Rancher Rodéo France

Copyright © SUSE 2021
Rancher Rodeo
3 0 S E P T E M BRE 2022
Benoit Loriot
benoit.loriot@suse.com Sales
Engineer
Julien Niedergang
julien.niedergang@suse.com

Date Sujet
Vendredi18 Novembre NeuVector Rodeo
Voici la fin:
Contenu Lien
L'affaire CentOS https://youtu.be/DlSJWxa3mKc
Usine Logicielle https://youtu.be/_vItD1_DyRE
Présentation Neuvector https://youtu.be/UgfTuK8K-yk
Démo Neuvector https://youtu.be/b96yQCZ-I_Q

Objectives for the day
5
1. Explain Docker and Kubernetes concepts
2. Provision HobbyFarm user accounts
3. Install and Demo Rancher Server
4. Deploy a Kubernetes cluster
5. Deploy a hello-world application into the cluster
6. Deploy WordPress into the cluster

— This Rodeo Presentation is designed for those that are new to Kubernetes and Rancher
— We will cover some slightly advanced techniques (if we have time)
— What is presented in here is not necessarily how you should run something in
production, but should help give you a basis to put together the right tools to be able
to run production workloads
6
Forewarning

— Up-to-date browser
– Google Chrome
– Mozilla Firefox
– Other Chromium based browsers
7
Prerequisites

Talk to the team by:
— Using the Questions option in your GTM client
8
Have comments or questions?

The Basics
Containers &
Kubernetes
9

Copyright © SUSE 2021 11
Container Images
Application
Code
Application
Dependencies
Container
Image

Building an image

Running an image in a container
Container
Image
Container
Container
Container

— A running instance of an image
— Portable - You build your application once, and you run it
anywhere.
— You have a clean, isolated runtime environment for your
application.
— You can scale your application horizontally by spawning
more containers. Each container is guaranteed to be
identical.
14
Containers

Containers
Source : https://www.docker.com/resources/what-container

Distributing a Container Image

— Central place to store images
– Public
– Private
– On-prem / Cloud
— Examples:
– Amazon Elastic Container Registry
– Azure Container Registry
– Docker Hub
– Harbor
— Some are extended with other capabilities:
– Vulnerability scanning
– LDAP / AD Support
– Auditing
– Replication
– …
17
Container Registries

Managing a couple – no problem
Containers are great……..but

Containers are great……..but
How about managing many? How do we address:
• Networking,
• Security
• Scheduling
• Automation
• etc.

Kubernetes is a powerful open-source platform
for managing containerized workloads and services

Declarative Configuration
21

Everything in Kubernetes is a Resource
22

You can create/retrieve/update/delete resources
23

⚫ Smallest unit of deployment
⚫ Similar to what a VM is in the hypervisor world
⚫ Can contain one or more containers
⚫ Has its own resources:
⚫ Storage (i.e., shared volumes)
⚫ Networking
⚫ Scheduled on to a Worker node
Pods

⚫ Abstraction for managing a number of
identical pods
⚫ Manages these pods as a group
⚫ Updating
⚫ Scaling
⚫ Rollback
⚫ Manages desired state vs actual state
Deployments

✓
Deployments

⚫ Exposes an application running on a set of pods
⚫ Reliable, static reference for objects such as
deployments
⚫ Has its own IP address / DNS record
⚫ Pods are mortal
⚫ They have their own life-cycle
⚫ Don’t address them directly
⚫ Services can be
⚫ Internal (ClusterIP)
⚫ External facing (NodePort & Loadbalancer)
Services

10.42.0.4 10.42.0.5 10.42.0.6
Endpoints:
10.42.0.4
10.42.0.5
10.42.0.6
Type : LoadBalancer
10.42.0.7
Endpoints:
10.42.0.4
10.42.0.5
10.42.0.7
Services

