SlideShare a Scribd company logo

[BarCamp2018][20180915][Tips for Virtual Hosting on Kubernetes]

Wong Hoi Sing Edison
Wong Hoi Sing Edison

[BarCamp2018][20180915][Tips for Virtual Hosting on Kubernetes]

1 of 76
Download to read offline
BarCamp Hong Kong 2018 Tips for Virtual Hosting on Kubernetes PantaRei Design Limited Wong Hoi Sing, Edison 2018-09-15
Wong Hoi Sing, Edison ● 2005 - Drupal Developer & Contributor – https://drupal.org/user/33940 ● 2008 - HKDUG Co-founder – https://groups.drupal.org/drupalhk ● 2010 - CEO, PantaRei Design – hswong3i@pantarei-design.com
PantaRei Design ● Everything Changes and Nothing Remains Still ● Reinvent Enterprise with Open Source Software and Cloud Computing ● Hong Kong based FOSS service provider – Content Management System (CMS) with Drupal – Cloud Hosting Solution with Amazon Web Services (AWS) – Team collaborate solution with Atlassian ● Business Partner with industry leaders – 2012, AWS Consulting Partner – 2013, Acquia Partner – 2013, Atlassian Experts – 2014, Rackspace Hosting Partner ● http://pantarei-design.com
Outline ● Virtual Hosting for Dummy ● Let’s Demo with Drupal 8.6 ● Tips & Tricks ● Roadmap ● Q&A
Virtual Hosting for Dummy ● What is Virtual Hosting? ● How Virtual Hosting Works? ● How to Improve it? ● Overall Design
What is Virtual Hosting? ● Virtual hosting is a method for hosting multiple domain names (with separate handling of each name) on a single server (or pool of servers)
How Virtual Hosting Works? ● Single Server, Single Cluster, Single Domain – tasksel install lamp-server – No redundant, no scale out, no per talent security required (well…) – From KISS principle (Keep it simple, stupid) point of view, it is good enough that not easy to fail – BTW, from hosting service vendor point of view, resource could not be fully utilized (or, overselling...)
How Virtual Hosting Works? (cont.) ● Single Server, Single Cluster, Multiple Domain – Cpanel, Plesk, Virtualmin, etc – No redundant, no scale out – Shared resource, e.g. disk, database, service – Resouce could now be utilize and overselling, but security between each talent MUST BE very careful
How Virtual Hosting Works? (cont.) ● Multiple Server, Single Cluster, Multiple Domain – Manage with DevOps, e.g. Chef, Puppet, Ansible, etc – With redundant – Difficult for implement ● Custom deployment playbook required – Difficult for scale out ● Manually update the playbook ● Deploy native package to node per OS – Shared resource, e.g. disk, database, service – Security between each talent MUST BE very careful
How Virtual Hosting Works? (cont.) ● Multiple Server, Multiple Cluster, Single Domain – With redundant – With scale out – As simple security management as All-in-one – But you will need many server (!?) – Deployment and management is difficult, too (!!)
How to Improve it? ● Simple architecture deployment and management ● Simple application installation and configuration ● Simple centralized network storage cluster with backup plan ● Simple service fail detection and rescheduling ● Simple per talent isolation and security ● (NEW) Hot/Warm/Cold disaster recovery plan
Overall Design ● Ansible: deployment management ● Docker: application pre-packaging ● CephFS: centralized network storage ● Kubernetes: runtime service lifecycle management ● (NEW) Duplicity: backup with deduplication
Overall Design (cont.) ● Each talent (i.e. domain) goes into individual Kubernetes namespace ● Each namespace have its own Apache, PHP, MySQL, SSHD, etc ● All dynamic data store outside Kubernetes, goes into CephFS ● (NEW) DR with CephFS snapshot + Rsync + Duplicity
Let’s Demo with Drupal 8.6 ● Create Kubernetes Namespace ● Deploy Application Stack ● Install Drupal 8.6 ● Scale It Out!
Create Kubernetes Namespace ● kubectl apply -Rf 00-namespace.yml ● kubectl get namespace | grep hswong3i-net
Deploy Application Stack ● kubectl apply -Rf . ● kubectl -n hswong3i-net get pod -o wide
Install Drupal 8.6 ● kubectl -n hswong3i-net exec -ti sshd-66cbd7dc65-pk9v2 /bin/bash ● cd /var/www/html/web ● echo "<?php phpinfo(); ?>" > phpinfo.php ● https://hswong3i.net/phpinfo.php
Install Drupal 8.6 (cont.) ● cd /var/www/html ● wget -c https://ftp.drupal.org/files/projects/drupal-8.6.1.tar.gz ● tar zxf drupal-8.6.1.tar.gz --strip-components=1 -C /var/www/html/web/ ● chown -Rf www-data:www-data /var/www/html ● https://hswong3i.net/core/install.php
Scale It Out! ● kubectl -n hswong3i-net patch deploy httpd -p '{"spec":{"replicas":4}}' ● kubectl -n hswong3i-net patch deploy php -p '{"spec":{"replicas":4}}' ● kubectl -n hswong3i-net patch sts mariadb -p '{"spec":{"replicas":3}}'
Tips & Tricks ● Ansible ● Ceph ● Kubernetes ● Application Stack
Ansible ● Installing Ansible is simple – pip install ansible ● Managing access to remote guest is simple – Password-less SSH login by public-private key pair ● Running command on remote guest is simple – ansible -i guest1,guest2, -m ping – ansible -i guest1,guest2, -m apt -a ‘name=vim state=present’ – ansible -i guest1,guest2, -m shell -a ‘uname -a’
Ansible (cont.) ● Made complicated application deployment manageable – ceph-ansible – kubespray – openstack-ansible
Ceph ● DON’T deploy Ceph with Kubernetes + Helm!! – By our design Kubernetes consume Ceph as Persistent Volumes (PV) provider – Deploying Ceph on top of Kubernetes become a “ Chicken or the Egg” paradox ● TRUST ME!! You will absolutely get mad when your Ceph crashed and recovery is required :-P – Simply deploy with ceph-ansible
Ceph (cont.) ● Collocated + Bluestore – Collocated simplify your disk partition table – Bluestore scale much better than traditional XFS-based filestore ● E.g. Backed with Aliyun EBS (max ~110MB/s), a 3 OSD CephFS could provide ~60MB/s
Ceph (cont.) ● CephFS Snapshot + Duplicity – Create a CephFS Snapshot is simple and fast (>1s) ● cd /mnt/cephfs && mkdir -p .snap/`date +%s` – Snapshot therefore could async backup by Duplicity as simple flattened .gz format, with Data Deduplication, e.g. ● Weekly full backup ● Daily incremental backup ● Keep maximum 4 weeks backup – (NEW) Don’t keep snapshot after rsync ● Multiple-Master-MDS + snapshot just get stable on Ceph 13.2.0 ● Snapshot will use up your usable space – (NEW) Both rsync and duplcity use `mtime + size` ● Don’t use `--size-only`: backup will ALWAYS FAIL ● (Optional) Use `--checksum` on rsync will slow down for at least x4 times, but duplicity hard code logic with `mtime + size`...
Kubernetes ● PVC with cephfs-provisioner (or ceph-csi) – With cephfs-provisioner we could simply integrate with Kubernets PersistentVolumeClaims – kubespray ready for this deployment – Everything from Application Stack could go into CephFS, with ReadWriteMany, e.g. ● /root (for sshd pod, for remote management) ● /var/www/html (for httpd/php pods, for document root) ● /var/lib/mysql (for mysql/mariadb pods, for data store) – Backup made simple with CephFS Snapshot + Duplicity
Kubernetes (cont.) ● Network Policy with Weave – Weave is a simple and lightweight vxlan-based CNI Network Provider, supporting Kubernete’s Network Policy – kubespray ready for this deployment – We could isolate network traffic between each namespace, e.g. ● DENY all traffic from other namespaces (i.e. default allow traffic inside namespace) ● ALLOW all traffic from a namespace (e.g. allow traffic from ingress-nginx namespace) ● ALLOW all traffic to an application (e.g. allow external access to sshd pod for remote management)
Kubernetes (cont.) ● Ingress with ingress-nginx – ingress-nginx use Nginx as Controller for Kubernetes Ingress Resource, supporting HTTPS /TLS with SNI (i.e. multiple HTTPS virtual hosting with single public IP) – kubespray ready for this deployment – Proxy Protocol support is required when working with AWS L4 ELB, for fetching client’s source IP address
Kubernetes (cont.) ● Let’s Encrypt with cert-manager – With cert-manager we could request TLS certificate from Let’s Encrypt for free, with auto renewal and ingress-nginx integration – kubespray ready for this deployment – Simply use http01 for varification
Kubernetes (cont.) ● (NEW) StatefulSet Limitation – Deleting and/or scaling a StatefulSet down will not delete the volumes associated with the StatefulSet. – This is done to ensure data safety, which is generally more valuable than an automatic purge of all related StatefulSet resources – https://kubernetes.io/docs/concepts/workloads/co ntrollers/statefulset/#limitations
Kubernetes (cont.) ● (NEW) Master-Slave Replication? – NO, do Single-Master or Multi- Master with load-balancing – Simply use Deployment for Single- Master pod automatically failover by Kubernetes
Application Stack ● MariaDB Multi-master cluster with Kubernetes peer- finder – When starting a new MariaDB multi-master cluster, we need to know if “this” node should bootstrap a new cluster, or join existing cluster – Kubernetes peer-finder could give a hand for discovering if any existing peers – We build a Docker image which simplify such integration with StatefulSet deployment
Application Stack (cont.) ● MariaDB innodb_buffer_pool_size – Simply give large enough innodb_buffer_pool_size, so let MariaDB try to cache all warmup-ed data from disk to memory/swap, and async write-back to disk – This could greatly reduce the disk I/O bottleneck
Application Stack (cont.) ● PHP cache with opcache + apcu – With opcache enabled PHP will cache the precomplied script bytecode in shared memory, which greatly improve the overall performance – With apcu enable legacy application could also benefit with their existing cache implementation
Application Stack (cont.) ● Drupal need a lots of PHP extensions – Official PHP Docker image comes with almost none of Drupal required extensions – By the way, installing those extensions manually is VERY TIME CONSUMING!! – We build a Docker Image which simplify such integration...
Application Stack (cont.) ● Apache cache with mod_cache_disk – With mod_cache_disk enable Apache will try to cache any static assets (e.g. css/js/jpg/gif/png/etc) as much as possible – Don’t worry to much about the disk I/O performance, Linux kernel will automatically cache it for you into memory/swap, if required – We build a Docker Image which simplify such integration
Roadmap ● CephFS with Kubernetes CSI ● Logging with Fluentd, ElasticSearch, and Kibana ● Monitoring and Alert with Prometheus and Grafana ● Manage Application Stack with Helm and Chart
Q&A
Contact Us ● Address: Unit 326, 3/F, Building 16W, No.16 Science Park West Avenue, Hong Kong Science Park, Shatin, N.T. ● Phone: +852 3576 3812 ● Fax: +852 3753 3663 ● Email: sales@pantarei-design.com ● Web: http://pantarei-design.com

