AWS User Group 5/12 meetup - ECS

•Download as PPTX, PDF•

1 like•225 views

- AWS ECS saw significant growth and usage in 2017, with hundreds of millions of containers started each week and millions of container instances. - In 2017 AWS ECS added several new features including support for Windows containers, load balancers, device and init flags, and new regions. - AWS announced Fargate, a serverless compute engine for containers that removes the need to provision and manage servers. - AWS also announced EKS, a managed Kubernetes service that runs Kubernetes clusters on the AWS infrastructure and integrates with AWS services.

Software

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
WHAT WE DID IN 2017
CLI V1.0Container Access to
Environmental Metadata
Support for Docker
Privileged Mode
Network Load
Balancer Support
Container
Instance
Draining
Linux Capabilities
Lifecycle Policies for
Container Images
Seoul Region
Beijing
Region
Support for
Device and
Init Flags
Task Elastic Network Interfaces
Cron and Cloudwatch
Event Task Scheduling
Windows Containers
HIPAA
Eligibility
Console Support for SpotFleet
Override Parameters for
RunTask and StartTask APIs
Console UX Improvements
Application Load
Balancer Support
Add Attributes During Boot

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Customers Using Containers at Scale

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
HELPING CUSTOMERS SCALE
THEIR CONTAINERS
450+%
growth
Hundreds of millions
of containers started each week
millions
of container instances

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Compliance
9001/27001/27017/27018

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
99.99
© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Make AWS the
BEST PLACE
to run containerized
applications
© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Make
containers a
fundamental
compute
primitive
© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Make
containers
tasks a
fundamental
compute
primitive

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
IAM roles
for tasks

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Task
autoscaling

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Task LBs

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Task
networking

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
INTRODUCING MANAGED SERVICE
DISCOVERY FOR ECS
Build apps where services are invoked by name and name
resolves to IP/port dynamically.
Service discovery is activated during service deployment.

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
AWS Codepipeline and Amazon
ECS

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
AWS CodePipeline for ECS
AWS
CodeCommit
AWS
CodeBuild
Amazon ECR
AWS
CodePipeline
Amazon ECS
Source
Repository Build Deploy
or or

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Cluster
Management
is a relic
of physical
infrastructure

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
An API for
containers

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
What is
Fargate?

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
WHAT ABOUT KUBERNETES?

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
“Run Kubernetes for me.”

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
“Native AWS Integrations.”

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
”An Open Source Kubernetes Experience.”

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
+
=
E L A S T I C C O N T A I N E R S E R V I C E F O R K U B E R N E T E S
(EKS)

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
mycluster.eks.amazonaws.com
Availability
Zone 1
Availability
Zone 2
Availability
Zone 3
Kubectl

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Native VPC
networking with
CNI plugin
Pods have the same
VPC address inside
the pod as on the VPC
Simple, secure
networking
Open source and
on Github
…{ }

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Kubernetes Network
Policies enforce network
security rules
Calico is the leading
implementation of the
network policy API
Open source, active
development (>100
contributors)
Commercial support
available from Tigera

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
1.7.41.7.5
Version
1.7
Version
1.8

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Heptio IAM Authenticator
h t t p s : / / g i t h u b . c o m / h e p t i o l a b s / k u b e r n e t e s - a w s - a u t h e n t i c a t o r
An open source approach to integrating
AWS IAM authentication with Kubernetes

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Kubectl
3) Authorizes AWS Identity with RBAC
K8s API
1) Passes AWS Identity
2) Verifies AWS Identity
4) K8s action
allowed/denied
AWS Auth

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
GENERALLY
AVAILABLE
2018

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
One more thing

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
WITH

© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
THANK YOU
donenfel@amazon.com

Learn about AWS ECS, the native AWS container management service. ECS is the easiest way to run Docker containers on AWS. AWS runs and maintains the orchestration software, handles scaling and simplifies the process. In this DevTalk, you'll get an introduction to the ECS terms and concepts. We'll cover the ECS ecosystem and list some of the tools in the space. Then we'll jump into a demo using an ECS deploy tool called ufo. As a bonus, we'll talk about the strategies to optimize costs with ECS.

Getting Started with Containers on AWS

Amazon Web Services

Getting-started-with-containers on AWS

Amazon Web Services

The document outlines an agenda for a container session covering topics like getting started with Docker on AWS, deep dives on Amazon ECS and AWS Fargate, building CI/CD pipelines for container deployments, Amazon EKS, and building efficient and secure containers. It provides overviews of key AWS container services like ECS, EKS, and Fargate, how they manage and host containers, and their benefits around scalability, integration and ease of use.

AWS Compute Evolved Week: Running Kubernetes on AWS

Amazon Web Services

This document appears to be a slide deck presentation about running Kubernetes on AWS. Some key points summarized: - Kubernetes is an open source container management platform that helps run containers at scale and provides primitives for building modern applications. - 57% of Kubernetes workloads currently run on AWS according to the Cloud Native Computing Foundation. - When running Kubernetes on AWS, there are choices around how to set up the Kubernetes cluster, such as using Elastic Kubernetes Service (EKS). - EKS manages the Kubernetes control plane and API server, provides security and integration with AWS Identity and Access Management (IAM).

AWS Initiate - Migrando seus dados - Windows Workloads

Amazon Web Services LATAM

The document discusses Microsoft workloads and data migration on AWS. It provides an overview of AWS's 10+ years of experience running Microsoft applications, and highlights key AWS services that support Windows and SQL Server such as EC2, RDS, S3, and containers. It also notes AWS's global infrastructure, security certifications, continuous price reductions, and focus on customer experience as advantages for running Microsoft workloads on AWS.

AWS Chicago user group: AWS Platform for .NET Developers

AWS Chicago

ECS-Ingress: easy nginx load balancing across ecs services

Stefano Fratini

AWS ECS vs EKS

Norberto Enomoto

The document discusses container orchestration tools on AWS including Amazon ECS and Amazon EKS. It provides an overview of ECS, describing it as a fully managed container orchestration platform. It also summarizes EKS, noting that it is fully managed Kubernetes that allows users to run Kubernetes on AWS. The document compares ECS and EKS, noting differences in cost, ease of use, support, and compatibility between the two services.

The document describes Amazon EKS (Elastic Container Service for Kubernetes), including an overview of EKS, its architecture, features, and integration with other AWS services. Key points include: EKS manages Kubernetes control planes and nodes are launched in the customer's VPC, EKS supports networking via the AWS VPC CNI plugin, and EKS provides security and access management using IAM roles and policies.