⚫ Manages external access to services in a
cluster
⚫ Commonly HTTP
⚫ Gives services externally-reachable URLs
⚫ Load Balance traffic
⚫ Terminate SSL/TLS
⚫ Facilitate name-based virtual hosting
Ingresses

Kubernetes Cluster
/bar
/foo
ServiceA ServiceB
foo.bar.com/bar
foo.bar.com/foo
Ingresses

— ConfigMaps
— Secrets
— PersistentVolumes
— HorizontalPodAutoscalers
— CronJobs
— DaemonSets
— StatefulSets
— ….
Many more resources …
31

Kubernetes architecture
⚫ Controlplane:
Manages the cluster
and exposes an API for
control
⚫ Etcd:
A key value store used
as Kubernetes’
backing store for all
cluster data.
⚫ Worker:
Runs workloads and
all of the supporting
components.
API / CLI

Setting up Kubernetes is hard
33

You don’t compile Linux from scratch,
you use a distribution
34

Rancher
Kubernetes
Engine
• 100% Upstream Kubernetes
• CNCF certified
• Easy installation
• Zero-downtime upgrades
• Backup & Disaster Recovery
• Air gapped installation support
36

RKE included
add-ons
• Etcd
• CNI Plugin
• CoreDNS
• Containerd (RKE2)
• Ingress Controller
• Metrics-server
37

Managing a couple – no problem
Kubernetes clusters are great……..but

Kubernetes clusters are great……..but
How about managing
many?
• Different environments
• Different teams
• Different hardware
• Different locations
• Edge devices

There is a large ecosystem of open-source tools that integrate with Kubernetes -
https://landscape.cncf.io
(These are just the
Database projects)
Kubernetes Ecosystem

Simplify complexity across your infrastructure
Containerized App 1 Containerized App 3
Containerized App 2
Authentication Policy Enforcement & Governance
Simplified Cluster Operations & Infrastructure Management (Run & Manage)
Platform Services (Build & Secure)
Amazon
EKS
Azure
AKS
Google
GKE
Cloud
Datacenter Edge
Branch
Dev
K8s Version
Management
GitOps Continuous
Delivery
Cluster Templates &
Config Enforcement
Node Pool
Management
Cluster Provisioning &
Lifecycle Management
Centralized Audit &
CIS Benchmarking
AIOps, Monitoring &
Logging
OPA & KubeWarden
RBAC, Pod &
Network Policies
Rancher
Catalog
Monitoring &
Alerts
Dashboards &
Observability
Service
Mesh
Longhorn
Storage
Cloud-Native Hyperconverged Infrastructure
Virtualized Machine &
OS* Management
Amazon
Linux
SUSE Linux
Enterprise
RancherOS*
SUSE Liberty
& RHEL
Ubuntu
Linux
Oracle
Linux
Container
Security
Linux

Services
Repos - Packages
packages for OS
Registry
A construire? En place?
NTP
Repos - Code
Gitlab, Github…
Load Balancer
2 VIPs
Shared Storage
Type de stockage
DNS
1 x FQDN Mgmt
1 x FQDN (wildcard) vers workers Downstream
Accès
Liste des ouvertures réseau nécessaires
Proxy
Container Network Infrastructure
Provider réseau
Compute
Downstream Cluster(s)
Rancher Management Server
CSP LAN Network
Somewhere in the Cloud…
… an instance.
2 vCPU
16GB RAM
40GB vDisk
rancher01
Master (cp, etcd), Worker
1 x
… another instance.
2 vCPU
16GB RAM
40GB vDisk
cluster01
1 x
Having a short break? 44

Let’s try it out
45

Services
Repos - Packages
packages for OS
Registry
NTP
Repos - Code
Gitlab, Github…
Load Balancer
2 VIPs
Shared Storage
Type de stockage
DNS
1 x FQDN Mgmt
1 x FQDN (wildcard?) vers workers Downstream
Accès
Proxy
Provider réseau
Compute
CSP LAN Network
… an instance.
2 vCPU
4GB RAM
20GB vDisk
rancher01
1 x
2 vCPU
4GB RAM
20GB vDisk
cluster01
1 x
46
Architecture

