Building geographically distributed microservices with containers

•Download as PPTX, PDF•

0 likes•153 views

Running applications and services across several cloud providers and/or data centers can bring many benefits for organisations. Actually, in some cases it can even be a mandatory requirement. Making your application stack compliant with multiple cloud providers can be problematic as there are differences between cloud providers, for example in networking configurations. And to make things even more difficult, you should have a way to secure the intra-services’ communications between many cloud providers. In practice this means cumbersome network configurations with VPN and other networking security solutions. Luckily containers and modern (container) overlay networks can solve this complexity for you. In this session, we'll dive deep into how to easily setup a container platform hosted on multiple different cloud providers with a secured overlay networking for intra-service communications. Participants will learn how to utilize containers and overlay networks to build highly resilient microservice architectures.

Technology

Building geographically distributed
microservices with containers

Outline
Why geographically distributed?
How?
Solutions?
Issues?

Geographical Distribution
“the natural arrangement and apportionment of the various
forms of animals and plants in the different regions and
localities of the earth”
- Merriam-Webster dictionary

Geographical Distribution
“the natural arrangement and apportionment of the various
software components of systems and services in the
different regions and localities of the earth”

Distribution Levels
Availability Zones < 10ms
Regions within a continent < 100ms
Global regions > 100ms

Benefits
Superior resiliency
Hybrid Solutions
Regulatory requirements
Avoid vendor lock-in

Challenges
Deployment orchestration
Networking
Connectivity between DCs/clouds
Security

Requirements
Easy deployment of apps
Network level abstraction
Secure connectivity between apps

Options
VPNs between clouds
DIY deployment orchestration
Containers
Platform?

Containers FTW
Efficient use of resources
Application portability
Environment parity
Easy ´deployability´

Overlay Network
An overlay network is a computer network that is built on top of
another network. Nodes in the overlay network can be thought of
as being connected by virtual or logical links, each of which
corresponds to a path, perhaps through many physical links, in the
underlying network.
- Wikipedia

Features
Mesh networking
DNS
NAT traversal
Multicast
Security out-of-box

Network details
Kernel Open V-Switch handles routing
Standard VXLAN overlay
IPSec with AES GCM encryption

User
Space
Kernel
Space
Network
Host 1
User
App
Weave
Router
OVS
Module
Host 2
User
App
Weave
Router
OVS
Module

Scheduler
Understands zones
Spreads deployments
Supports location pinning

Murphy’s Law
Anything that can go wrong
will go wrong

Services still care
CAP theorem
Split brains
Network glitches
App level issues

Abstractions FTW
Apps don’t care about infra
Apps don’t care on network encryption
Location abstracted (to a degree)

Good application
principles
Service Mesh
Don’t “cache” DNS results
Figure out your consistency model

Summary
Containers FTW
Overlay networks ease up many things
Murphy’s Law  Failure testing
Distributed systems are still HARD

info@kontena.io
@kontenainc
slack.kontena.io
github.com/kontena
meetup.com/pro/kontena
www.kontena.io
Thank You!

Similar to Building geographically distributed microservices with containers

Intelligent networking and the ability for applications to more effectively use all of the network’s capability, rather than just the transport “pipe,” have been elusive. Until now. Nortel has developed a proof-of-concept software capability — service-mediation “middleware” called the Dynamic Resource Allocation Controller (DRAC) — that runs on any Java platform and opens up the network to applications with proper credentials,making available all of the properties of a converged network, including service topology, time-of-day reservations, and interdomain connectivity options. With a more open network, applications can directly provision and invoke services, with no need for operator involvement or point-and click sessions. In its first real-world demonstrations in large research networks, DRAC is showing it can improve user satisfaction while reducing network operations and investment costs.

Project DRAC: Creating an applications-aware network

Tal Lavian Ph.D.

Distributed computing

Alokeparna Choudhury

Delivered Guest Talk in Faculty Development Programme held on 27th July 2017 ...

Umang Singh

Salesforce - Introduction to Security & Access

Vibrant Technologies & Computers

Grid computing

Beethika Sarangi

Advanced Networking on GloMoSim

Kathirvel Ayyaswamy

13778757.ppt

KamoliddinUktamov

Virtual machines are popular because of their efficiency, ease of use and flexibility. There has been an increasing demand for deployment of a robust distributed network for maximizing the performance of such systems and minimizing the infrastructural cost. In this paper we have discussed various levels at which virtualization can be implemented for distributed computing which can contribute to increased efficiency and performance of distributed computing. The paper gives an overview of various types of virtualization techniques and their benefits. For eg: Server virtualization helps to create multiple server instances from one physical server. Such techniques will decrease the infrastructure cost, make the system more scalable and help in full utilization of available resources.