Getting Started on Amazon EKS

Matthew Barlocker

AWS 고객사를 위한 ‘AWS 컨테이너 교육’ - 유재석, AWS 솔루션즈 아키텍트

Amazon Web Services Korea

AWS를 사용하는 고객사 중 고급 사용자를 대상으로 하는 ‘AWS 컨테이너 교육’ 입니다. 본 교육에서는 현재 컨테이너 오케스트레이션 툴 중에 가장 관심을 많이 받고 있는 쿠버네티스와 AWS에서 관리형 서비스로 만든 Amazon EKS에 대해 알아봅니다. 쿠버네티스 클러스터를 직접 만들어보고 여러 오픈소스를 활용하여 모니터링, 로깅 등 실제 서비스 환경에서 필요한 기능을 어떻게 구현하는지 실습합니다.

Amazon EKS: Getting Started

Tanya Seno

Elastic Kubernetes Services (EKS)

sriram_rajan

This document provides an overview and agenda for an AWS webinar on Amazon EKS (Elastic Kubernetes Service). The key topics to be covered include: Kubernetes concepts and architecture; EKS features such as high availability, auto-scaling, and integration with IAM; networking and security with EKS; and best practices for running containers on EKS. The webinar aims to explain how EKS provides a fully managed Kubernetes service on AWS.

Amazon EKS Deep Dive

Andrzej Komarnicki

Dev/Test Environment Provisioning and Management on AWS

Shiva Narayanaswamy

This document discusses using AWS for development and test environments. It covers why AWS is well-suited for these use cases, the types of AWS services that can be used, and common patterns. Development and test environments on AWS are characterized as being disposable and numerous. AWS provides unlimited elastic capacity for development and test needs in the cloud at low cost since resources can be quickly provisioned as needed and discarded when no longer required.

Amazon EKS Managed Kubernetes Cluster

kloia

AWS SSA Webinar 12 - Getting started on AWS with Containers

Cobus Bernard

Introduction to Amazon EKS

Amazon Web Services

The document discusses Amazon EKS (Elastic Kubernetes Service), which allows users to run Kubernetes on AWS. It highlights that EKS manages the control plane for users and provides native integrations with other AWS services like load balancers, IAM, and container registry. The document also summarizes key capabilities like high availability of the Kubernetes masters, networking options, version upgrades, and how to provision Kubernetes nodes on EKS.

Containers on AWS

Amazon Web Services

Architecting Microsoft Applications with VMware on AWS - WIN305 - re:Invent 2017

Amazon Web Services

VMware Cloud on AWS lets you migrate your existing on-premises applications to the AWS Cloud while retaining the tooling, management, and operating process you already have. VMware Cloud on AWS brings VMware’s Software-Defined Data Center (SDDC) to the AWS Cloud, allowing customers to run applications across operationally consistent VMware vSphere®-based private, public, and hybrid cloud environments, with optimized access to AWS services. You can use the VMware on AWS solution to bring the scalability and agility of the cloud to your existing Microsoft applications. This session will provide an architectural deep dive on VMware on AWS for your Microsoft applications. We will discuss the key architectural components of the VMware Cloud on AWS solution for your Microsoft applications. Attendees will learn about best practices and receive practical advice on how to start using Vmware Cloud on AWS for their Microsoft applications.

ARC402_Architectural Patterns and Best Practices with VMware Cloud on AWS

Amazon Web Services

The recent launch of VMware Cloud on AWS gives customers new options for addressing several use cases, including cloud migration, hybrid deployments, and disaster recovery. We introduce and describe design patterns for incorporating VMware Cloud on AWS into existing architecture and detail how the service’s capabilities can influence future architectural plans. We explore design considerations and nuances for integrating VMware Cloud on AWS Software Defined Data Centers (SDDCs) with native AWS services, enabling you to use each platform’s benefits. Architects, system operators, and anyone looking to understand VMware Cloud on AWS will walk away with examples and options for solving challenging use cases with this new, exciting service.

Eks and fargate

Asaf Abres

This document provides an overview and introduction to Amazon EKS (Elastic Kubernetes Service). It discusses key EKS features such as AWS integrations for load balancing, authentication via IAM, and VPC networking. The document also covers Kubernetes concepts such as pods, deployments, services and explains some of the difficulties of managing Kubernetes clusters. Finally, it mentions there will be a demonstration of creating and describing an EKS cluster.

Platform for Innovation - AWS

Shiva Narayanaswamy

This document discusses how Amazon Web Services (AWS) provides a platform for innovation. It notes that traditional IT spends most budgets keeping existing systems running rather than innovating. The AWS platform allows companies to focus on building applications rather than managing infrastructure. It provides a wide range of services, from basic compute and storage to databases, analytics, and more. Companies can deploy applications on AWS using methods like Elastic Beanstalk, EC2 Container Service, and serverless technologies. This flexible platform allows innovation while maintaining security, compliance, and availability.

CON302_Building a CICD Pipeline for Containers on Amazon ECS

Amazon Web Services

Containers can make it easier to scale applications in the cloud, but how do you set up your CI/CD workflow to automatically test and deploy code to containerized apps? In this session, we explore how developers can build effective CI/CD workflows to manage their containerized code deployments on AWS. Ajit Zadgaonkar, director of engineering and operations at Edmunds, walks through best practices for CI/CD architectures used by his team to deploy containers. We also deep dive into topics such as how to create an accessible CI/CD platform and architect for safe Blue-Green deployments.

VMware Cloud on AWS: A World of Unique Integrations Between VMware and AWS - ...

Amazon Web Services

VMware Cloud on AWS brings VMware’s enterprise class Software-Defined Data Center software to the AWS Cloud, and enables customers to run production applications across vSphere-based private, public, and hybrid cloud environments. Delivered, sold, and supported by VMware as an on-demand service, customers can also leverage AWS services including storage, databases, analytics, and more. With the same architecture and operational experience on-premises and in the cloud, IT teams can now quickly derive value instant business value from use of the AWS and VMware hybrid cloud experience. Session sponsored by VMware

Introduzione ad Amazon EKS

Amazon Web Services

Deep Dive On Serverless App Development

Amazon Web Services

by Rahul Sareen, Sr. IoT Consultant, AWS Professional Services AWS Lambda and Amazon API Gateway have changed how developers build and run their applications or services. But what are the best practices for tasks such as deployment, monitoring, and debugging in a serverless world? In this session, we’ll dive into best practices that serverless developers can use for application lifecycle management, CI/CD, monitoring, and diagnostics. We’ll talk about how you can build CI/CD pipelines that automatically build, test, and deploy your serverless applications using AWS CodePipeline, AWS CodeBuild, and AWS CloudFormation. We’ll also cover the built-in capabilities of Lambda and API Gateway for creating multiple versions, stages, and environments of your functions and APIs. Finally, we’ll cover monitoring and diagnostics of your Lambda functions with Amazon CloudWatch and AWS X-Ray.

