SlideShare a Scribd company logo

Cloud Native Use Cases from KubeCon 2019

Krishna-Kumar
Krishna-Kumar

From KubeCon / CloudNativeCon 2019 customer stories, case studies, use cases - RECAP. Kubernetes & CNCF project use cases summary presented in Bangalore CNCF Meetup.

Software
1 of 24
Download to read offline
1 Cloud Native Use Cases From KubeCon 2019 San Diego – A Recap by Krishna Kumar, https://www.meetup.com/Bangalore-CNCF-Meetup
2 KubeCon/CloudNativeCon 2019 San Diego ● The largest CNCF Event Ever!! ● November 2019 at San Diego, US ● 12000+ Attendees ● 100+ of vendors ● 100+ announcements ● 300+ sessions/presentations ● CNCF: 20+ projects; 500+ members; 100+ big vendors ● In 2019 –> 200+ members joined ● Videos & Slides from the event: https://github.com/cloudyuga/kubecon19-NA#case%20studi es https://www.youtube.com/playlist?list=PLj6h78yzYM2ND s-iu8WU5fMxINxHXlien Top10 Announcements: 1. Helm 3 is Launched 2. AWS, Intuit and WeaveWorks Collaborate on Argo Flux 3. Confidential Computing for Kubernetes from Microsoft 4. Red Hat Launches CodeReady Workspaces 2.0 5. Mirantis Launches Kubernetes as a Service (KaaS) 6. O’Reilly Acquires Katacoda 7. Portworx Launches PX-Autopilot 8. Diamanti Announces Spektra Hybrid Cloud Solution 9. Buoyant Announces Dive, a SaaS Control Plane for Kubernetes 10.Rancher Extends Kubernetes to the Edge https://www.forbes.com/sites/janakirammsv/2019/11/24/10-most-interesting-ann ouncements-from-kubecon--cloudnativecon-2019/#38d26962583b
3 Whatwehavetoday.....? ● KubeCon 2019 San Diego Quick Recap of some case studies: (1) Cruise - Multi tenancy (2) Slack - DB Migration toVitess (3) Yahoo - Istio & k8s on Prem (4) Gusto - Moving a startup to k8s (5) Reddit - k8s in production (6) Tinder - Moving to k8s journey (7) Spotify - Envoy migration (8) Airbnb - Scaling 1000s of nodes in multicluster (9) Ebay - Setup Search on k8s (10) Uber - Kubernetes Migration Journey (11) Lyft – Large scale stateful workloads in k8s (12) GrapeUp - Continous deployments to Car (13) Planet Scale - DB Service on k8s (14) Sales Force - Enterprise Cloud (15) Goldman Sachs - k8s Policy & OPA implementation (16) Fidelity - Finance grade K8s with GitOps (17) FreddiMac – Istio Journey Brownfield to GreenField (18) Govt of Ottawa - Moving Legacy to Cloud (19) Min of Def. Israel - AI in k8s production (20) Dept of Def. US - Moved to k8s & Istio
4 Cruise – Multi tenancy ● Building autonomous vehicle ● Clusters – 12- 26 ● Large Cluser – 1000 nodes – 64 or 32 vCPU each ● Using Gsuite & GKE. Use tools Daytona, Vault, Krail, Isopod, Juno – proprietary ● Built a scalable multi tenant system with shared clusters mostly. Downtime & cost both low. ● Domain isolation – Environmental vs. Organizational. Project based namespaces. ● Permission isolation – RBAC & Google group; Secrets at application level; ● System isolation – machine, nodepool, cluster, network ● Resource isolation – Storage volumes & quotas ● Network isolation – Shared Tunnels (NAT gateways); Shared observability logs ● More here: https://www.youtube.com/watch?v=m19D9vZ1QFQ
5 Slack – DB Migration toVitess ● Migrating datasets to Vitess – Database clustering Mysql with horizontal scaling ● Storage 7.5+PB; Queries 53+ billion; ● Small shards vs. Big shards ; Durability through replication ● Fault tolerance & Isolation – blast radius minimum; isolated topologies ● Moved from Single Cell to multiplel cell ● More here: https://www.youtube.com/watch?v=aTItjMJE17c