Recommended

[HKOSCON][20180616][Containerized High Availability Virtual Hosting Deploymen...
[HKOSCON][20180616][Containerized High Availability Virtual Hosting Deploymen...[HKOSCON][20180616][Containerized High Availability Virtual Hosting Deploymen...
[HKOSCON][20180616][Containerized High Availability Virtual Hosting Deploymen...
Wong Hoi Sing Edison
 
Ganeti Web Manager: Cluster Management Made Simple
Ganeti Web Manager: Cluster Management Made SimpleGaneti Web Manager: Cluster Management Made Simple
Ganeti Web Manager: Cluster Management Made Simple
OSCON Byrum
 
Improving Operations Efficiency with Puppet
Improving Operations Efficiency with PuppetImproving Operations Efficiency with Puppet
Improving Operations Efficiency with Puppet
Nicolas Brousse
 
Mesos swam-kubernetes-vds-02062017
Mesos swam-kubernetes-vds-02062017Mesos swam-kubernetes-vds-02062017
Mesos swam-kubernetes-vds-02062017
Christophe Furmaniak
 
It's in the cloud
It's in the cloudIt's in the cloud
It's in the cloud
kenperkins
 
Docker for Java Developers
Docker for Java DevelopersDocker for Java Developers
Docker for Java Developers
NGINX, Inc.
 
Puppet + Windows Nano Server
Puppet + Windows Nano ServerPuppet + Windows Nano Server
Puppet + Windows Nano Server
Alessandro Pilotti
 
Docker based Hadoop provisioning - Hadoop Summit 2014
Docker based Hadoop provisioning - Hadoop Summit 2014 Docker based Hadoop provisioning - Hadoop Summit 2014
Docker based Hadoop provisioning - Hadoop Summit 2014
Janos Matyas
 

Recommended

[HKOSCON][20180616][Containerized High Availability Virtual Hosting Deploymen...
[HKOSCON][20180616][Containerized High Availability Virtual Hosting Deploymen...[HKOSCON][20180616][Containerized High Availability Virtual Hosting Deploymen...
[HKOSCON][20180616][Containerized High Availability Virtual Hosting Deploymen...
Wong Hoi Sing Edison
 
Ganeti Web Manager: Cluster Management Made Simple
Ganeti Web Manager: Cluster Management Made SimpleGaneti Web Manager: Cluster Management Made Simple
Ganeti Web Manager: Cluster Management Made Simple
OSCON Byrum
 
Improving Operations Efficiency with Puppet
Improving Operations Efficiency with PuppetImproving Operations Efficiency with Puppet
Improving Operations Efficiency with Puppet
Nicolas Brousse
 
Mesos swam-kubernetes-vds-02062017
Mesos swam-kubernetes-vds-02062017Mesos swam-kubernetes-vds-02062017
Mesos swam-kubernetes-vds-02062017
Christophe Furmaniak
 
It's in the cloud
It's in the cloudIt's in the cloud
It's in the cloud
kenperkins
 
Docker for Java Developers
Docker for Java DevelopersDocker for Java Developers
Docker for Java Developers
NGINX, Inc.
 
Puppet + Windows Nano Server
Puppet + Windows Nano ServerPuppet + Windows Nano Server
Puppet + Windows Nano Server
Alessandro Pilotti
 
Docker based Hadoop provisioning - Hadoop Summit 2014
Docker based Hadoop provisioning - Hadoop Summit 2014 Docker based Hadoop provisioning - Hadoop Summit 2014
Docker based Hadoop provisioning - Hadoop Summit 2014
Janos Matyas
 
Wido den hollander cloud stack and ceph
Wido den hollander cloud stack and cephWido den hollander cloud stack and ceph
Wido den hollander cloud stack and ceph
ShapeBlue
 
Ceph and cloud stack apr 2014
Ceph and cloud stack apr 2014Ceph and cloud stack apr 2014
Ceph and cloud stack apr 2014
Ian Colle
 
Container orchestration
Container orchestrationContainer orchestration
Container orchestrationTimo Derstappen
 
Manila, an update from Liberty, OpenStack Summit - Tokyo
Manila, an update from Liberty, OpenStack Summit - TokyoManila, an update from Liberty, OpenStack Summit - Tokyo
Manila, an update from Liberty, OpenStack Summit - Tokyo
Sean Cohen
 
Kubernetes and OpenStack at Scale
Kubernetes and OpenStack at ScaleKubernetes and OpenStack at Scale
Kubernetes and OpenStack at Scale
Stephen Gordon
 
Tutorial ceph-2
Tutorial ceph-2Tutorial ceph-2
Tutorial ceph-2
Tommy Lee
 
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebula Project
 
KubeCon US 2021 - Recap - DCMeetup
KubeCon US 2021 - Recap - DCMeetupKubeCon US 2021 - Recap - DCMeetup
KubeCon US 2021 - Recap - DCMeetup
Faheem Memon
 
A Performance Comparison of Container-based Virtualization Systems for MapRed...
A Performance Comparison of Container-based Virtualization Systems for MapRed...A Performance Comparison of Container-based Virtualization Systems for MapRed...
A Performance Comparison of Container-based Virtualization Systems for MapRed...Marcelo Veiga Neves
 
Deploying containers and managing them on multiple Docker hosts, Docker Meetu...
Deploying containers and managing them on multiple Docker hosts, Docker Meetu...Deploying containers and managing them on multiple Docker hosts, Docker Meetu...
Deploying containers and managing them on multiple Docker hosts, Docker Meetu...
dotCloud
 