Aws container webinar day 2

HoseokSeo7

This document discusses infrastructure as code (IaC) tools for Amazon EKS clusters. It provides information on Terraform, AWS CDK, and eksctl for provisioning EKS infrastructure. It also covers continuous integration/continuous deployment (CI/CD) concepts and tools like Jenkins, Spinnaker, and AWS Code services. Logging tools like Sumologic, Elasticsearch, and Amazon CloudWatch Logs are compared for collecting and analyzing EKS logs. Monitoring of EKS clusters using Prometheus, Grafana, and Weave Scope is also discussed.

Introducing Amazon EKS

Amazon Web Services

Introduction to AWS Fargate & Amazon Elastic Container Service for Kubernetes

Amazon Web Services

What's hot

Amazon EKS - Elastic Container Service for Kubernetes

Amazon Web Services

Getting Started on Amazon EKS

Matthew Barlocker

AWS 고객사를 위한 ‘AWS 컨테이너 교육’ - 유재석, AWS 솔루션즈 아키텍트

Amazon Web Services Korea

Amazon EKS: Getting Started

Tanya Seno

Elastic Kubernetes Services (EKS)

sriram_rajan

Amazon EKS Deep Dive

Andrzej Komarnicki

Dev/Test Environment Provisioning and Management on AWS

Shiva Narayanaswamy

Amazon EKS Managed Kubernetes Cluster

kloia

AWS SSA Webinar 12 - Getting started on AWS with Containers

Cobus Bernard

Introduction to Amazon EKS

Amazon Web Services

Containers on AWS

Amazon Web Services

Architecting Microsoft Applications with VMware on AWS - WIN305 - re:Invent 2017

Amazon Web Services

ARC402_Architectural Patterns and Best Practices with VMware Cloud on AWS

Amazon Web Services

Eks and fargate

Asaf Abres

Platform for Innovation - AWS

Shiva Narayanaswamy

CON302_Building a CICD Pipeline for Containers on Amazon ECS

Amazon Web Services

VMware Cloud on AWS: A World of Unique Integrations Between VMware and AWS - ...

Amazon Web Services

Introduzione ad Amazon EKS

Amazon Web Services

Deep Dive On Serverless App Development

Amazon Web Services

Aws container webinar day 2

HoseokSeo7

What's hot (20)

Amazon EKS - Elastic Container Service for Kubernetes

Getting Started on Amazon EKS

AWS 고객사를 위한 ‘AWS 컨테이너 교육’ - 유재석, AWS 솔루션즈 아키텍트

Amazon EKS: Getting Started

Elastic Kubernetes Services (EKS)

Amazon EKS Deep Dive

Dev/Test Environment Provisioning and Management on AWS

Amazon EKS Managed Kubernetes Cluster

AWS SSA Webinar 12 - Getting started on AWS with Containers

Introduction to Amazon EKS

Containers on AWS

Architecting Microsoft Applications with VMware on AWS - WIN305 - re:Invent 2017

ARC402_Architectural Patterns and Best Practices with VMware Cloud on AWS

Eks and fargate

Platform for Innovation - AWS

CON302_Building a CICD Pipeline for Containers on Amazon ECS

VMware Cloud on AWS: A World of Unique Integrations Between VMware and AWS - ...

Introduzione ad Amazon EKS

Deep Dive On Serverless App Development

Aws container webinar day 2

Similar to AWS User Group 5/12 meetup - ECS

Introducing Amazon EKS

Amazon Web Services

Introduction to AWS Fargate & Amazon Elastic Container Service for Kubernetes

Amazon Web Services

Introducing Amazon Fargate

Amazon Web Services

Running Container on AWS - Builders Day Israel

Amazon Web Services

Kubernetes on AWS with Amazon EKS

Amazon Web Services

This document summarizes Paul Maddox's presentation on Amazon EKS (Elastic Container Service for Kubernetes). It includes an agenda for the presentation, introduces Maddox and his background, and addresses some frequently asked questions about EKS. The presentation then provides an introduction to Kubernetes and EKS, describing how EKS manages the Kubernetes control plane and allows customers to run Kubernetes clusters on AWS, while also integrating AWS services. It highlights new features of EKS like Kubernetes certification and cross-account networking capabilities.

NEW LAUNCH! Introducing Amazon EKS - CON215 - re:Invent 2017

Amazon Web Services

K8s on AWS: Introducing Amazon EKS

Amazon Web Services

This document introduces Amazon EKS, a managed Kubernetes service that makes it easy to run Kubernetes on AWS. Some key points: - EKS manages the control plane components needed to run Kubernetes clusters, eliminating the overhead of maintaining the control plane. - It provisions and manages the Kubernetes control plane across multiple availability zones, providing high availability. - It also integrates tightly with other AWS services like IAM, VPC networking, security groups, load balancers, and more for a native AWS experience. - EKS is based on the open source Kubernetes project and allows users to leverage the same APIs, tooling, and features while benefiting from the scalability of AWS.

Building with Containers on AWS

Amazon Web Services

by Erin McGill, Partner Solutions Architect, AWS By packaging software into standardized units, containers give code everything it needs to run, ensuring consistency from your laptop all the way into production. But once you have your code ready to ship, how do you run and scale it in the cloud? In this session, you will learn about your options for running containers on AWS and the integrated AWS services that you can take advantage of to run and scale containerized applications.

NEW LAUNCH! Introducing AWS Fargate - CON214 - re:Invent 2017

Amazon Web Services

Driving Innovation with Containers - CON203 - re:Invent 2017

Amazon Web Services

Containers allow you to easily package an application's code, configurations, and dependencies into easy to use building blocks that deliver environmental consistency, operational efficiency, developer productivity, and version control. But how can developers leverage containers to drive innovation for their applications, their team, and organization? In this session, Asif Khan Technical Business Manager for AWS will discuss how containers are becoming a new cloud native compute primitive, and how your organization can use containers as a building block to accelerate innovation. WeWork's Christopher Tava, Joshua Davis, and OpsLine's Radek Wierzbicki will show how they adopted containers as discipline in code development, and how they refactored their production architecture into containers running on Amazon ECS in under 8 months.