6 Yahoo – Istio & k8s on Prem ● 990+ apps; 1k+ stateful apps; 18 prod clusters (9 prod & 9 canary); 7 DC; 2900+ nodes; 1.5M+ RPS on Ingress ● The orange blocks in picture Yahoo built. E,g: Authenz – identity service ; Auth Webhook; ● Mapped RBAC in Athenz domoain. ● Soft multi tenancy – isolated namesapces – some dedicated cluster only - ● Istio – Network transparent to applications – mutual TLS - ● K8s identity provider for every pod idenity – envoy RBAC – SPIFFE X509 - ● Proprietary tempalte and template engine – create expanded YAML ist – In CI/CD pipeline ● Developers are happy & Efficeint deployment mechanism in place. ● More here: https://www.youtube.com/watch?v=fEaVU1i-fOQ ●
7 Gusto – Moving a startup to k8s ● Gusto - 100K customers - Payroll management ● GoSpotcheck – 200K task / day ● A Heroku PaaS platform in place initially and moved to GKE evntually. AWS to Google cloud – Heroku to k8s ● 20 months total duration – started with 2 guys ● Containerizing existing apps started with Trail & Error! ● Use terraform for GKE cluster. Use Docker Hub extensively. ● Rails, Ambassador, Envoy, GRPC, SuperGloo, Harness for CD, No spinnaker, Login with Sumo from traditional env. ● Developers are happy - Moved a monolithic in 6 weeks window – very efficient ● Management happy - Saved from $110K+/month to $40K/month ● More here: https://www.youtube.com/watch?v=AqMxaxJsJKY
8 Reddit – k8s in production ● Home for discussion for web ● 330M+ monthly users; 16M+ posts/month ● 30K k8s users/community – r/kubernetes ● Org wide onboarding process initiated successfully. Empowered service owners to design their own. ● Moved to AWS Multi AZ from single AZ cluster for reliability and better traffic. Mirrored clusters prevented outage. ● CDN + LB handle unhealthy clusters. 19 clusters - OPA running in all. ● Spinnaker + Autogenerated Helm charts + templates based YAML + Terraform – to Sync clusters ● Dev env: Started with Skaffold + minikube. Now Remote dev clusters & starklark resource generator ● More here: https://www.youtube.com/watch?v=WTbIBqNcjoQ
9 Tinder – Moving to k8s journey ● Tinder is a app for Meeting new people ● Legacy : AWS instances + Puppet + prometheus. 30 source repo with various languages ● 2000 nodes + 18000 cores + 6 Control plane, 30K pods, 130K container ● 750K samples/sec Prometheus + 5TB day og ingetion AWS K8s ● Terraform + kube-aws + peered VPC + Endpoints ELB ● 1000+ Pods CoreDNS Daemonsets, One Envoy in AZ, Frontend TCP ELB, 2-6 sidecar per pod, Thanos ● Issues faced: ARP exhuastion, DNS timeouts, unbalanced load, etc. ● Planning multicluster deployment from CI/CD and also prometheus logs across clusters ● More here: https://www.youtube.com/watch?v=o3WXPXDuCSU
10 Spotify – Envoy migration ● Audio streaming platforms – 248M users – 8M+ RPS - 1200 microS - 3B+ playlists ● GCP – US, Europe, Asia ● Nginx & haproxy based environment moved to envoy ● Migration is transparent – shift slowly to Edge – almost zero downrime ● GCP LB + you need to know the traffic flow well for zero downtime ● Rate limiting & Auth schems needs to look ● Achieved automated migration with reliable strategy ● More here: https://www.youtube.com/watch?v=I_oa8l0j-yM