Ceph and OpenStack - Feb 2014
Ceph and OpenStack - Feb 2014Ceph and OpenStack - Feb 2014
Ceph and OpenStack - Feb 2014
Ian Colle
 
CEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOK
CEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOKCEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOK
CEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOK
Ceph Community
 
Architectural caching patterns for kubernetes
Architectural caching patterns for kubernetesArchitectural caching patterns for kubernetes
Architectural caching patterns for kubernetes
Rafał Leszko
 
Introduction to OpenNetwork and SDN
Introduction to OpenNetwork and SDNIntroduction to OpenNetwork and SDN
Introduction to OpenNetwork and SDN
HungWei Chiu
 
From Docker to Production - SunshinePHP 2017
From Docker to Production - SunshinePHP 2017From Docker to Production - SunshinePHP 2017
From Docker to Production - SunshinePHP 2017
Chris Tankersley
 
Wanting distributed volumes - Experiences with ceph-docker
Wanting distributed volumes - Experiences with ceph-dockerWanting distributed volumes - Experiences with ceph-docker
Wanting distributed volumes - Experiences with ceph-docker
Ewout Prangsma
 
What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...
What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...
What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...
Ian Colle
 
PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)
PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)
PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)
Aleksander Alekseev
 
Terraforming your Infrastructure on GCP
Terraforming your Infrastructure on GCPTerraforming your Infrastructure on GCP
Terraforming your Infrastructure on GCP
Samuel Chow
 
Dockerizing OpenStack for High Availability
Dockerizing OpenStack for High AvailabilityDockerizing OpenStack for High Availability
Dockerizing OpenStack for High Availability
Daniel Krook
 
[HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution]
[HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution][HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution]
[HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution]
Wong Hoi Sing Edison
 
[HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes]
[HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes][HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes]
[HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes]
Wong Hoi Sing Edison
 

More Related Content

What's hot

Wido den hollander cloud stack and ceph
Wido den hollander cloud stack and cephWido den hollander cloud stack and ceph
Wido den hollander cloud stack and ceph
ShapeBlue
 
Ceph and cloud stack apr 2014
Ceph and cloud stack apr 2014Ceph and cloud stack apr 2014
Ceph and cloud stack apr 2014
Ian Colle
 
Manila, an update from Liberty, OpenStack Summit - Tokyo
Manila, an update from Liberty, OpenStack Summit - TokyoManila, an update from Liberty, OpenStack Summit - Tokyo
Manila, an update from Liberty, OpenStack Summit - Tokyo
Sean Cohen
 
Kubernetes and OpenStack at Scale
Kubernetes and OpenStack at ScaleKubernetes and OpenStack at Scale
Kubernetes and OpenStack at Scale
Stephen Gordon
 
Tutorial ceph-2
Tutorial ceph-2Tutorial ceph-2
Tutorial ceph-2
Tommy Lee
 
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebula Project
 
KubeCon US 2021 - Recap - DCMeetup
KubeCon US 2021 - Recap - DCMeetupKubeCon US 2021 - Recap - DCMeetup
KubeCon US 2021 - Recap - DCMeetup
Faheem Memon
 
A Performance Comparison of Container-based Virtualization Systems for MapRed...
A Performance Comparison of Container-based Virtualization Systems for MapRed...A Performance Comparison of Container-based Virtualization Systems for MapRed...
A Performance Comparison of Container-based Virtualization Systems for MapRed...Marcelo Veiga Neves
 
Deploying containers and managing them on multiple Docker hosts, Docker Meetu...
Deploying containers and managing them on multiple Docker hosts, Docker Meetu...Deploying containers and managing them on multiple Docker hosts, Docker Meetu...
Deploying containers and managing them on multiple Docker hosts, Docker Meetu...
dotCloud
 
Ceph and OpenStack - Feb 2014
Ceph and OpenStack - Feb 2014Ceph and OpenStack - Feb 2014
Ceph and OpenStack - Feb 2014
Ian Colle
 
CEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOK
CEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOKCEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOK
CEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOK
Ceph Community
 
Architectural caching patterns for kubernetes
Architectural caching patterns for kubernetesArchitectural caching patterns for kubernetes
Architectural caching patterns for kubernetes
Rafał Leszko
 
Introduction to OpenNetwork and SDN
Introduction to OpenNetwork and SDNIntroduction to OpenNetwork and SDN
Introduction to OpenNetwork and SDN
HungWei Chiu
 
From Docker to Production - SunshinePHP 2017
From Docker to Production - SunshinePHP 2017From Docker to Production - SunshinePHP 2017
From Docker to Production - SunshinePHP 2017
Chris Tankersley
 
Wanting distributed volumes - Experiences with ceph-docker
Wanting distributed volumes - Experiences with ceph-dockerWanting distributed volumes - Experiences with ceph-docker
Wanting distributed volumes - Experiences with ceph-docker
Ewout Prangsma
 
What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...
What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...
What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...
Ian Colle
 
PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)
PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)
PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)
Aleksander Alekseev
 
Terraforming your Infrastructure on GCP
Terraforming your Infrastructure on GCPTerraforming your Infrastructure on GCP
Terraforming your Infrastructure on GCP
Samuel Chow
 
Dockerizing OpenStack for High Availability
Dockerizing OpenStack for High AvailabilityDockerizing OpenStack for High Availability
Dockerizing OpenStack for High Availability
Daniel Krook
 

What's hot (20)

Wido den hollander cloud stack and ceph
Wido den hollander cloud stack and cephWido den hollander cloud stack and ceph
Wido den hollander cloud stack and ceph
 
Ceph and cloud stack apr 2014
Ceph and cloud stack apr 2014Ceph and cloud stack apr 2014
Ceph and cloud stack apr 2014
 
Container orchestration
Container orchestrationContainer orchestration
Container orchestration
 
Manila, an update from Liberty, OpenStack Summit - Tokyo
Manila, an update from Liberty, OpenStack Summit - TokyoManila, an update from Liberty, OpenStack Summit - Tokyo
Manila, an update from Liberty, OpenStack Summit - Tokyo
 
Kubernetes and OpenStack at Scale
Kubernetes and OpenStack at ScaleKubernetes and OpenStack at Scale
Kubernetes and OpenStack at Scale
 
Tutorial ceph-2
Tutorial ceph-2Tutorial ceph-2
Tutorial ceph-2
 
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
OpenNebulaConf 2016 - Networking, NFVs and SDNs Hands-on Workshop by Rubén S....
 
KubeCon US 2021 - Recap - DCMeetup
KubeCon US 2021 - Recap - DCMeetupKubeCon US 2021 - Recap - DCMeetup
KubeCon US 2021 - Recap - DCMeetup
 
A Performance Comparison of Container-based Virtualization Systems for MapRed...
A Performance Comparison of Container-based Virtualization Systems for MapRed...A Performance Comparison of Container-based Virtualization Systems for MapRed...
A Performance Comparison of Container-based Virtualization Systems for MapRed...
 
Deploying containers and managing them on multiple Docker hosts, Docker Meetu...
Deploying containers and managing them on multiple Docker hosts, Docker Meetu...Deploying containers and managing them on multiple Docker hosts, Docker Meetu...
Deploying containers and managing them on multiple Docker hosts, Docker Meetu...
 
Ceph and OpenStack - Feb 2014
Ceph and OpenStack - Feb 2014Ceph and OpenStack - Feb 2014
Ceph and OpenStack - Feb 2014
 
CEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOK
CEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOKCEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOK
CEPH DAY BERLIN - DEPLOYING CEPH IN KUBERNETES WITH ROOK
 
Architectural caching patterns for kubernetes
Architectural caching patterns for kubernetesArchitectural caching patterns for kubernetes
Architectural caching patterns for kubernetes
 
Introduction to OpenNetwork and SDN
Introduction to OpenNetwork and SDNIntroduction to OpenNetwork and SDN
Introduction to OpenNetwork and SDN
 
From Docker to Production - SunshinePHP 2017
From Docker to Production - SunshinePHP 2017From Docker to Production - SunshinePHP 2017
From Docker to Production - SunshinePHP 2017
 
Wanting distributed volumes - Experiences with ceph-docker
Wanting distributed volumes - Experiences with ceph-dockerWanting distributed volumes - Experiences with ceph-docker
Wanting distributed volumes - Experiences with ceph-docker
 
What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...
What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...
What is a Ceph (and why do I care). OpenStack storage - Colorado OpenStack Me...
 
PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)
PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)
PostgreSQL Sharding and HA: Theory and Practice (PGConf.ASIA 2017)
 
Terraforming your Infrastructure on GCP
Terraforming your Infrastructure on GCPTerraforming your Infrastructure on GCP
Terraforming your Infrastructure on GCP
 
Dockerizing OpenStack for High Availability
Dockerizing OpenStack for High AvailabilityDockerizing OpenStack for High Availability
Dockerizing OpenStack for High Availability
 

Similar to [BarCamp2018][20180915][Tips for Virtual Hosting on Kubernetes]

[HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution]
[HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution][HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution]
[HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution]
Wong Hoi Sing Edison
 
[HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes]
[HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes][HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes]
[HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes]
Wong Hoi Sing Edison
 
[HKOSCON][20200613][ Ansible: From VM to Kubernetes]
[HKOSCON][20200613][ Ansible: From VM to Kubernetes][HKOSCON][20200613][ Ansible: From VM to Kubernetes]
[HKOSCON][20200613][ Ansible: From VM to Kubernetes]
Wong Hoi Sing Edison
 
Using ansible to core os &amp; kubernetes clusters
Using ansible to core os &amp; kubernetes clustersUsing ansible to core os &amp; kubernetes clusters
Using ansible to core os &amp; kubernetes clusters
magicmarkup
 
SCM Puppet: from an intro to the scaling
SCM Puppet: from an intro to the scalingSCM Puppet: from an intro to the scaling
SCM Puppet: from an intro to the scaling
Stanislav Osipov
 
Deploying PostgreSQL on Kubernetes
Deploying PostgreSQL on KubernetesDeploying PostgreSQL on Kubernetes
Deploying PostgreSQL on Kubernetes
Jimmy Angelakos
 
reBuy on Kubernetes
reBuy on KubernetesreBuy on Kubernetes
reBuy on Kubernetes
Stephan Lindauer
 
OSDC 2018 | Three years running containers with Kubernetes in Production by T...
OSDC 2018 | Three years running containers with Kubernetes in Production by T...OSDC 2018 | Three years running containers with Kubernetes in Production by T...
OSDC 2018 | Three years running containers with Kubernetes in Production by T...
NETWAYS
 
Implementing data and databases on K8s within the Dutch government
Implementing data and databases on K8s within the Dutch governmentImplementing data and databases on K8s within the Dutch government
Implementing data and databases on K8s within the Dutch government
DoKC
 
Creating an open source load balancer for S3
Creating an open source load balancer for S3Creating an open source load balancer for S3
Creating an open source load balancer for S3
Anders Bruvik
 
Wido den Hollander - building highly available cloud with Ceph and CloudStack
Wido den Hollander - building highly available cloud with Ceph and CloudStackWido den Hollander - building highly available cloud with Ceph and CloudStack
Wido den Hollander - building highly available cloud with Ceph and CloudStack
ShapeBlue
 
CEPH DAY BERLIN - WHAT'S NEW IN CEPH
CEPH DAY BERLIN - WHAT'S NEW IN CEPH CEPH DAY BERLIN - WHAT'S NEW IN CEPH
CEPH DAY BERLIN - WHAT'S NEW IN CEPH
Ceph Community
 
MongoDB Ops Manager and Kubernetes - James Broadhead
MongoDB Ops Manager and Kubernetes - James BroadheadMongoDB Ops Manager and Kubernetes - James Broadhead
MongoDB Ops Manager and Kubernetes - James Broadhead
MongoDB
 
Avishay Traeger & Shimshon Zimmerman, Stratoscale - Deploying OpenStack Cinde...
Avishay Traeger & Shimshon Zimmerman, Stratoscale - Deploying OpenStack Cinde...Avishay Traeger & Shimshon Zimmerman, Stratoscale - Deploying OpenStack Cinde...
Avishay Traeger & Shimshon Zimmerman, Stratoscale - Deploying OpenStack Cinde...
Cloud Native Day Tel Aviv
 
Designing Lean CloudStack Environments for the Edge - IndiQus - CloudStack E...
Designing Lean CloudStack Environments for the Edge - IndiQus - CloudStack E... Designing Lean CloudStack Environments for the Edge - IndiQus - CloudStack E...
Designing Lean CloudStack Environments for the Edge - IndiQus - CloudStack E...
ShapeBlue
 
Docker 0.11 at MaxCDN meetup in Los Angeles
Docker 0.11 at MaxCDN meetup in Los AngelesDocker 0.11 at MaxCDN meetup in Los Angeles
Docker 0.11 at MaxCDN meetup in Los Angeles
Jérôme Petazzoni
 
Deploying OpenStack with Ansible
Deploying OpenStack with AnsibleDeploying OpenStack with Ansible
Deploying OpenStack with Ansible
Kevin Carter
 
Deploying Perl apps on dotCloud
Deploying Perl apps on dotCloudDeploying Perl apps on dotCloud
Deploying Perl apps on dotCloud
daoswald
 
Nugwc k8s session-16-march-2021
Nugwc k8s session-16-march-2021Nugwc k8s session-16-march-2021
Nugwc k8s session-16-march-2021
Avanti Patil
 
Future of Apache CloudStack: modular, distributed, and hackable
Future of Apache CloudStack: modular, distributed, and hackableFuture of Apache CloudStack: modular, distributed, and hackable
Future of Apache CloudStack: modular, distributed, and hackable
Darren Shepherd
 

Similar to [BarCamp2018][20180915][Tips for Virtual Hosting on Kubernetes] (20)

[HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution]
[HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution][HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution]
[HKOSCON][20220611][AlviStack: Hong Kong Based Kubernetes Distribution]
 
[HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes]
[HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes][HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes]
[HKOSCon x COSCUP 2020][20200801][Ansible: From VM to Kubernetes]
 
[HKOSCON][20200613][ Ansible: From VM to Kubernetes]
[HKOSCON][20200613][ Ansible: From VM to Kubernetes][HKOSCON][20200613][ Ansible: From VM to Kubernetes]
[HKOSCON][20200613][ Ansible: From VM to Kubernetes]
 
Using ansible to core os &amp; kubernetes clusters
Using ansible to core os &amp; kubernetes clustersUsing ansible to core os &amp; kubernetes clusters
Using ansible to core os &amp; kubernetes clusters
 
SCM Puppet: from an intro to the scaling
SCM Puppet: from an intro to the scalingSCM Puppet: from an intro to the scaling
SCM Puppet: from an intro to the scaling
 
Deploying PostgreSQL on Kubernetes
Deploying PostgreSQL on KubernetesDeploying PostgreSQL on Kubernetes
Deploying PostgreSQL on Kubernetes
 
reBuy on Kubernetes
reBuy on KubernetesreBuy on Kubernetes
reBuy on Kubernetes
 
OSDC 2018 | Three years running containers with Kubernetes in Production by T...
OSDC 2018 | Three years running containers with Kubernetes in Production by T...OSDC 2018 | Three years running containers with Kubernetes in Production by T...
OSDC 2018 | Three years running containers with Kubernetes in Production by T...
 
Implementing data and databases on K8s within the Dutch government
Implementing data and databases on K8s within the Dutch governmentImplementing data and databases on K8s within the Dutch government
Implementing data and databases on K8s within the Dutch government
 
Creating an open source load balancer for S3
Creating an open source load balancer for S3Creating an open source load balancer for S3
Creating an open source load balancer for S3
 
Wido den Hollander - building highly available cloud with Ceph and CloudStack
Wido den Hollander - building highly available cloud with Ceph and CloudStackWido den Hollander - building highly available cloud with Ceph and CloudStack
Wido den Hollander - building highly available cloud with Ceph and CloudStack
 
CEPH DAY BERLIN - WHAT'S NEW IN CEPH
CEPH DAY BERLIN - WHAT'S NEW IN CEPH CEPH DAY BERLIN - WHAT'S NEW IN CEPH
CEPH DAY BERLIN - WHAT'S NEW IN CEPH
 
MongoDB Ops Manager and Kubernetes - James Broadhead
MongoDB Ops Manager and Kubernetes - James BroadheadMongoDB Ops Manager and Kubernetes - James Broadhead
MongoDB Ops Manager and Kubernetes - James Broadhead
 
Avishay Traeger & Shimshon Zimmerman, Stratoscale - Deploying OpenStack Cinde...
Avishay Traeger & Shimshon Zimmerman, Stratoscale - Deploying OpenStack Cinde...Avishay Traeger & Shimshon Zimmerman, Stratoscale - Deploying OpenStack Cinde...
Avishay Traeger & Shimshon Zimmerman, Stratoscale - Deploying OpenStack Cinde...
 