CON203_Driving Innovation with Containers

Amazon Web Services

"Containers allow you to easily package an application's code, configurations, and dependencies into easy to use building blocks that deliver environmental consistency, operational efficiency, developer productivity, and version control. But how can developers leverage containers to drive innovation for their applications, their team, and organization? In this session, Asif Khan Technical Business Manager for AWS will discuss how containers are becoming a new cloud native compute primitive, and how your organization can use containers as a building block to accelerate innovation. WeWork's Christopher Tava, Joshua Davis, and OpsLine's Radek Wierzbicki will show how they adopted containers as discipline in code development, and how they refactored their production architecture into containers running on Amazon ECS in under 8 months."

Technological Accelerants for Organizational Transformation - DVC303 - re:Inv...

Amazon Web Services

Developers and management can seem at cross purposes when one group looks at technologies and the other looks at organizational issues. Both groups are looking for ways to deliver value faster, leaner, and at less cost. There are technological avenues for accomplishing these goals, including DevOps and serverless architectures. However, these approaches also have organizational implications, as they change the nature and content of communication between teams. In this session, we cover the technology benefits and organizational transformations involved in DevOps and serverless architectures. This session is part of the re:Invent Developer Community Day, six community-led sessions where AWS enthusiasts share technical insights on trending topics based on first-hand experiences and knowledge shared within local AWS communities.

DVC303-Technological Accelerants for Organizational Transformation

Amazon Web Services

The document discusses technological accelerants for organizational transformation, including serverless computing and DevOps practices. It provides examples from companies that have adopted DevOps and serverless architectures to break down silos between teams, make work visible through dashboards, identify process bottlenecks, and fix problems early. iRobot is discussed as a case study of a company that transformed to a serverless production cloud and analytics platform. While the cloud and serverless architectures provide benefits, they also present new challenges around visibility, unexpected problems due to increased scale, and ensuring organizational structure changes to align with new technical architectures.

AWS 容器服務入門實務

Amazon Web Services

AWS 上有許多容器方案可以選擇，例如 Amazon ECS、Amazon EKS、AWS Fargate、Docker Swarm、Openshift 或是基於 Windows Container 的解決方案，到底我應該選擇哪一個入門使用呢？在這場線上研討會，我們將探討如何在 AWS 選擇適合自己的容器服務, 我們將會從不同角度探討不同的使用場景分析這些服務的優勢，幫助您選擇一個易於管理與擴展的容器生產環境。

DEV203_Launch Applications the Amazon Way

Amazon Web Services

This document summarizes a presentation given by Henry Hahn on launching applications using AWS services. It discusses how Amazon transformed its development practices to focus on DevOps principles like continuous integration and delivery. It also outlines the various AWS Code services like CodeCommit, CodeBuild, CodeDeploy and CodePipeline that help automate the software development lifecycle from source control to deployment. The presentation demonstrates using these services to deploy a sample application through CodeStar and monitoring the deployment pipeline.

遷移到 AWS 雲端旅程的方法與工具

Amazon Web Services

當今有越來越多客戶想要藉由雲端運算來提升 IT 環境的彈性並降低長期營運成本，但常因不知道適當的方法與自動化工具導致遷移困難，遲遲無法享受雲端帶來的彈性，創新與低成本的好處．現在 AWS 已經制定了一套遷移方法，搭配 AWS Migration Hub 與眾多第三方遷移工具，讓客戶可以迅速進行遷移評估，執行，驗證與優化，加速客戶雲端遷移的旅程．在這場線上研討會中，我們將介紹 AWS Migration Process 中的 5 個階段與 6 個 R 的遷移策略，並會概述的談到 AWS 與第三方的遷移服務與工具，讓您對未來雲端遷移有基本藍圖。另外，我們亦提供 AWS Migration Acceleration Program (MAP) ，旨在通過將現有工作負載遷移到 AWS 來幫助致力於遷移旅程的企業實現一系列這些業務優勢，按此了解更多　

Amazon Web Services User Group Sydney - February 2018

PolarSeven Pty Ltd

Hosted by PolarSeven Cloud Consulting - http://polarseven.com Our monthly AWS User Group Sydney presentation night. http://www.meetup.com/AWS-Sydney/ Introductions and What's New In AWS - by PolarSeven Bonus Session - AWS Mitch Beaumant - Amazon Fargate in 15 minutes Session 1: Security Policy Lifecycle Management "Automated security actions based on observed security events and protecting AWS deployments are some of the key challenges facing network and security teams. With the general availability of Palo Alto Networks PAN-OS 8.0 software, VM-Series virtualized next-generation firewall, network and security teams now have a simple, automated security management platform for managing and enforcing security policies within AWS deployments. This session will provide an advanced technical overview of the enhancements done over the last 12 months. The topics covered will include, • Technical overview of Panorama driven security workflows for AWS • Presentation of our github AWS templates with a focus on CFT and Terraform" Paloaltonetworks https://www.paloaltonetworks.com/ See video presentation here https://youtu.be/LLdto5LOcd8 Session 2: Automating the Service Desk using Amazon Lex and Amazon Connect Once considered a rare and difficult capability to achieve, the democratisation of artificial intelligence has made it possible for developers to easily access and leverage machine learning capabilities to automate and solve problems across multiple industries. This presentation aims to demonstrate how easy it is to take advantage of an AWS Machine Learning capability (Amazon Lex) with no deep learning experience and solve common everyday IT problems. Telstra https://www.telstra.com.au/ Watch the video presentation here https://youtu.be/8BP1OZk2wUs

Moving to Amazon ECS – the Not-So-Obvious Benefits - CON356 - re:Invent 2017

Amazon Web Services

The document discusses the benefits of moving infrastructure to Amazon ECS. It highlights both obvious benefits like cost savings and faster scaling, as well as less obvious benefits like having open source and private infrastructure, consistency across the organization through standardized tools and templates, increased cost clarity through custom monitoring, and empowering teams with better development tools and cost ownership. The presentation provides examples from Mapbox's experience migrating to ECS and emphasizes how the platform has allowed them to separate infrastructure from applications, standardize practices, run more workloads on spot instances to reduce costs, and give teams more autonomy.

More Containers Less Operations

Donnie Prakoso

Interstella 8888: Advanced Microservice Operations - CON407 - re:Invent 2017

Amazon Web Services

Interstella 8888 is an intergalactic trading company that deals in rare resources, but their antiquated monolithic logistics systems are causing the business to lose money. In this workshop, you’ll help Interstella 8888 build a modern microservices-based logistics system to save the company from financial ruin. We’ll give you the hands-on experience you need to run microservices in the real world. Ths includes implementing advanced container scheduling and scaling to deal with variable service requests, implementing a service mesh, issue tracing with Amazon X-Ray, container and instance-level logging with CloudWatch, and load testing. AWS credits are provided. Bring your laptop, and have an active AWS account.