Virtualization in Distributed System: A Brief Overview

BOHR International Journal of Intelligent Instrumentation and Computing

Cloud computing

Mithraasmi

Virtual machines are popular because of their efficiency, ease of use, and flexibility. There has been an increasing demand for the deployment of a robust distributed network for maximizing the performance of such systems and minimizing the infrastructural cost. In this study, we have discussed various levels at which virtualization can be implemented for distributed computing, which can contribute to increased efficiency and performance of distributed computing. The study gives an overview of various types of virtualization techniques and their benefits. For example, server virtualization helps to create multiple server instances from one physical server. Such techniques will decrease the infrastructure costs, make the system more scalable, and help in the full utilization of available resources.

Virtualization in Distributed System: A Brief Overview

BOHR International Journal of Computer Science (BIJCS)

Initially proposed to interconnect computers worldwide, the Internet has significantly evolved to become in two decades a key element in almost all our activities. This (r)evolution mainly relies on the progress that has been achieved in computation and communication fields and that has led to the well-known and widely spread Cloud Computing paradigm. With the emergence of the Internet of Things (IoT), stakeholders expect a new revolution that will push, once again, the limits of the Internet, in particular by favouring the convergence between physical and virtual worlds. This convergence is about to be made possible thanks to the development of minimalist sensors as well as complex industrial physical machines that can be connected to the Internet through edge computing infrastructures. Among the obstacles to this new generation of Internet services is the development of a convenient and powerful framework that should allow operators, and devops, to manage the life-cycle of both the digital infrastructures and the applications deployed on top of these infrastructures, throughout the cloud to IoT continuum. In this keynote, Frédéric Desprez and his colleague Adrien Lebre presented research issues and provide preliminary answers to identify whether the challenges brought by this new paradigm is an evolution or a revolution for our community.

(R)evolution of the computing continuum - A few challenges

Frederic Desprez

cloud computing

Kalai Selvi

AWS helps organizations achieve greater business agility and flexibility. However, unpredictable access to data and applications on AWS, combined with deficient security solutions, can hinder a business’s ability to thrive in the cloud. Juniper Networks helps organizations overcome these challenges with a single solution. With the vSRX Virtual Firewall, organizations can achieve secure, high-performance connectivity for their AWS workloads while maintaining a consistent security posture, both on-premises and in the cloud. Register for our upcoming webinar to hear how Ellie Mae, a software company that processes nearly a quarter of all U.S. mortgage applications, leveraged Juniper Networks vSRX to gain secure AWS connectivity and protect their highly elastic workloads.

How Ellie Mae Leveraged Juniper Networks vSRX to Gain Secure Connectivity to ...

Amazon Web Services

Cloud computing is an internet-based computing technology, where shared re-sources such as software, platform, storage and information are provided to customers on demand. Cloud computing is a computing platform for sharing resources that include infrastructures, software, applications, and business processes. The exact definition of cloud computing is A large-scale distributed computing paradigm that is driven by economies of scale, in which a pool of abstracted, virtualized, dynamically scalable, managed computing power, storage, platforms, and services are delivered on demand to external customers over the Internet .

Security in cloud computing

Er. Saba karim

Types of computer network ...

shahbaz ahmad

Introduction Distributed Operating system Evaluation of distributed computing system Models Gaining Popularity Operating system Issues in designing DOS DCE DCE component Computer networks Network types Lan Technologies tan technologies wan technologies WAN Switching Techniques Communication Protocols Protocols for DOS Internetworking Interconnection technique Network management techniques ATM technologies

Dos unit1

JebasheelaSJ

Cluster and Grid Computing

Sayed Chhattan Shah

Inroduction to grid computing by gargi shankar verma

gargishankar1981

Sensor networks a survey

wsnapple

Intelligent networks are becoming more enveloping and dwelling a new generation of applications are deployed over the peer-to-peer networks. Intelligent networks are very attractive because of their role in improving the scalability and enhancing performance by enabling direct and real-time communication among the participating network stations. A suitable solution for resource management in distributed wireless systems is required which should support fault-tolerant operations, requested resources (at shortest path), minimize overhead generation during network management, balancing the load distribution between the participating stations and high probability of lookup success and many more. This article presents a Movement Assisted Component Based Scalable Framework (MAC-SF) for the distributed network which manages the distributed wireless resources and applications; monitors the behavior of the distributed wireless applications transparently and attains accurate resource projections, manages the connections between the participating network stations and distributes the active objects in response to the user requests and changing processing and network conditions. This system is also compared with some exiting systems. Results shows that MAC-SF is a better system and can be used in any wireless network.