Designing Lean CloudStack Environments for the Edge - IndiQus - CloudStack E...
Designing Lean CloudStack Environments for the Edge - IndiQus - CloudStack E... Designing Lean CloudStack Environments for the Edge - IndiQus - CloudStack E...
Designing Lean CloudStack Environments for the Edge - IndiQus - CloudStack E...
 
Docker 0.11 at MaxCDN meetup in Los Angeles
Docker 0.11 at MaxCDN meetup in Los AngelesDocker 0.11 at MaxCDN meetup in Los Angeles
Docker 0.11 at MaxCDN meetup in Los Angeles
 
Deploying OpenStack with Ansible
Deploying OpenStack with AnsibleDeploying OpenStack with Ansible
Deploying OpenStack with Ansible
 
Deploying Perl apps on dotCloud
Deploying Perl apps on dotCloudDeploying Perl apps on dotCloud
Deploying Perl apps on dotCloud
 
Nugwc k8s session-16-march-2021
Nugwc k8s session-16-march-2021Nugwc k8s session-16-march-2021
Nugwc k8s session-16-march-2021
 
Future of Apache CloudStack: modular, distributed, and hackable
Future of Apache CloudStack: modular, distributed, and hackableFuture of Apache CloudStack: modular, distributed, and hackable
Future of Apache CloudStack: modular, distributed, and hackable
 

More from Wong Hoi Sing Edison

[HKOSCON][20190615][DevOps with Ansible, From Native to Kubernetes]
[HKOSCON][20190615][DevOps with Ansible, From Native to Kubernetes][HKOSCON][20190615][DevOps with Ansible, From Native to Kubernetes]
[HKOSCON][20190615][DevOps with Ansible, From Native to Kubernetes]
Wong Hoi Sing Edison
 
[HKDUG] #20180512 - Fix Hacked Drupal with GIT
[HKDUG] #20180512 - Fix Hacked Drupal with GIT[HKDUG] #20180512 - Fix Hacked Drupal with GIT
[HKDUG] #20180512 - Fix Hacked Drupal with GIT
Wong Hoi Sing Edison
 
[HKDUG] #20161210 - BarCamp Hong Kong 2016 - What's News in PHP?
[HKDUG] #20161210 - BarCamp Hong Kong 2016 - What's News in PHP?[HKDUG] #20161210 - BarCamp Hong Kong 2016 - What's News in PHP?
[HKDUG] #20161210 - BarCamp Hong Kong 2016 - What's News in PHP?
Wong Hoi Sing Edison
 
[20160314][CUHK][CSCI4140]Life of an Agile Team]
[20160314][CUHK][CSCI4140]Life of an Agile Team][20160314][CUHK][CSCI4140]Life of an Agile Team]
[20160314][CUHK][CSCI4140]Life of an Agile Team]
Wong Hoi Sing Edison
 
BarCamp Hong Kong 2015 - AuthBucket - Open Source Identity Management System
BarCamp Hong Kong 2015 - AuthBucket - Open Source Identity Management SystemBarCamp Hong Kong 2015 - AuthBucket - Open Source Identity Management System
BarCamp Hong Kong 2015 - AuthBucket - Open Source Identity Management System
Wong Hoi Sing Edison
 
[HKDUG] #20151017 - BarCamp 2015 - Drupal 8 is Coming! Are You Ready?
[HKDUG] #20151017 - BarCamp 2015 - Drupal 8 is Coming! Are You Ready?[HKDUG] #20151017 - BarCamp 2015 - Drupal 8 is Coming! Are You Ready?
[HKDUG] #20151017 - BarCamp 2015 - Drupal 8 is Coming! Are You Ready?
Wong Hoi Sing Edison
 
[HKDUG] #20160626 - HKOSCon 2015 - Website DIY with Drupal 8
[HKDUG] #20160626 - HKOSCon 2015 - Website DIY with Drupal 8[HKDUG] #20160626 - HKOSCon 2015 - Website DIY with Drupal 8
[HKDUG] #20160626 - HKOSCon 2015 - Website DIY with Drupal 8
Wong Hoi Sing Edison
 
DruStack- a mobile-friendly web content management system (cms
DruStack- a mobile-friendly web content management system (cmsDruStack- a mobile-friendly web content management system (cms
DruStack- a mobile-friendly web content management system (cms
Wong Hoi Sing Edison
 
drustack a mobile-friendly web content management system (cms)
drustack a mobile-friendly web content management system (cms)drustack a mobile-friendly web content management system (cms)
drustack a mobile-friendly web content management system (cms)
Wong Hoi Sing Edison
 
CUHK CSCI 4140 2015 Spring Guest Lecture - Agile Development
CUHK CSCI 4140 2015 Spring Guest Lecture - Agile DevelopmentCUHK CSCI 4140 2015 Spring Guest Lecture - Agile Development
CUHK CSCI 4140 2015 Spring Guest Lecture - Agile Development
Wong Hoi Sing Edison
 
Open Innovation Lab (OIL) - 20150227 - GIT Intro Workshop
Open Innovation Lab (OIL) - 20150227 - GIT Intro WorkshopOpen Innovation Lab (OIL) - 20150227 - GIT Intro Workshop
Open Innovation Lab (OIL) - 20150227 - GIT Intro Workshop
Wong Hoi Sing Edison
 
IT Entrepreneurship Talk - City University of Hong Kong
IT Entrepreneurship Talk - City University of Hong KongIT Entrepreneurship Talk - City University of Hong Kong
IT Entrepreneurship Talk - City University of Hong Kong
Wong Hoi Sing Edison
 
OSS Community Meeting - OSS Community Management for Dummy
OSS Community Meeting - OSS Community Management for DummyOSS Community Meeting - OSS Community Management for Dummy
OSS Community Meeting - OSS Community Management for Dummy
Wong Hoi Sing Edison
 
Barcamp Hong Kong 2014 - Introduction to GIT
Barcamp Hong Kong 2014 - Introduction to GITBarcamp Hong Kong 2014 - Introduction to GIT
Barcamp Hong Kong 2014 - Introduction to GIT
Wong Hoi Sing Edison
 
Barcamp Hong Kong 2014 - Commercial Use of OSS Web Content Management System
Barcamp Hong Kong 2014 - Commercial Use of OSS Web Content Management SystemBarcamp Hong Kong 2014 - Commercial Use of OSS Web Content Management System
Barcamp Hong Kong 2014 - Commercial Use of OSS Web Content Management System
Wong Hoi Sing Edison
 
Hong Kong Drupal User Group - Nov 8th
Hong Kong Drupal User Group - Nov 8thHong Kong Drupal User Group - Nov 8th
Hong Kong Drupal User Group - Nov 8th
Wong Hoi Sing Edison
 
Entrepreneurship Talk
Entrepreneurship TalkEntrepreneurship Talk
Entrepreneurship Talk
Wong Hoi Sing Edison
 
Open Source.HK Workshop - 2014 Oct 11th
Open Source.HK Workshop - 2014 Oct 11thOpen Source.HK Workshop - 2014 Oct 11th
Open Source.HK Workshop - 2014 Oct 11th
Wong Hoi Sing Edison
 
Barcamp Macau 2014 - Introduction to GIT
Barcamp Macau 2014 - Introduction to GITBarcamp Macau 2014 - Introduction to GIT
Barcamp Macau 2014 - Introduction to GIT
Wong Hoi Sing Edison
 
Barcamp Macau 2014 - Introduction to AWS
Barcamp Macau 2014 - Introduction to AWSBarcamp Macau 2014 - Introduction to AWS
Barcamp Macau 2014 - Introduction to AWS
Wong Hoi Sing Edison
 

More from Wong Hoi Sing Edison (20)

[HKOSCON][20190615][DevOps with Ansible, From Native to Kubernetes]
[HKOSCON][20190615][DevOps with Ansible, From Native to Kubernetes][HKOSCON][20190615][DevOps with Ansible, From Native to Kubernetes]
[HKOSCON][20190615][DevOps with Ansible, From Native to Kubernetes]
 
[HKDUG] #20180512 - Fix Hacked Drupal with GIT
[HKDUG] #20180512 - Fix Hacked Drupal with GIT[HKDUG] #20180512 - Fix Hacked Drupal with GIT
[HKDUG] #20180512 - Fix Hacked Drupal with GIT
 
[HKDUG] #20161210 - BarCamp Hong Kong 2016 - What's News in PHP?
[HKDUG] #20161210 - BarCamp Hong Kong 2016 - What's News in PHP?[HKDUG] #20161210 - BarCamp Hong Kong 2016 - What's News in PHP?
[HKDUG] #20161210 - BarCamp Hong Kong 2016 - What's News in PHP?
 