Similar to AWS User Group 5/12 meetup - ECS (20)

Introducing Amazon EKS

Introduction to AWS Fargate & Amazon Elastic Container Service for Kubernetes

Introducing Amazon Fargate

Running Container on AWS - Builders Day Israel

Kubernetes on AWS with Amazon EKS

NEW LAUNCH! Introducing Amazon EKS - CON215 - re:Invent 2017

K8s on AWS: Introducing Amazon EKS

Building with Containers on AWS

NEW LAUNCH! Introducing AWS Fargate - CON214 - re:Invent 2017

Driving Innovation with Containers - CON203 - re:Invent 2017

CON203_Driving Innovation with Containers

Technological Accelerants for Organizational Transformation - DVC303 - re:Inv...

DVC303-Technological Accelerants for Organizational Transformation

AWS 容器服務入門實務

DEV203_Launch Applications the Amazon Way

遷移到 AWS 雲端旅程的方法與工具

Amazon Web Services User Group Sydney - February 2018

Moving to Amazon ECS – the Not-So-Obvious Benefits - CON356 - re:Invent 2017

More Containers Less Operations

Interstella 8888: Advanced Microservice Operations - CON407 - re:Invent 2017

Recently uploaded

Boost Your Savings with These Money Management Apps

Jhone kinadey

A money management app can transform your financial life by tracking expenses, creating budgets, and setting financial goals. These apps offer features like real-time expense tracking, bill reminders, and personalized insights to help you save and manage money effectively. With a user-friendly interface, they simplify financial planning, making it easier to stay on top of your finances and achieve long-term financial stability.

一比一原版(UMN毕业证)明尼苏达大学毕业证如何办理

dakas1

UMN硕士毕业证成绩单【微信95270640】购买（明尼苏达大学毕业证成绩单硕士学历）Q微信95270640代办UMN学历认证留信网伪造明尼苏达大学学位证书精仿明尼苏达大学本科/硕士文凭证书补办明尼苏达大学 diplomaoffer,Transcript购买明尼苏达大学毕业证成绩单购买UMN假毕业证学位证书购买伪造明尼苏达大学文凭证书学位证书,专业办理雅思、托福成绩单，学生ID卡，在读证明，海外各大学offer录取通知书，毕业证书，成绩单，文凭等材料:1:1完美还原毕业证、offer录取通知书、学生卡等各种在读或毕业材料的防伪工艺（包括烫金、烫银、钢印、底纹、凹凸版、水印、防伪光标、热敏防伪、文字图案浮雕，激光镭射，紫外荧光，温感光标）学校原版上有的工艺我们一样不会少，不论是老版本还是最新版本，都能保证最高程度还原，力争完美以求让所有同学都能享受到完美的品质服务。 #毕业证成绩单 #毕业証 #成绩单 #學生卡 #OFFER录取通知书 #雅思#托福等…… 国外大学明尼苏达大学明尼苏达大学毕业证offer制作方法（一对一专业服务） 1客户提供办理信息：姓名生日专业学位毕业时间等（如信息不确定可以咨询顾问：我们有专业老师帮你查询）； 2开始安排制作毕业证成绩单电子图； 3毕业证成绩单电子版做好以后发送给您确认； 4毕业证成绩单电子版您确认信息无误之后安排制作成品； 5成品做好拍照或者视频给您确认； 6快递给客户（国内顺丰国外DHLUPS等快读邮寄） — — 制作工艺【高仿真】— — 凭借多年的制作经验本公司制作明尼苏达大学明尼苏达大学毕业证offer《激光》《水印》《钢印》《烫金》《紫外线》凹凸版uv版等防伪技术一流高精仿度几乎跟学校100%相同！让您绝对满意。 — — -公司理念【诚信为主】— — — 我們以質量求生存.以服务求发展有雄厚的实力专业的团队咨询顾问为您细心解答可详谈是真是假眼见为实让您真正放心平凡人生,尽我所能助您一臂之力让我們携手圆您梦想! 此贴长年有效【贴心专线/微-信: 95270640】敬请保留此联系方式以备用！如有不在线请给我们留言！我们将在第一时间给您回复!上散发着一抹抹的光晕而这每处自然形成的细节融合在一起浑然天成的美实在令人心生愉悦小道的周边无秩序的生长着几株艳丽的野花红的粉的紫的虽混乱无章却给这幅美景更增添一份性感夹杂着一份纯洁的妖娆毫无违和感实在给人带来一份悠然幸福的心情如果说现在的审美已经断然拒绝了无声的话那么在树林间飞掠而过的小鸟叽叽咋咋的叫声是否就是这最后的点睛之笔悠然走在林间的小路上宁静与清香一丝丝的盛夏气息吸入身体昔日生活里的繁忙多

J-Spring 2024 - Going serverless with Quarkus, GraalVM native images and AWS ...

Bert Jan Schrijver

Operational ease MuleSoft and Salesforce Service Cloud Solution v1.0.pptx

sandeepmenon62

Stork Product Overview: An AI-Powered Autonomous Delivery Fleet

Vince Scalabrino

Streamlining End-to-End Testing Automation

Anand Bagmar

Streamlining End-to-End Testing Automation with Azure DevOps Build & Release Pipelines Automating end-to-end (e2e) test for Android and iOS native apps, and web apps, within Azure build and release pipelines, poses several challenges. This session dives into the key challenges and the repeatable solutions implemented across multiple teams at a leading Indian telecom disruptor, renowned for its affordable 4G/5G services, digital platforms, and broadband connectivity. Challenge #1. Ensuring Test Environment Consistency: Establishing a standardized test execution environment across hundreds of Azure DevOps agents is crucial for achieving dependable testing results. This uniformity must seamlessly span from Build pipelines to various stages of the Release pipeline. Challenge #2. Coordinated Test Execution Across Environments: Executing distinct subsets of tests using the same automation framework across diverse environments, such as the build pipeline and specific stages of the Release Pipeline, demands flexible and cohesive approaches. Challenge #3. Testing on Linux-based Azure DevOps Agents: Conducting tests, particularly for web and native apps, on Azure DevOps Linux agents lacking browser or device connectivity presents specific challenges in attaining thorough testing coverage. This session delves into how these challenges were addressed through: 1. Automate the setup of essential dependencies to ensure a consistent testing environment. 2. Create standardized templates for executing API tests, API workflow tests, and end-to-end tests in the Build pipeline, streamlining the testing process. 3. Implement task groups in Release pipeline stages to facilitate the execution of tests, ensuring consistency and efficiency across deployment phases. 4. Deploy browsers within Docker containers for web application testing, enhancing portability and scalability of testing environments. 5. Leverage diverse device farms dedicated to Android, iOS, and browser testing to cover a wide range of platforms and devices. 6. Integrate AI technology, such as Applitools Visual AI and Ultrafast Grid, to automate test execution and validation, improving accuracy and efficiency. 7. Utilize AI/ML-powered central test automation reporting server through platforms like reportportal.io, providing consolidated and real-time insights into test performance and issues. These solutions not only facilitate comprehensive testing across platforms but also promote the principles of shift-left testing, enabling early feedback, implementing quality gates, and ensuring repeatability. By adopting these techniques, teams can effectively automate and execute tests, accelerating software delivery while upholding high-quality standards across Android, iOS, and web applications.