11 Airbnb – Scaling 1000s of nodes in multicluster ● Massive k8s adoption from Legacy – not greenfield; 1200 services ● 2.4K nodes at Airbnb now (Alibaba did a 10K nodes cluster) ● EC2, Chef, Terraform, inhouse Kubegen – Convert airbnb config to k8s config ● Etcd v3, not using KubeFed now. Kops, kubeadm, helm, Deploy < 10 min. ● Smartstack servicemesh - Equivalent to various VPC CNIs (AWS, Lyft). ● Service placement in random cluster; Up to 400 node cluster is usually used. ● Now --> 22 cluster types; 36 clusters; 7000+ nodes ● More here: https://www.youtube.com/watch?v=ay7NibpRAYU
12 Ebay – Setup Search on k8s ● Own search engine called Kasini. 1.4B+ listerners + 300K QPS/day ● 40% Data Center is for search purpose; Web , DB, Hadoop, AI ● 60+ production cluster, 2k+ node clusters – 160K+ pods, 30K+ hosts ● Selected K8s for speed, scale, flexible, Automate ● Matrics deployment Operator; Mutating Webhook; Multi cluster support; ● Performance exploration in comparison with Baremetal – Kernel, CPU turbo boost, Networking ipvlan ● More here: https://www.youtube.com/watch?v=chGN44Kqpd8 ●
13 Uber – Kubernetes Migration Journey ● Multi region & Multi zone – Baremetal Mesos to k8s movement – needed sidecar kind of pod ● 15M+ trips per day - 65 countries/700 cities - 1K microservices - 10K instances - 100K service containers per cluster - ● 1M+ batch containers - 35+ clusters - 5K+ builds per day - Cluster larger than 5K nodes – Kafka, Elastic, SPIRE ● Benchmarked: etcd 50K writes & 150K reads / sec & value size > 256 bytes - 40K pods in 8K nodes can in 30 sec. ● Peleton custom scheduler from Uber as k8s plugin. 1m/1k containers launched per day/sec. Also share for Mesos. ● Large volume of batch workload; stateless and batch on shared cluster; Distributed deep learning on GPU. ● More here: https://www.youtube.com/watch?v=91c3iUI2K7M
14 Lyft – Large Scale Stateful Workloads in k8s ● Flyte – Custom orchestrator for data pipeline, Data science jobs, ETL, Backup, Ride Simulations, ● Serverless, REST/gRPC, Multi tenant, Run on AWS & Google ● Flyte worklfow is k8s custom resource, Several other CRDs like Spark; ● 1000s of containers started /min, 10M+ containers / month, High API server load ~90/min, ● Use Resource Quota, Periodics GC of CRDs, reduce number of etcd writes, ● Performance – discoverbale task & Node affinity; Cost optimization – QoS, Bube-batch scheduler, ● Scaling beyond single cluster to meet SLO, Flyteadmin intelligently distributes workloads ● More here: https://www.youtube.com/watch?v=ECeVQoble0g
15 GrapeUp – Continous deployments to Car ● Tried, KubeEdge - https://kubeedge.io/en/, k3s - https://k3s.io/ and then modified model. ● Custom car controller - used digital twin patterns ● Rsocket (byte stream transport), Custom docker ima ges ● From Jenkin direct deployment to car using digital twin pattern ● More here https://www.youtube.com/watch?v=zmuOxFp3CAk
16 Planet Scale – DB Service on k8s ● Planetscale CNDb – Cloud native database – built on top of Vitess & MySQL. ● Journey - Inconsitent deployment to containers; stateful workload to stateless world ● Vitess – a great management system for large one distributed system – mainly SQL – but challenge to configure ● Wrote a Vitess Operator; etcd use this operator; Lots of autoprovisioning including Grafana plugin. ● Planetscale cluster CRDs + lots of meta infra built on, ● Prometheus, Grafana, Using proxy OpenResty instead of Nginx ● Looking Multi cloud clusters – master in AWS and replica in GCP, BYOD k8s, ● More here: https://www.youtube.com/watch?v=469NOldFOgw