[20160314][CUHK][CSCI4140]Life of an Agile Team]
[20160314][CUHK][CSCI4140]Life of an Agile Team][20160314][CUHK][CSCI4140]Life of an Agile Team]
[20160314][CUHK][CSCI4140]Life of an Agile Team]
 
BarCamp Hong Kong 2015 - AuthBucket - Open Source Identity Management System
BarCamp Hong Kong 2015 - AuthBucket - Open Source Identity Management SystemBarCamp Hong Kong 2015 - AuthBucket - Open Source Identity Management System
BarCamp Hong Kong 2015 - AuthBucket - Open Source Identity Management System
 
[HKDUG] #20151017 - BarCamp 2015 - Drupal 8 is Coming! Are You Ready?
[HKDUG] #20151017 - BarCamp 2015 - Drupal 8 is Coming! Are You Ready?[HKDUG] #20151017 - BarCamp 2015 - Drupal 8 is Coming! Are You Ready?
[HKDUG] #20151017 - BarCamp 2015 - Drupal 8 is Coming! Are You Ready?
 
[HKDUG] #20160626 - HKOSCon 2015 - Website DIY with Drupal 8
[HKDUG] #20160626 - HKOSCon 2015 - Website DIY with Drupal 8[HKDUG] #20160626 - HKOSCon 2015 - Website DIY with Drupal 8
[HKDUG] #20160626 - HKOSCon 2015 - Website DIY with Drupal 8
 
DruStack- a mobile-friendly web content management system (cms
DruStack- a mobile-friendly web content management system (cmsDruStack- a mobile-friendly web content management system (cms
DruStack- a mobile-friendly web content management system (cms
 
drustack a mobile-friendly web content management system (cms)
drustack a mobile-friendly web content management system (cms)drustack a mobile-friendly web content management system (cms)
drustack a mobile-friendly web content management system (cms)
 
CUHK CSCI 4140 2015 Spring Guest Lecture - Agile Development
CUHK CSCI 4140 2015 Spring Guest Lecture - Agile DevelopmentCUHK CSCI 4140 2015 Spring Guest Lecture - Agile Development
CUHK CSCI 4140 2015 Spring Guest Lecture - Agile Development
 
Open Innovation Lab (OIL) - 20150227 - GIT Intro Workshop
Open Innovation Lab (OIL) - 20150227 - GIT Intro WorkshopOpen Innovation Lab (OIL) - 20150227 - GIT Intro Workshop
Open Innovation Lab (OIL) - 20150227 - GIT Intro Workshop
 
IT Entrepreneurship Talk - City University of Hong Kong
IT Entrepreneurship Talk - City University of Hong KongIT Entrepreneurship Talk - City University of Hong Kong
IT Entrepreneurship Talk - City University of Hong Kong
 
OSS Community Meeting - OSS Community Management for Dummy
OSS Community Meeting - OSS Community Management for DummyOSS Community Meeting - OSS Community Management for Dummy
OSS Community Meeting - OSS Community Management for Dummy
 
Barcamp Hong Kong 2014 - Introduction to GIT
Barcamp Hong Kong 2014 - Introduction to GITBarcamp Hong Kong 2014 - Introduction to GIT
Barcamp Hong Kong 2014 - Introduction to GIT
 
Barcamp Hong Kong 2014 - Commercial Use of OSS Web Content Management System
Barcamp Hong Kong 2014 - Commercial Use of OSS Web Content Management SystemBarcamp Hong Kong 2014 - Commercial Use of OSS Web Content Management System
Barcamp Hong Kong 2014 - Commercial Use of OSS Web Content Management System
 
Hong Kong Drupal User Group - Nov 8th
Hong Kong Drupal User Group - Nov 8thHong Kong Drupal User Group - Nov 8th
Hong Kong Drupal User Group - Nov 8th
 
Entrepreneurship Talk
Entrepreneurship TalkEntrepreneurship Talk
Entrepreneurship Talk
 
Open Source.HK Workshop - 2014 Oct 11th
Open Source.HK Workshop - 2014 Oct 11thOpen Source.HK Workshop - 2014 Oct 11th
Open Source.HK Workshop - 2014 Oct 11th
 
Barcamp Macau 2014 - Introduction to GIT
Barcamp Macau 2014 - Introduction to GITBarcamp Macau 2014 - Introduction to GIT
Barcamp Macau 2014 - Introduction to GIT
 
Barcamp Macau 2014 - Introduction to AWS
Barcamp Macau 2014 - Introduction to AWSBarcamp Macau 2014 - Introduction to AWS
Barcamp Macau 2014 - Introduction to AWS
 

Recently uploaded

Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"
Donna Lenk
 
Empowering Growth with Best Software Development Company in Noida - Deuglo
Empowering Growth with Best Software Development Company in Noida - DeugloEmpowering Growth with Best Software Development Company in Noida - Deuglo
Empowering Growth with Best Software Development Company in Noida - Deuglo
Deuglo Infosystem Pvt Ltd
 
Introducing Crescat - Event Management Software for Venues, Festivals and Eve...
Introducing Crescat - Event Management Software for Venues, Festivals and Eve...Introducing Crescat - Event Management Software for Venues, Festivals and Eve...
Introducing Crescat - Event Management Software for Venues, Festivals and Eve...
Crescat
 
Pro Unity Game Development with C-sharp Book
Pro Unity Game Development with C-sharp BookPro Unity Game Development with C-sharp Book
Pro Unity Game Development with C-sharp Book
abdulrafaychaudhry
 
First Steps with Globus Compute Multi-User Endpoints
First Steps with Globus Compute Multi-User EndpointsFirst Steps with Globus Compute Multi-User Endpoints
First Steps with Globus Compute Multi-User Endpoints
Globus
 
Quarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden ExtensionsQuarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden Extensions
Max Andersen
 
APIs for Browser Automation (MoT Meetup 2024)
APIs for Browser Automation (MoT Meetup 2024)APIs for Browser Automation (MoT Meetup 2024)
APIs for Browser Automation (MoT Meetup 2024)
Boni García
 
BoxLang: Review our Visionary Licenses of 2024
BoxLang: Review our Visionary Licenses of 2024BoxLang: Review our Visionary Licenses of 2024
BoxLang: Review our Visionary Licenses of 2024
Ortus Solutions, Corp
 
Globus Compute wth IRI Workflows - GlobusWorld 2024
Globus Compute wth IRI Workflows - GlobusWorld 2024Globus Compute wth IRI Workflows - GlobusWorld 2024
Globus Compute wth IRI Workflows - GlobusWorld 2024
Globus
 
Game Development with Unity3D (Game Development lecture 3)
Game Development with Unity3D (Game Development lecture 3)Game Development with Unity3D (Game Development lecture 3)
Game Development with Unity3D (Game Development lecture 3)
abdulrafaychaudhry
 
LORRAINE ANDREI_LEQUIGAN_HOW TO USE ZOOM
LORRAINE ANDREI_LEQUIGAN_HOW TO USE ZOOMLORRAINE ANDREI_LEQUIGAN_HOW TO USE ZOOM
LORRAINE ANDREI_LEQUIGAN_HOW TO USE ZOOM
lorraineandreiamcidl
 
May Marketo Masterclass, London MUG May 22 2024.pdf
May Marketo Masterclass, London MUG May 22 2024.pdfMay Marketo Masterclass, London MUG May 22 2024.pdf
May Marketo Masterclass, London MUG May 22 2024.pdf
Adele Miller
 
openEuler Case Study - The Journey to Supply Chain Security
openEuler Case Study - The Journey to Supply Chain SecurityopenEuler Case Study - The Journey to Supply Chain Security
openEuler Case Study - The Journey to Supply Chain Security
Shane Coughlan
 
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdf
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdfAutomated software refactoring with OpenRewrite and Generative AI.pptx.pdf
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdf
timtebeek1
 
