops.com Carol Trang Co-organizer and Community Manager at CloudOps ctrang@cloudops.com
  7. 7. Kubernetes Certification
  8. 8. Kubernetes Skills - Wanted
  9. 9. cloudops.com @cloudops_
  10. 10. Ateliers pratiques ! Montréal et en ligne Deepen your knowledge of containers and microservices and their ecosystems. ● Docker and Kubernetes ● CI/CD ● IaC ● Advanced Docker and Kubernetes ● Machine Learning cloudops.com/docker-and-kubernetes-workshops info@cloudops.com ● OpenShift ● Kubernetes on Google Cloud ● Kubernetes on Azure ● Kubernetes on AWS
  11. 11. Kubecon Seattle Recap
  12. 12. Day 1 K8s Developers Summit
  13. 13. K8s Developers Summit
  14. 14. Day 0 Mini Cons
  15. 15. Day 1 Ambassador Meeting
  16. 16. Keynote Day 1 - MCs
  17. 17. Keynote Day 1 - Awards
  18. 18. Keynote Day 1 - Awards
  19. 19. Keynote Day 1 - Awards
  20. 20. Keynote Day 1 AWS
  21. 21. Keynote Day 1 Microsoft
  22. 22. www.cncf.io/phippy
  23. 23. www.cncf.io/phippy
  24. 24. Keynote Day 1
  25. 25. Keynote Day 1
  26. 26. Keynote Day 1
  27. 27. Party time
  28. 28. Party time
  29. 29. Keynote Day 2
  30. 30. Keynote Day 3
  31. 31. Day 3 CloudOps Booth
  32. 32. To learn more
  33. 33. KubeCon + CloudNativeCon ● Europe 2019 (sponsorships and CFP closed) ○ CFP closed Friday, Jan 18 ○ Barcelona: May 20-23, 2019 ● China 2019 (sponsorships open) ○ Shanghai: June 24-26, 2019 ● North America 2019 (sponsorships open) ○ San Diego: November 18-21, 2019
  34. 34. 20-23 mai à Barcelone
  35. 35. Kubernetes Day India
  36. 36. Please contact us if you want to submit a talk!
  37. 37. K8s 1.14 coming soon!
  38. 38. K8s on Cloud Providers Update
  39. 39. Page Cloud Providers
  40. 40. Page Cloud Providers
  41. 41. Page Cloud Providers
  42. 42. Page CVE-2018-1002105 ● CVE-2018-1002105 - allows to bypass authorization to the kubelet's APIs ● GKE GKE Nodes fixed with - 1.10.9-gke.5, and 1.11.2-gke.18 ● AKS Fixed in version 1.11.5 ● EKS Fixed at 1.10.11.eks.3
  43. 43. Page CVE-2019-5736 ● CVE-2019-5736 (February 11, 2019) - in runc, allowing container escape to obtain root privileges on the host node ● GKE !!!Ubuntu nodes only 1.10.12-gke.7, 1.11.6-gke.11, 1.11.7-gke.4, 1.12.5-gke.5 ● AKS Fixed in version 1.12.5, 1.11.7 ● EKS updated their clusters AMI image - replace existing worker nodes with the new AMI ver. Linux image - contact OS vendor for the updates
  44. 44. Page Google Kubernetes Engine (GKE) Updates ● GKE Supports Kubernetes 1.11 ● Containerd - Beta ● Vertical Pod Autoscaler - Beta ● Encryption of Kubernetes Secrets at Rest by Cloud KMS - Beta ● Managed Istio - Beta ● Serverless Add-on (knative) - Beta ● CSP and CSP Config Management - Beta
  45. 45. Page Cloud Services Platform
  46. 46. Page Cloud Services Platform Config Management
  47. 47. cloudops.com @cloudops_ To learn more about Google cloud - Join us @
  48. 48. Page ● AKS - Supports Kubernetes 1.12!!! ● CoreDNS is now the default DNS for AKS clusters ● AKS Virtual Machine Scale Set (VMSS)- Preview ● AKS Cluster Autoscaling - Preview ● AKS Calico CNI support - Preview ● AKS Virtual Node - Preview ● AKS control plane audit Logs - Preview AKS
  49. 49. Page ● AKS Pod Identity ● AKS cluster auto-upgrade ● Node auto-repair support for AKS ● AKS private cluster ● Availability Zones (AZ) support for AKS ● Multiple node pools for your AKS workloads ● Authorized IP Ranges for Kubernetes API server ● AKS pod security policy PSP ● Azure Kubernetes Service (AKS) on Azure Stack AKS - What’s coming
  50. 50. CNCF
  51. 51. cloudops.com @cloudops_ Keynotes - CNCF Project Update
  52. 52. © 2018 Cloud Native Computing Foundation52 Cloud Native Computing Foundation • Nonprofit, part of the Linux Foundation; founded Dec 2015 • Platinum members: Incubating Service Mesh Storage Distributed Tracing Software Update Spec Security Graduated Package Management Orchestration Networking API Service Proxy Logging Remote Procedure Call Distributed Tracing API Container Runtime Container Runtime Messaging Monitoring RegistryStorage
  53. 53. CNCF Update
  54. 54. Cloud Native Computing Foundation54 CNCF Annual Report 2018 Please review CNCF’s Annual Report
  55. 55. TOC Election results!!!
  56. 56. CNCF TOC team Kelsey Hightower Developer advocate @Google Joe Beda VMware Brendan Burns Microsoft Matt Kleyn Lyft
  57. 57. New TOC has been elected!
  58. 58. CNCF SIGs
  59. 59. © 2018 Cloud Native Computing Foundation59 CNCF SIGs: Initial List • Traffic (networking, service discovery, load balancing, service mesh, RPC, pubsub, etc) – Envoy, Linkerd, NATS, gRPC, CoreDNS, CNI • Observability (monitoring, logging, tracing, profiling, etc.) – Prometheus, OpenTracing, Fluentd, Jaeger, Cortex, OpenMetrics, • Governance (security, auth, authorization, auditing, policy enforcement, compliance, GDPR, cost management, etc) – SPIFFE, SPIRE, Open Policy Agent, Notary, TUF, Falco, • App Dev, Ops & Testing (PaaS, Serverless, Operators, CI/CD, Conformance, Chaos Eng, Scalability and Reliability measurement etc.) – Helm, CloudEvents, Telepresence, Buildpacks, (CNCF CI) • Core and Applied Architectures (orchestration, scheduling, container runtimes, sandboxing technologies, packaging and distribution, specialized architectures thereof (e.g. Edge, IoT, Big Data, AI/ML, etc). – Kubernetes, containerd, rkt, Harbor, Dragonfly, Virtual Kubelet • Storage (Block and File Stores, Databases, Key-Value stores etc) – TiKV, etcd, Vitess, Rook
  60. 60. Incubation
  61. 61. etcd is a distributed reliable key-value store
  62. 62. Graduation
  63. 63. © 2018 Cloud Native Computing Foundation63 Congrats CoreDNS on Graduation! • https://www.cncf.io/announcement/2019/01/24/coredns-graduation/
  64. 64. Voting
  65. 65. How to learn more about CNCF projects?
  66. 66. CNCF Landscape (card mode)
  67. 67. cloudops.com @cloudops_ Announcing Speaker
  68. 68. Page 69 Intro Philippe Theriault & Murat Karslioglu CRO & Communauté OpenEBS Bart Dziekan K8s Architect Suvro Ghosh SW Engineer

×