MOVEMENT ASSISTED COMPONENT BASED SCALABLE FRAMEWORK FOR DISTRIBUTED WIRELESS...

ijcsa

Similar to Building geographically distributed microservices with containers (20)

Project DRAC: Creating an applications-aware network

Distributed computing

Delivered Guest Talk in Faculty Development Programme held on 27th July 2017 ...

Salesforce - Introduction to Security & Access

Grid computing

Advanced Networking on GloMoSim

13778757.ppt

Virtualization in Distributed System: A Brief Overview

Cloud computing

Virtualization in Distributed System: A Brief Overview

(R)evolution of the computing continuum - A few challenges

cloud computing

How Ellie Mae Leveraged Juniper Networks vSRX to Gain Secure Connectivity to ...

Security in cloud computing

Types of computer network ...

Dos unit1

Cluster and Grid Computing

Inroduction to grid computing by gargi shankar verma

Sensor networks a survey

MOVEMENT ASSISTED COMPONENT BASED SCALABLE FRAMEWORK FOR DISTRIBUTED WIRELESS...

More from Kontena, Inc.

Docker containers have brought great opportunities to shorten the deployment process through continuous integration and delivery of applications and microservices. This applies equally to enterprise datacenters as well the cloud. Jari discuss the solutions and benefits of a deeply-integrated deployment pipeline for using technologies such as container management platforms, Docker containers, and CI/CD solutions. He also demonstrated deployment of a CI/CD pipeline using container management, as well as showed how to deploy a containerized application using Github, Travis, Kontena, CoreOS and DigitalOcean with a continuous delivery pipeline. Attendees learned how the deployment process can be automated and significantly sped up by using containers and modern CI/CD pipeline tools. Through the demo example, the attendees will see an example of how this is built and run using the mentioned CI/CD solutions. This showed them how a continuous delivery pipeline will help streamline their processes and make deployments more agile.

CD NYC From Source Code to Production

Kontena, Inc.

The Automated Container Deployment Pipeline- JAXDevOps

Kontena, Inc.

Running Docker in Production - The Good, the Bad and The Ugly

Kontena, Inc.

Running applications and services across several cloud providers and/or data centers can bring many benefits for organisations. Actually, in some cases it can even be a mandatory requirement. Making your application stack compliant with multiple different cloud providers can be a bit problematic as all the cloud providers have slight differences for example in networking configurations. And to make things even more difficult you should have a way to secure the intra-services’ communications between many cloud providers. In practice this means cumbersome network configurations with VPN and other networking security solutions. Luckily containers and modern (container) overlay networks can solve the complexity for you. This session was presented at Kontena meetup in Helsinki and in Leonidas Afterwork in Tampere on January 2017.

Running Dockerized services across several cloud providers

Kontena, Inc.

Running Containers on Nebula OpenStack

Kontena, Inc.

Running and Scaling Symfony app in container(s)

Kontena, Inc.

Automating the CI / CD pipeline of your containerized applications

Kontena, Inc.

WordPressCafe - Deploying WordPress using Kontena

Kontena, Inc.

Barcelona MeetUp - Kontena Intro

Kontena, Inc.

Dockerizing Ruby Applications - The Best Practices

Kontena, Inc.

CoreOS Battle Stories

Kontena, Inc.

Docker in Production - Stateful Services

Kontena, Inc.

Beginners Guide To Kontena

Kontena, Inc.

More from Kontena, Inc. (13)

CD NYC From Source Code to Production

The Automated Container Deployment Pipeline- JAXDevOps

Running Docker in Production - The Good, the Bad and The Ugly

Running Dockerized services across several cloud providers

Running Containers on Nebula OpenStack

Running and Scaling Symfony app in container(s)