Cracking the code review at SpringIO 2024
Cracking the code review at SpringIO 2024Cracking the code review at SpringIO 2024
Cracking the code review at SpringIO 2024
Paco van Beckhoven
 
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket ManagementUtilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
Utilocate
 
AI Genie Review: World’s First Open AI WordPress Website Creator
AI Genie Review: World’s First Open AI WordPress Website CreatorAI Genie Review: World’s First Open AI WordPress Website Creator
AI Genie Review: World’s First Open AI WordPress Website Creator
Google
 
Enterprise Software Development with No Code Solutions.pptx
Enterprise Software Development with No Code Solutions.pptxEnterprise Software Development with No Code Solutions.pptx
Enterprise Software Development with No Code Solutions.pptx
QuickwayInfoSystems3
 
Vitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdfVitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke
 
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptx
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptxTop Features to Include in Your Winzo Clone App for Business Growth (4).pptx
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptx
rickgrimesss22
 

Recently uploaded (20)

Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"
 
Empowering Growth with Best Software Development Company in Noida - Deuglo
Empowering Growth with Best Software Development Company in Noida - DeugloEmpowering Growth with Best Software Development Company in Noida - Deuglo
Empowering Growth with Best Software Development Company in Noida - Deuglo
 
Introducing Crescat - Event Management Software for Venues, Festivals and Eve...
Introducing Crescat - Event Management Software for Venues, Festivals and Eve...Introducing Crescat - Event Management Software for Venues, Festivals and Eve...
Introducing Crescat - Event Management Software for Venues, Festivals and Eve...
 
Pro Unity Game Development with C-sharp Book
Pro Unity Game Development with C-sharp BookPro Unity Game Development with C-sharp Book
Pro Unity Game Development with C-sharp Book
 
First Steps with Globus Compute Multi-User Endpoints
First Steps with Globus Compute Multi-User EndpointsFirst Steps with Globus Compute Multi-User Endpoints
First Steps with Globus Compute Multi-User Endpoints
 
Quarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden ExtensionsQuarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden Extensions
 
APIs for Browser Automation (MoT Meetup 2024)
APIs for Browser Automation (MoT Meetup 2024)APIs for Browser Automation (MoT Meetup 2024)
APIs for Browser Automation (MoT Meetup 2024)
 
BoxLang: Review our Visionary Licenses of 2024
BoxLang: Review our Visionary Licenses of 2024BoxLang: Review our Visionary Licenses of 2024
BoxLang: Review our Visionary Licenses of 2024
 
Globus Compute wth IRI Workflows - GlobusWorld 2024
Globus Compute wth IRI Workflows - GlobusWorld 2024Globus Compute wth IRI Workflows - GlobusWorld 2024
Globus Compute wth IRI Workflows - GlobusWorld 2024
 
Game Development with Unity3D (Game Development lecture 3)
Game Development with Unity3D (Game Development lecture 3)Game Development with Unity3D (Game Development lecture 3)
Game Development with Unity3D (Game Development lecture 3)
 
LORRAINE ANDREI_LEQUIGAN_HOW TO USE ZOOM
LORRAINE ANDREI_LEQUIGAN_HOW TO USE ZOOMLORRAINE ANDREI_LEQUIGAN_HOW TO USE ZOOM
LORRAINE ANDREI_LEQUIGAN_HOW TO USE ZOOM
 
May Marketo Masterclass, London MUG May 22 2024.pdf
May Marketo Masterclass, London MUG May 22 2024.pdfMay Marketo Masterclass, London MUG May 22 2024.pdf
May Marketo Masterclass, London MUG May 22 2024.pdf
 
openEuler Case Study - The Journey to Supply Chain Security
openEuler Case Study - The Journey to Supply Chain SecurityopenEuler Case Study - The Journey to Supply Chain Security
openEuler Case Study - The Journey to Supply Chain Security
 
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdf
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdfAutomated software refactoring with OpenRewrite and Generative AI.pptx.pdf
Automated software refactoring with OpenRewrite and Generative AI.pptx.pdf
 
Cracking the code review at SpringIO 2024
Cracking the code review at SpringIO 2024Cracking the code review at SpringIO 2024
Cracking the code review at SpringIO 2024
 
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket ManagementUtilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
Utilocate provides Smarter, Better, Faster, Safer Locate Ticket Management
 
AI Genie Review: World’s First Open AI WordPress Website Creator
AI Genie Review: World’s First Open AI WordPress Website CreatorAI Genie Review: World’s First Open AI WordPress Website Creator
AI Genie Review: World’s First Open AI WordPress Website Creator
 
Enterprise Software Development with No Code Solutions.pptx
Enterprise Software Development with No Code Solutions.pptxEnterprise Software Development with No Code Solutions.pptx
Enterprise Software Development with No Code Solutions.pptx
 
Vitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdfVitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdf
 
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptx
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptxTop Features to Include in Your Winzo Clone App for Business Growth (4).pptx
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptx
 

[BarCamp2018][20180915][Tips for Virtual Hosting on Kubernetes]