Assure Contact Center Experiences for Your Customers With ThousandEyes

ThousandEyes

A Comprehensive Guide on Implementing Real-World Mobile Testing Strategies fo...

kalichargn70th171

Penify - Let AI do the Documentation, you write the Code.

KrishnaveniMohan1

Penify automates the software documentation process for Git repositories. Every time a code modification is merged into "main", Penify uses a Large Language Model to generate documentation for the updated code. This automation covers multiple documentation layers, including InCode Documentation, API Documentation, Architectural Documentation, and PR documentation, each designed to improve different aspects of the development process. By taking over the entire documentation process, Penify tackles the common problem of documentation becoming outdated as the code evolves. https://www.penify.dev/

Photoshop Tutorial for Beginners (2024 Edition)

alowpalsadig

Photoshop Tutorial for Beginners (2024 Edition) Explore the evolution of programming and software development and design in 2024. Discover emerging trends shaping the future of coding in our insightful analysis." Here's an overview:Introduction: The Evolution of Programming and Software DevelopmentThe Rise of Artificial Intelligence and Machine Learning in CodingAdopting Low-Code and No-Code PlatformsQuantum Computing: Entering the Software Development MainstreamIntegration of DevOps with Machine Learning: MLOpsAdvancements in Cybersecurity PracticesThe Growth of Edge ComputingEmerging Programming Languages and FrameworksSoftware Development Ethics and AI RegulationSustainability in Software EngineeringThe Future Workforce: Remote and Distributed TeamsConclusion: Adapting to the Changing Software Development LandscapeIntroduction: The Evolution of Programming and Software Development Photoshop Tutorial for Beginners (2024 Edition)Explore the evolution of programming and software development and design in 2024. Discover emerging trends shaping the future of coding in our insightful analysis."Here's an overview:Introduction: The Evolution of Programming and Software DevelopmentThe Rise of Artificial Intelligence and Machine Learning in CodingAdopting Low-Code and No-Code PlatformsQuantum Computing: Entering the Software Development MainstreamIntegration of DevOps with Machine Learning: MLOpsAdvancements in Cybersecurity PracticesThe Growth of Edge ComputingEmerging Programming Languages and FrameworksSoftware Development Ethics and AI RegulationSustainability in Software EngineeringThe Future Workforce: Remote and Distributed TeamsConclusion: Adapting to the Changing Software Development LandscapeIntroduction: The Evolution of Programming and Software Development The importance of developing and designing programming in 2024 Programming design and development represents a vital step in keeping pace with technological advancements and meeting ever-changing market needs. This course is intended for anyone who wants to understand the fundamental importance of software development and design, whether you are a beginner or a professional seeking to update your knowledge. Course objectives: 1. **Learn about the basics of software development: - Understanding software development processes and tools. - Identify the role of programmers and designers in software projects. 2. Understanding the software design process: - Learn about the principles of good software design. - Discussing common design patterns such as Object-Oriented Design. 3. The importance of user experience (UX) in modern software: - Explore how user experience can improve software acceptance and usability. - Tools and techniques to analyze and improve user experience. 4. Increase efficiency and productivity through modern development tools: - Access to the latest programming tools and languages used in the industry. - Study live examples of applications

Flutter vs. React Native: A Detailed Comparison for App Development in 2024

dhavalvaghelanectarb

All you need to know about Spring Boot and GraalVM

Alina Yurenko

Microsoft-Power-Platform-Adoption-Planning.pptx

jrodriguezq3110

ppt on the brain chip neuralink.pptx

Reetu63

Computer Science & Engineering VI Sem- New Syllabus.pdf

chandangoswami40933

Mobile App Development Company In Noida | Drona Infotech

Drona Infotech

React.js, a JavaScript library developed by Facebook, has gained immense popularity for building user interfaces, especially for single-page applications. Over the years, React has evolved and expanded its capabilities, becoming a preferred choice for mobile app development. This article will explore why React.js is an excellent choice for the Best Mobile App development company in Noida. Visit Us For Information: https://www.linkedin.com/pulse/what-makes-reactjs-stand-out-mobile-app-development-rajesh-rai-pihvf/

14 th Edition of International conference on computer vision

ShulagnaSarkar2

About the event 14th Edition of International conference on computer vision Computer conferences organized by ScienceFather group. ScienceFather takes the privilege to invite speakers participants students delegates and exhibitors from across the globe to its International Conference on computer conferences to be held in the Various Beautiful cites of the world. computer conferences are a discussion of common Inventions-related issues and additionally trade information share proof thoughts and insight into advanced developments in the science inventions service system. New technology may create many materials and devices with a vast range of applications such as in Science medicine electronics biomaterials energy production and consumer products. Nomination are Open!! Don't Miss it Visit: computer.scifat.com Award Nomination: https://x-i.me/ishnom Conference Submission: https://x-i.me/anicon For Enquiry: Computer@scifat.com

Migration From CH 1.0 to CH 2.0 and Mule 4.6 & Java 17 Upgrade.pptx

ervikas4

bgiolcb

独家公布~斯洛文尼亚-塞尔维亚【3 9 7 7 . T W 官方指定】

🏎️Tech Transformation: DevOps Insights from the Experts 👩‍💻

campbellclarkson

Recently uploaded (20)

Boost Your Savings with These Money Management Apps

一比一原版(UMN毕业证)明尼苏达大学毕业证如何办理

J-Spring 2024 - Going serverless with Quarkus, GraalVM native images and AWS ...