Automating the CI / CD pipeline of your containerized applications

WordPressCafe - Deploying WordPress using Kontena

Barcelona MeetUp - Kontena Intro

Dockerizing Ruby Applications - The Best Practices

CoreOS Battle Stories

Docker in Production - Stateful Services

Beginners Guide To Kontena

Recently uploaded

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Rafal Los

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Juan lago vázquez

The presentation explores the development and application of artificial intelligence (AI) from its inception to its current status in the modern world. The term "artificial intelligence" was first coined by John McCarthy in 1956 to describe efforts to develop computer programs capable of performing tasks that typically require human intelligence. This concept was first introduced at a conference held at Dartmouth College, where programs demonstrated capabilities such as playing chess, proving theorems, and interpreting texts. In the early stages, Alan Turing contributed to the field by defining intelligence as the ability of a being to respond to certain questions intelligently, proposing what is now known as the Turing Test to evaluate the presence of intelligent behavior in machines. As the decades progressed, AI evolved significantly. The 1980s focused on machine learning, teaching computers to learn from data, leading to the development of models that could improve their performance based on their experiences. The 1990s and 2000s saw further advances in algorithms and computational power, which allowed for more sophisticated data analysis techniques, including data mining. By the 2010s, the proliferation of big data and the refinement of deep learning techniques enabled AI to become mainstream. Notable milestones included the success of Google's AlphaGo and advancements in autonomous vehicles by companies like Tesla and Waymo. A major theme of the presentation is the application of generative AI, which has been used for tasks such as natural language text generation, translation, and question answering. Generative AI uses large datasets to train models that can then produce new, coherent pieces of text or other media. The presentation also discusses the ethical implications and the need for regulation in AI, highlighting issues such as privacy, bias, and the potential for misuse. These concerns have prompted calls for comprehensive regulations to ensure the safe and equitable use of AI technologies. Artificial intelligence has also played a significant role in healthcare, particularly highlighted during the COVID-19 pandemic, where it was used in drug discovery, vaccine development, and analyzing the spread of the virus. The capabilities of AI in healthcare are vast, ranging from medical diagnostics to personalized medicine, demonstrating the technology's potential to revolutionize fields beyond just technical or consumer applications. In conclusion, AI continues to be a rapidly evolving field with significant implications for various aspects of society. The development from theoretical concepts to real-world applications illustrates both the potential benefits and the challenges that come with integrating advanced technologies into everyday life. The ongoing discussion about AI ethics and regulation underscores the importance of managing these technologies responsibly to maximize their their benefits while minimizing potential harms.

Artificial Intelligence: Facts and Myths

Joaquim Jorge

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

Manulife - Insurer Innovation Award 2024

The Digital Insurer

Top 10 Most Downloaded Games on Play Store in 2024

SynarionITSolutions

Real Time Object Detection Using Open CV

Khem

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

Discord is a free app offering voice, video, and text chat functionalities, primarily catering to the gaming community. It serves as a hub for users to create and join servers tailored to their interests. Discord’s ecosystem comprises servers, each functioning as a distinct online community with its own channels dedicated to specific topics or activities. Users can engage in text-based discussions, voice calls, or video chats within these channels. Understanding Discord Servers Discord servers are virtual spaces where users congregate to interact, share content, and build communities. Servers may revolve around gaming, hobbies, interests, or fandoms, providing a platform for like-minded individuals to connect. Communication Features Discord offers a range of communication tools, including text channels for messaging, voice channels for real-time audio conversations, and video channels for face-to-face interactions. These features facilitate seamless communication and collaboration. What Does NSFW Mean? The acronym NSFW stands for “Not Safe For Work,” indicating content that may be inappropriate for professional or public settings. NSFW Content NSFW content encompasses material that is sexually explicit, violent, or otherwise graphic in nature. It often includes nudity, profanity, or depictions of sensitive topics.

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

UK Journal

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

Partners Life - Insurer Innovation Award 2024

The Digital Insurer

Recently uploaded (20)

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Apidays New York 2024 - The value of a flexible API Management solution for O...

Axa Assurance Maroc - Insurer Innovation Award 2024

Exploring the Future Potential of AI-Enabled Smartphone Processors

How to Troubleshoot Apps for the Modern Connected Worker

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Artificial Intelligence: Facts and Myths

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

Manulife - Insurer Innovation Award 2024

Top 10 Most Downloaded Games on Play Store in 2024

Real Time Object Detection Using Open CV

Boost Fertility New Invention Ups Success Rates.pdf

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Strategies for Landing an Oracle DBA Job as a Fresher

Partners Life - Insurer Innovation Award 2024

Building geographically distributed microservices with containers

1. Building geographically distributed microservices with containers

2. Outline Why geographically distributed? How? Solutions? Issues?

3. Geographical Distribution “the natural arrangement and apportionment of the various forms of animals and plants in the different regions and localities of the earth” - Merriam-Webster dictionary

4. Geographical Distribution “the natural arrangement and apportionment of the various software components of systems and services in the different regions and localities of the earth”

5. Distribution Levels Availability Zones < 10ms Regions within a continent < 100ms Global regions > 100ms

6. Benefits Superior resiliency Hybrid Solutions Regulatory requirements Avoid vendor lock-in

7. Challenges Deployment orchestration Networking Connectivity between DCs/clouds Security

8. Requirements Easy deployment of apps Network level abstraction Secure connectivity between apps

9. Options VPNs between clouds DIY deployment orchestration Containers Platform?

10.