− Navigate to learn.eu.hobbyfarm.io
− Register with your e-mail and password
− Access Code: fr300922
− Refresh your browser page
− If no scenario shows up, check access code
− Click on "Start Scenario" to ignite the instances provisioning
− Please Wait for the provisioning to complete :)
HobbyFarm

After you click on "start scenario"
learn.eu.hobbyfarm.io
Please be patient while the
instances are being deployed
Access Code: fr300922

Part 1: Rancher Installation
− Installing required tools (RKE2, Kubectl, Helm)
− Creating the management cluster
− Deploying Cert-Manager and Rancher
Pause for the coffee break at the “Accessing
Rancher” step
HobbyFarm Scenario Agenda

Introduction

Create a Kubernetes cluster for Rancher
Please leave some time for the service to start

Testing your cluster

Install HELM

Install cert-manager

Install Rancher

Verify Rancher is Ready to Access
Coffee break while we wait!

Waiting for deployment
Rancher
57

Accessing Rancher 1/2
Reach the UI & get the password

Accessing Rancher 2/2
Set a password & the Rancher URL

Services
Repos - Packages
packages for OS
Registry
NTP
Repos - Code
Gitlab, Github…
Load Balancer
2 VIPs
Shared Storage
Type de stockage
DNS
1 x FQDN Mgmt
1 x FQDN (wildcard) vers workers Downstream
Accès
Proxy
Provider réseau
Compute
CSP LAN Network
… an instance.
2 vCPU
4GB RAM
20GB vDisk
rancher01
1 x
2 vCPU
4GB RAM
20GB vDisk
cluster01
1 x
60
Architecture

Creating a Kubernetes Lab Cluster within Rancher 1/6

Rancher UI - Create a new cluster 2/6

Rancher UI - Create a new cluster 3/6

Rancher UI - Setup the new cluster 4/6
Please stick with 1.21.x

Rancher UI - Setup the new cluster 5/6

Start the bootstrapping process 6/6
Please be patient! It can take 5 good minutes to deploy.

Monitoring
First basic app + connectivity
Interacting with
your Cluster
67

Interact with your downstream cluster

Enable Rancher Monitoring
1
2
3

Working with Rancher Monitoring

Create a Deployment and Service

Create a K8S Ingress
Attention, adresse à adapter en fonction de votre lab!

Stateless
Testing an
Application
73

Creating Projects in your K8S Cluster

Add a new Chart Repository

Deploy a Wordpress as a Stateless App 1/3

Stateful
Testing an
Application
79

Deploy the nfs-server-provisioner 1/2

Deploy the nfs-server-provisioner 2/2

Creating a stateful Wordpress Project

Deploy a Wordpress as a Stateful App 1/5

Upgrading your K8S Cluster

Date Sujet
Vendredi18 Novembre NeuVector Rodeo
Nos félicitations
Contenu Lien
L'affaire CentOS https://youtu.be/DlSJWxa3mKc
Usine Logicielle https://youtu.be/_vItD1_DyRE
Présentation Neuvector https://youtu.be/UgfTuK8K-yk
Démo Neuvector https://youtu.be/b96yQCZ-I_Q

© 2020 SUSE LLC. All Rights Reserved. SUSE
and the SUSE logo are registeredtrademarks
of SUSE LLCin the UnitedStates and other
countries. All third-party trademarks are the
property of their respective owners.
For more information, contact SUSE at:
+1 800 796 3700 (U.S./Canada)
+49 (0)911-740 53-0(Worldwide)
Maxfeldstrasse 5
90409 Nuremberg
www.suse.com
Thank you

Rancher Rodéo France

Recommended

Recommended

More Related Content

Similar to Rancher Rodéo France

Similar to Rancher Rodéo France (20)

More from SUSE

More from SUSE (20)

Recently uploaded

Recently uploaded (20)

Rancher Rodéo France