  • 1. BarCamp Hong Kong 2018 Tips for Virtual Hosting on Kubernetes PantaRei Design Limited Wong Hoi Sing, Edison 2018-09-15
  • 2. Wong Hoi Sing, Edison ● 2005 - Drupal Developer & Contributor – https://drupal.org/user/33940 ● 2008 - HKDUG Co-founder – https://groups.drupal.org/drupalhk ● 2010 - CEO, PantaRei Design – hswong3i@pantarei-design.com
  • 3.
  • 4.
  • 5.
  • 6.
  • 7. PantaRei Design ● Everything Changes and Nothing Remains Still ● Reinvent Enterprise with Open Source Software and Cloud Computing ● Hong Kong based FOSS service provider – Content Management System (CMS) with Drupal – Cloud Hosting Solution with Amazon Web Services (AWS) – Team collaborate solution with Atlassian ● Business Partner with industry leaders – 2012, AWS Consulting Partner – 2013, Acquia Partner – 2013, Atlassian Experts – 2014, Rackspace Hosting Partner ● http://pantarei-design.com
  • 8.
  • 9. Outline ● Virtual Hosting for Dummy ● Let’s Demo with Drupal 8.6 ● Tips & Tricks ● Roadmap ● Q&A
  • 10. Virtual Hosting for Dummy ● What is Virtual Hosting? ● How Virtual Hosting Works? ● How to Improve it? ● Overall Design
  • 11. What is Virtual Hosting? ● Virtual hosting is a method for hosting multiple domain names (with separate handling of each name) on a single server (or pool of servers)
  • 12. How Virtual Hosting Works? ● Single Server, Single Cluster, Single Domain – tasksel install lamp-server – No redundant, no scale out, no per talent security required (well…) – From KISS principle (Keep it simple, stupid) point of view, it is good enough that not easy to fail – BTW, from hosting service vendor point of view, resource could not be fully utilized (or, overselling...)
  • 13.
  • 14. How Virtual Hosting Works? (cont.) ● Single Server, Single Cluster, Multiple Domain – Cpanel, Plesk, Virtualmin, etc – No redundant, no scale out – Shared resource, e.g. disk, database, service – Resouce could now be utilize and overselling, but security between each talent MUST BE very careful
  • 15.
  • 16.
  • 17.
  • 18.
  • 19. How Virtual Hosting Works? (cont.) ● Multiple Server, Single Cluster, Multiple Domain – Manage with DevOps, e.g. Chef, Puppet, Ansible, etc – With redundant – Difficult for implement ● Custom deployment playbook required – Difficult for scale out ● Manually update the playbook ● Deploy native package to node per OS – Shared resource, e.g. disk, database, service – Security between each talent MUST BE very careful
  • 20.
  • 21.
  • 22.
  • 23.
  • 24. How Virtual Hosting Works? (cont.) ● Multiple Server, Multiple Cluster, Single Domain – With redundant – With scale out – As simple security management as All-in-one – But you will need many server (!?) – Deployment and management is difficult, too (!!)
  • 25.
  • 26.
  • 27.
  • 28. How to Improve it? ● Simple architecture deployment and management ● Simple application installation and configuration ● Simple centralized network storage cluster with backup plan ● Simple service fail detection and rescheduling ● Simple per talent isolation and security ● (NEW) Hot/Warm/Cold disaster recovery plan
  • 29. Overall Design ● Ansible: deployment management ● Docker: application pre-packaging ● CephFS: centralized network storage ● Kubernetes: runtime service lifecycle management ● (NEW) Duplicity: backup with deduplication
  • 30.
  • 31.
  • 32.
  • 33. Overall Design (cont.) ● Each talent (i.e. domain) goes into individual Kubernetes namespace ● Each namespace have its own Apache, PHP, MySQL, SSHD, etc ● All dynamic data store outside Kubernetes, goes into CephFS ● (NEW) DR with CephFS snapshot + Rsync + Duplicity
  • 34. Let’s Demo with Drupal 8.6 ● Create Kubernetes Namespace ● Deploy Application Stack ● Install Drupal 8.6 ● Scale It Out!
  • 35. Create Kubernetes Namespace ● kubectl apply -Rf 00-namespace.yml ● kubectl get namespace | grep hswong3i-net
  • 36.
  • 37. Deploy Application Stack ● kubectl apply -Rf . ● kubectl -n hswong3i-net get pod -o wide
  • 38.
  • 39. Install Drupal 8.6 ● kubectl -n hswong3i-net exec -ti sshd-66cbd7dc65-pk9v2 /bin/bash ● cd /var/www/html/web ● echo "<?php phpinfo(); ?>" > phpinfo.php ● https://hswong3i.net/phpinfo.php
  • 40.
  • 41.
  • 42. Install Drupal 8.6 (cont.) ● cd /var/www/html ● wget -c https://ftp.drupal.org/files/projects/drupal-8.6.1.tar.gz ● tar zxf drupal-8.6.1.tar.gz --strip-components=1 -C /var/www/html/web/ ● chown -Rf www-data:www-data /var/www/html ● https://hswong3i.net/core/install.php
  • 43.
  • 44.
  • 45.
  • 46.
  • 47.
  • 48.
  • 49.
  • 50.
  • 51. Scale It Out! ● kubectl -n hswong3i-net patch deploy httpd -p '{"spec":{"replicas":4}}' ● kubectl -n hswong3i-net patch deploy php -p '{"spec":{"replicas":4}}' ● kubectl -n hswong3i-net patch sts mariadb -p '{"spec":{"replicas":3}}'
  • 52.
  • 54. Ansible ● Installing Ansible is simple – pip install ansible ● Managing access to remote guest is simple – Password-less SSH login by public-private key pair ● Running command on remote guest is simple – ansible -i guest1,guest2, -m ping – ansible -i guest1,guest2, -m apt -a ‘name=vim state=present’ – ansible -i guest1,guest2, -m shell -a ‘uname -a’
  • 55. Ansible (cont.) ● Made complicated application deployment manageable – ceph-ansible – kubespray – openstack-ansible
  • 56. Ceph ● DON’T deploy Ceph with Kubernetes + Helm!! – By our design Kubernetes consume Ceph as Persistent Volumes (PV) provider – Deploying Ceph on top of Kubernetes become a “ Chicken or the Egg” paradox ● TRUST ME!! You will absolutely get mad when your Ceph crashed and recovery is required :-P – Simply deploy with ceph-ansible
  • 57. Ceph (cont.) ● Collocated + Bluestore – Collocated simplify your disk partition table – Bluestore scale much better than traditional XFS-based filestore ● E.g. Backed with Aliyun EBS (max ~110MB/s), a 3 OSD CephFS could provide ~60MB/s
  • 58.
  • 59. Ceph (cont.) ● CephFS Snapshot + Duplicity – Create a CephFS Snapshot is simple and fast (>1s) ● cd /mnt/cephfs && mkdir -p .snap/`date +%s` – Snapshot therefore could async backup by Duplicity as simple flattened .gz format, with Data Deduplication, e.g. ● Weekly full backup ● Daily incremental backup ● Keep maximum 4 weeks backup – (NEW) Don’t keep snapshot after rsync ● Multiple-Master-MDS + snapshot just get stable on Ceph 13.2.0 ● Snapshot will use up your usable space – (NEW) Both rsync and duplcity use `mtime + size` ● Don’t use `--size-only`: backup will ALWAYS FAIL ● (Optional) Use `--checksum` on rsync will slow down for at least x4 times, but duplicity hard code logic with `mtime + size`...
  • 60.
  • 61.
  • 62. Kubernetes ● PVC with cephfs-provisioner (or ceph-csi) – With cephfs-provisioner we could simply integrate with Kubernets PersistentVolumeClaims – kubespray ready for this deployment – Everything from Application Stack could go into CephFS, with ReadWriteMany, e.g. ● /root (for sshd pod, for remote management) ● /var/www/html (for httpd/php pods, for document root) ● /var/lib/mysql (for mysql/mariadb pods, for data store) – Backup made simple with CephFS Snapshot + Duplicity
  • 63. Kubernetes (cont.) ● Network Policy with Weave – Weave is a simple and lightweight vxlan-based CNI Network Provider, supporting Kubernete’s Network Policy – kubespray ready for this deployment – We could isolate network traffic between each namespace, e.g. ● DENY all traffic from other namespaces (i.e. default allow traffic inside namespace) ● ALLOW all traffic from a namespace (e.g. allow traffic from ingress-nginx namespace) ● ALLOW all traffic to an application (e.g. allow external access to sshd pod for remote management)
  • 64.
  • 65. Kubernetes (cont.) ● Ingress with ingress-nginx – ingress-nginx use Nginx as Controller for Kubernetes Ingress Resource, supporting HTTPS /TLS with SNI (i.e. multiple HTTPS virtual hosting with single public IP) – kubespray ready for this deployment – Proxy Protocol support is required when working with AWS L4 ELB, for fetching client’s source IP address
  • 66. Kubernetes (cont.) ● Let’s Encrypt with cert-manager – With cert-manager we could request TLS certificate from Let’s Encrypt for free, with auto renewal and ingress-nginx integration – kubespray ready for this deployment – Simply use http01 for varification
  • 67. Kubernetes (cont.) ● (NEW) StatefulSet Limitation – Deleting and/or scaling a StatefulSet down will not delete the volumes associated with the StatefulSet. – This is done to ensure data safety, which is generally more valuable than an automatic purge of all related StatefulSet resources – https://kubernetes.io/docs/concepts/workloads/co ntrollers/statefulset/#limitations
  • 68. Kubernetes (cont.) ● (NEW) Master-Slave Replication? – NO, do Single-Master or Multi- Master with load-balancing – Simply use Deployment for Single- Master pod automatically failover by Kubernetes
  • 69. Application Stack ● MariaDB Multi-master cluster with Kubernetes peer- finder – When starting a new MariaDB multi-master cluster, we need to know if “this” node should bootstrap a new cluster, or join existing cluster – Kubernetes peer-finder could give a hand for discovering if any existing peers – We build a Docker image which simplify such integration with StatefulSet deployment
  • 70. Application Stack (cont.) ● MariaDB innodb_buffer_pool_size – Simply give large enough innodb_buffer_pool_size, so let MariaDB try to cache all warmup-ed data from disk to memory/swap, and async write-back to disk – This could greatly reduce the disk I/O bottleneck
  • 71. Application Stack (cont.) ● PHP cache with opcache + apcu – With opcache enabled PHP will cache the precomplied script bytecode in shared memory, which greatly improve the overall performance – With apcu enable legacy application could also benefit with their existing cache implementation
  • 72. Application Stack (cont.) ● Drupal need a lots of PHP extensions – Official PHP Docker image comes with almost none of Drupal required extensions – By the way, installing those extensions manually is VERY TIME CONSUMING!! – We build a Docker Image which simplify such integration...
  • 73. Application Stack (cont.) ● Apache cache with mod_cache_disk – With mod_cache_disk enable Apache will try to cache any static assets (e.g. css/js/jpg/gif/png/etc) as much as possible – Don’t worry to much about the disk I/O performance, Linux kernel will automatically cache it for you into memory/swap, if required – We build a Docker Image which simplify such integration
  • 74. Roadmap ● CephFS with Kubernetes CSI ● Logging with Fluentd, ElasticSearch, and Kibana ● Monitoring and Alert with Prometheus and Grafana ● Manage Application Stack with Helm and Chart
  • 75. Q&A
  • 76. Contact Us ● Address: Unit 326, 3/F, Building 16W, No.16 Science Park West Avenue, Hong Kong Science Park, Shatin, N.T. ● Phone: +852 3576 3812 ● Fax: +852 3753 3663 ● Email: sales@pantarei-design.com ● Web: http://pantarei-design.com