11. Containers FTW Efficient use of resources Application portability Environment parity Easy ´deployability´

12. In Practice with

13.

14. Overlay Network An overlay network is a computer network that is built on top of another network. Nodes in the overlay network can be thought of as being connected by virtual or logical links, each of which corresponds to a path, perhaps through many physical links, in the underlying network. - Wikipedia

15. Features Mesh networking DNS NAT traversal Multicast Security out-of-box

16. Network details Kernel Open V-Switch handles routing Standard VXLAN overlay IPSec with AES GCM encryption

17. User Space Kernel Space Network Host 1 User App Weave Router OVS Module Host 2 User App Weave Router OVS Module

18. Scheduler Understands zones Spreads deployments Supports location pinning

19. But what about the microservices?

20. Murphy’s Law Anything that can go wrong will go wrong

21.

22. Services still care CAP theorem Split brains Network glitches App level issues

23. Abstractions FTW Apps don’t care about infra Apps don’t care on network encryption Location abstracted (to a degree)

24. Good application principles Service Mesh Don’t “cache” DNS results Figure out your consistency model

25. Summary Containers FTW Overlay networks ease up many things Murphy’s Law  Failure testing Distributed systems are still HARD

26. info@kontena.io @kontenainc slack.kontena.io github.com/kontena meetup.com/pro/kontena www.kontena.io Thank You!

Editor's Notes

Why would one want to run apps across clouds / datacenters Focus on platform issues and solutions, not so much app level What I mean with platform?
Single cloud region halt does not halt your app Natural disasters Mis config, AWS example Locality, latency issues Data has to be within EU for example Do not tie yourself into one provider Hybrid solutions Access to in-house private assets Oracle running in the basement
Configuration management is a pain How do you deploy your app into multiple clouds Networking is different in all providers How to enable connectivity between clouds Securely How will your services find each others between clouds Some services are internal, microservices
App developers should not have to worry about DC/cloud provider details Apps can connect to other apps “natively”, no need to worry about any network level details Network level security should be taken care of by the “platform”
Script your way out VPNs for inter-cloud connectivity Anyone setup VPN knows it’s a bit of a pain Not all cloud provider provide private networking Containers help to solve some of the issues Ready made cross-cloud platform, are there any?
After a few weeks/months system looks like this, a perfectly working system You have every feature that you need, and still some duck tape for the future What if that generator dies? Fun to build these kinds of things, but maybe not best use for your time (and company money)
Why is everyone talking about containers? You can run multiple apps on one single host with ease Any host with container engine can run any app As long as they are using the standard image format Java reference Deploying an app is basically two step process, pull image and run it
Bunch of other alternatives too Kubernetes Docker Swarm Rancher Networking Calico Canal Flannel …
Containers abstract the provider out Overlay networking as an enabler Abstract provider networking details out Transparent security at low level networking
Each node relays data for the network. All mesh nodes cooperate in the distribution of data in the network DNS helps service discovery Data between apps traverses NATs Overlays can support multicast across clouds Security on network level
(container) scheduler needs to understand your infra locations To some level Scheduler should be able to spread app instances into different “zones” Scheduler should be able to pin services in a certain location Placement-pref spread in Swarm Kube failure domain zones & SelectorSpreadPriority
Conway’s law is kinda important when thinking about distributed systems But there’s far more important law to think about Murphy’s Law Things When your running multiple instances and at multiple different locations at the same time, likelihood of things breaking gets higher And when things break, they break in more than one place Personal experience: And things usually break during bank holidays. Christmas time, Easter, Mid-summer in Finland
500-700 containers lost at sea each year Force majoures still happen Numerous examples of connectivity breaks between datacenters Few years ago in Finland main fiber line cut with an excavator  half of the country suffered
Even if the network is abstracted, CAP still applies Some one can still use an excavator and cut the fibers So at app level, still use Circuit breakers
Linkerd, Istio, Conduit, Aspen Mesh Many apps “cache” DNS results after startup For example Ruby Mongo driver used to do this System level consistency model For strongly consistent systems, geo dist might not even work Chaos engineering Run few alpha CoreOS boxes in prod

Building geographically distributed microservices with containers

Recommended

Recommended

More Related Content

Similar to Building geographically distributed microservices with containers

Similar to Building geographically distributed microservices with containers (20)

More from Kontena, Inc.

More from Kontena, Inc. (13)

Recently uploaded

Recently uploaded (20)

Building geographically distributed microservices with containers

Editor's Notes