Operational ease MuleSoft and Salesforce Service Cloud Solution v1.0.pptx

Stork Product Overview: An AI-Powered Autonomous Delivery Fleet

Streamlining End-to-End Testing Automation

Assure Contact Center Experiences for Your Customers With ThousandEyes

A Comprehensive Guide on Implementing Real-World Mobile Testing Strategies fo...

Penify - Let AI do the Documentation, you write the Code.

Photoshop Tutorial for Beginners (2024 Edition)

Flutter vs. React Native: A Detailed Comparison for App Development in 2024

All you need to know about Spring Boot and GraalVM

Microsoft-Power-Platform-Adoption-Planning.pptx

ppt on the brain chip neuralink.pptx

Computer Science & Engineering VI Sem- New Syllabus.pdf

Mobile App Development Company In Noida | Drona Infotech

14 th Edition of International conference on computer vision

Migration From CH 1.0 to CH 2.0 and Mule 4.6 & Java 17 Upgrade.pptx

bgiolcb

🏎️Tech Transformation: DevOps Insights from the Experts 👩‍💻

AWS User Group 5/12 meetup - ECS

2. © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved. WHAT WE DID IN 2017 CLI V1.0Container Access to Environmental Metadata Support for Docker Privileged Mode Network Load Balancer Support Container Instance Draining Linux Capabilities Lifecycle Policies for Container Images Seoul Region Beijing Region Support for Device and Init Flags Task Elastic Network Interfaces Cron and Cloudwatch Event Task Scheduling Windows Containers HIPAA Eligibility Console Support for SpotFleet Override Parameters for RunTask and StartTask APIs Console UX Improvements Application Load Balancer Support Add Attributes During Boot

4. © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved. HELPING CUSTOMERS SCALE THEIR CONTAINERS 450+% growth Hundreds of millions of containers started each week millions of container instances

7. © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Make AWS the BEST PLACE to run containerized applications © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

14. © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved. INTRODUCING MANAGED SERVICE DISCOVERY FOR ECS Build apps where services are invoked by name and name resolves to IP/port dynamically. Service discovery is activated during service deployment.

16. © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved. AWS CodePipeline for ECS AWS CodeCommit AWS CodeBuild Amazon ECR AWS CodePipeline Amazon ECS Source Repository Build Deploy or or

17. © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Cluster Management is a relic of physical infrastructure

35. © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Native VPC networking with CNI plugin Pods have the same VPC address inside the pod as on the VPC Simple, secure networking Open source and on Github …{ }

36. © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Kubernetes Network Policies enforce network security rules Calico is the leading implementation of the network policy API Open source, active development (>100 contributors) Commercial support available from Tigera

38. © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Heptio IAM Authenticator h t t p s : / / g i t h u b . c o m / h e p t i o l a b s / k u b e r n e t e s - a w s - a u t h e n t i c a t o r An open source approach to integrating AWS IAM authentication with Kubernetes

39. © 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Kubectl 3) Authorizes AWS Identity with RBAC K8s API 1) Passes AWS Identity 2) Verifies AWS Identity 4) K8s action allowed/denied AWS Auth

Editor's Notes

And that’s what we built and customers seem to like it. They’re building all kinds of applications and services using ECS
Can this be a nice structured word cloud? Like this: https://cdn.cultofmac.com/wp-content/uploads/2017/06/wwdc-ios11.png
Today, startups to fortune 500 companies run tens of millions of applications worldwide on AWS using Amazon ECS. Amazon ECS has become so popular across a broad range of use cases because it allows you to easily run and manage Docker-enabled applications across a cluster of Amazon EC2 instances, without having to support your own cluster management infrastructure.
In the last couple of years we have seen great adoption of production use cases on Amazon ECS. Our active users are up by more than 450% since 2016 and we are managing containers across millions of instances each month. In fact, we are witnessing an incredible transition to containers and customers of ECS, whether its Expedia running its travel platform or Mapbox powering mapping data for some of the most popular websites, Amazon ECS enables these customers to be able to run containers at scale. And indeed, we see hundreds of millions of containers launched every week. ^^^Nate not sure about the title of this one, what do you think? Can you get me some more examples for my talk track. We said we were going to reference some examples from talks, right? (WeWork, Realtor)
For many of our customers they want to know whether they can run PCI, HIPAA, and other applications here. Today, you can build PCI compliant and HIPAA eligible applications using ECS SOC 1,2,3 PCI HIPAA Eligible ISO 9001, 27001, 27017, 27018 MTCS (https://aws.amazon.com/compliance/aws-multitiered-cloud-security-standard-certification/) Future: Fedramp
To date we haven’t given our customers an SLA that supports our confidence of operating this service for our customers. That’s no longer true. We now have a compute SLA which includes ECS and it’s 99.99%. https://www.istockphoto.com/photo/data-center-interior-gm622896088-109091143
There’s a T-shirt out there that says 9s don’t matter if your customers aren’t happy. For our customers to be happy availability is only the beginning. We want to make AWS the best place for our customers to run their applications. We want them to be happy. This means that as our customers run more production applications we have to continue to make it easier for them to do so
But the area we’ve spent a ton of time on based on what we’ve heard from our customers is to make containers a fundamental compute primitive.
For us it meant doing that for ECS Tasks » Scrolling animation of boxes being checked as we go to 68
rely on services as if they are functions look up by name in code and it auto-resolves Service Registry with latest state of dynamic infrastructure Scaling - Number of EC2 instances and containers change Scheduling / placement Dynamic ports dependent on placement Health Nothing to install or manage Easy to debug
Available next week, CodePipeline will support native deployments to ECS, making it easier than ever to build a continuous delivery pipeline for container-based applications on AWS. CodePipeline is a continuous integration and continuous delivery service that automates the build, test, and deployment of your code every time there is a code change. You can see here we’ve enabled it right in the deployment step for creating a pipeline; you can choose Amazon ECS as the deployment provider.
To help you get started building a CI/CD pipeline for running containers on ECS, several of my peers have built reference architectures that can be found on AWSLabs in Github. This reference architecture builds an automated pipeline using the Github, CodePipeline, CodeBuild, and ECR. When a change is pushed to Github, it triggers a pipeline that fetches the code from Github and passes it to CodeBuild. CodeBuild then builds the container from the instructions in the Dockerfile and and pushes the Docker image in an ECR registry. In the final step, CodePipeline updates the task and service definitions which triggers a deployment of a new task across the cluster.
Today’s container management systems spend too much time and emphasis on a cluster of machines. https://www.istockphoto.com/photo/data-processing-center-gm531044829-55048050
They don’t want to worry about the cluster the containers are running on. They don’t want to think about bin packing, which types of hardware apps should run on, and so on. Effectively our customers want an API for containers.
And that is AWS Fargate. https://www.istockphoto.com/photo/across-the-universe-traveling-in-space-time-travel-scene-of-overcoming-the-temporary-gm664390112-120918507
Fargate is a new container technology, essentially a data plane designed to do one thing. Run containers.
Till yesterday you ran tasks on a cluster of EC2 instances that you had to provision (or rely on a lot of automation to manage).
Well, no longer. When you choose launch type = Fargate in ECS, you get running Tasks. No instances to manage. All operations at the level of a Task. The best way to get a feel for Fargate is to see the technology in action. So let’s do that.
Our customers love ECS, but we’ve heard from some of our customers that they want other options to run their containers. 2 years ago it was very unclear what that option might be? Today, that’s unambiguous. Picture source: https://goo.gl/images/3Uge11 (Wikimedia Commons)
And that’s what we built and customers seem to like it. They’re building all kinds of applications and services using ECS
A number of our customers run Kubernetes, either because they love the community and tools around k8s, and it is a very rich community and a broad set of tools, or because they want a toolchain that is just as portable as the containers running underneath. Most the k8s in the world runs on AWS. We wanted to make sure they had a great experience.
(should have the CNCF logo here). Earlier this summer joined the CNCF to participate in the broader container ecosystem. We were also super interested in projects like containerd and CNI, but also wanted to get better aligned with the broader ecosystem on how to run k8s more reliably and give customers a better experience
Our customers told us, “Hey, running Kubernetes isn’t trivial work, and we think we can better spend our cycles focusing on our applications.” “if we had things our way, we wouldn’t have to think about the nuances of kubernetes deployments or configuration, we wouldn’t have to worry about managing etcd or the masters”
and we want the freedom to choose top notch aws integrations
But also to continue using the open source tooling we’re using today.
Announcing the preview for Amazon EKS
Now, with EKS, the complexity of standing up your own Kubernetes control plane is simplified. Instead of running the Kubernetes control plane in your account, you connect to a managed Kubernetes endpoint in the AWS cloud. This endpoint abstract the complexity of the Kubernetes control plane- your worker nodes can check into a cluster, and you can interact with your Kubernetes cluster through the tooling you already know and love.
Let’s talk about the tenants that anchor our design decisions for EKS. Tenant 1: EKS is a platform for enterprises to run production-grade workloads. EKS aims to provide features and management capabilities to allow enterprises to run real workloads at real scale. Reliability, visibility, scalability, and ease of management are our priorities. One of the areas where we are putting in a lot of effort is to availability. We don’t believe a single master is an acceptable approach to running production applications. EKS is multi-master by default. We manage your persistence layer
Tenant 2: EKS provides a native and upstream Kubernetes experience. Any modifications or improvements that we make in our service must be transparent to the Kubernetes end user. This means that your existing Kubernetes experience and know how applies directly to EKS. Your existing applications and investments in Kubernetes work right out of the box with EKS.
Tenant 3: EKS customers are not forced to use additional AWS services, but if they want to, the integrations are seamless and eliminate undifferentiated heavy lifting. We are focused on making contributions to projects that allow customers to use the AWS components they currently know and love with their applications in Kubernetes. The other thing our customers care about is integration into the rest of AWS. This is another area where we plan to focus and contribute upstream.
(Changed slide background, because the figure was not pasting correctly and I didn’t want to recreate it) A great example is Networking. We are implementing a set of CNI plugins that bring native VPC networking to k8s. (NEED MORE DETAIL ON SECONDARY ENIs from Brandon) CNI Plugin networking Networking for Pods must support high throughput and availability, low latency and minimal jitter comparable to the characteristics a customer would get from EC2 networking. Network operation must be simple and secure. Customers must be able to apply exsiting AWS VPC networking and security best practices for building Kubernetes clusters over AWS VPC. For example, customers should be able to: use VPC flow logs for troubleshooting and compliance auditing, apply VPC routing polices for traffic engineering, apply security groups to enforce isolation and meet regulatory requirements. Pod networking should be setup in a matter of seconds. Customer should be able to scale clusters up to 2000 nodes.
A network policy is a specification of how groups of pods are allowed to communicate with each other and other network endpoints. NetworkPolicy resources use labels to select pods and define rules which specify what traffic is allowed to the selected pods. Optionally extends K8s API with more policy capabilities, and host protection (protecting the K8s infrastructure not just pods, and standalone instances not running K8s)
https://github.com/heptiolabs/kubernetes-aws-authenticator  The Heptio authenticatior helps us pass an IAM identity with Kubectl calls. We like this approach because it’s something anyone could use with Kubernetes. It’s an open source project and it helps us combine IAM for authn and built in Kubernetes RBAC for authz. Let’s look how.
Because we’re hosting Kubernetes as a service, we need to provide authentication on the API endpoint with IAM. IAM isn’t currently supported as a built-in authentication mechanism, so let’s dig into how this works. 1) The Authenticator assists here with step 1. When a Kubectl call is made- let’s say I’ve made a get pods call, my IAM identity is passed along with the kubernetes call. We can look in the default credential chain for my IAM ID- aws config file, IAM role, etc. 2) On the backend, Kubernetes verifies the IAM identity with AWS auth. This is purely authentication. 3) The auth response is sent back to Kubernetes, and K8s checks it’s internal RBAC mapping for authz. This determines if my original get pods call was allowed or denied. 4) The K8s API approves or denies the request.
EKS is available in preview. Go the aws.amazon.com/eks to sign up. We look forward to going GA in 2018
(Graphic showing EKS with Fargate)First things first. We want to bring the Fargate technology to EKS. Even there you shouldn’t have to worry about hosts. All you should care about is your containers, pods, and services, and build your applications
Today, we’ve talked about a grand journey. We have talked about lessons from the past. We’ve talked about some amazing ways our customers are using containers. Fargate changes how we think about containers. It simplifies the operational model, and completely changes the business model. You can use Fargate with two orchestration systems. Pick the one that meets your needs and requirements. I can’t wait to see what our customers do and where this journey ends and what new lessons we learn together as we build a new generation of apps. Can’t wait to talk about all of that this time next year.

AWS User Group 5/12 meetup - ECS

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to AWS User Group 5/12 meetup - ECS

Similar to AWS User Group 5/12 meetup - ECS (20)

Recently uploaded

Recently uploaded (20)

AWS User Group 5/12 meetup - ECS

Editor's Notes