17 SalesForce – Enterprise Cloud ● Private DC, BareMetal, Internal PKI with mTLS, OPA, RBAC ● Each tenant has namesapce, Internal secret management system ● Container image scanning for forensic ● Jsonnet in Git, Operator CRD, Spinnaker template, helm charts ● Kubernetes history visualization tool – Sloop. Its opensouce! ● TestBed to Canary to production – deployment model ● More here: https://www.youtube.com/watch?v=M5H4SrUM5BU
18 Goldman Sachs – K8s Policy & OPA implementation ● 12 clusters + Running on VM + 150 namespace per cluster ● Prometheus, Grafana, Ceph, Rook, CoreDNS, OPA ● Tenant at namespace level, Group Roles, RBAC, Quotas, NFSShares, Ngnix ● OPA controls --> Prohibit changes Admission Control & Provisioning with Resources ● 24 rules/namespace, culster state fix 5 min; Weekly maintenanceOffload all decisions to OPA - any env changes that will be handled. ● 5 min turnaround for global application policy implementation (version controlled) ● More here: https://www.youtube.com/watch?v=lYHr_UaHsYQ
19 Fidelity – Finance grade K8s with GitOps ● Hightly Regulated industry – Policy & Security ● FIDEKS – Custom Augmented k8s platform, Helm, Flux CD deply workload, ● Rollout of updates using GitOps – standard workflow with git repo. ● AWS, EKSManager, EKSctl, EKS Connect, ● Flux Helm operator, AD group, Jenkin, Cucumber, ● More here: https://www.youtube.com/watch?v=9xIG4lze7Uo
20 Freddie Mac – Istio Journey Brownfield to Greenfield ● Istio Journey ● • 600+ Application, Legacy apps, CI/CD pipelines, GitOps • VMWare, Jave, SQL, NoSQL, HW loadbalancer initially • Service side car mix and match, PKI, HA Autoscaling, traffic flow control • Istio – zero trust, DNS aware, m-TLS, Security as code, Cloud LBs, • Centralized compliance, Locality aware multi AZ k8s, Istio based not HWLB • Not ORG CA but intermediate CA and put in FIPS compliant HW not in memory • More here: https://www.youtube.com/watch?v=Rako7zKXquU
21 Govt of Ottawa – Moving Legacy to Cloud ● Support federal government workers, their concerns, etc. ● Need to Migrate old linux servers - 17K+ employees - 120+ business lines - 400+ apps (Java, .NET, perl) ● GitOps + FluxCD + Smart templates - Azure App servuce and VMs are still in use ● Looking forwad – Corporate container security standards; cloud governance; Automation tooling ● More here: https://www.youtube.com/watch?v=oBuOf-IvHWQ
22 MoD Israel – AI in k8s production ● Self Service Cloud experience for data scientists ● Multi tenancy with Openshift + AutoML setup + Ceph, PostgreSQL, JupyterHub, RabitMQ ● Working with several ML communities ● Open Data Hub – Reference Architecture for ML Service – Deploy several components using the Open data Hub operator ● CI/CD with production for AI workloads achieved ● More here: https://www.youtube.com/watch?v=LnXlZN8J6w0
23 DoD US – Moved to k8s & Istio ● Lots of silos in DoD. ● DoD DevSecOps is open source now, Centralized artifactory repo, zero trust security, ● Knative, OPA, EFK, ● STIG Complaince & OpenSCAP, Twistlock, Anchore, ● K8s is adopted in figher planes and running smooth!!! ● More here: https://www.youtube.com/watch?v=YjZ4AZ7hRM0
24 If you are looking for Latest Open source News Weekly, Click here: https://github.com/krishna-mk/Top-10-OpenSource-News-Weekly

Recommended

Google Anthos - Azure Stack - AWS Outposts :Comparison
Google Anthos - Azure Stack - AWS Outposts :ComparisonGoogle Anthos - Azure Stack - AWS Outposts :Comparison
Google Anthos - Azure Stack - AWS Outposts :ComparisonKrishna-Kumar
 
KubeCon + CloudNativeCon Barcelona and Shanghai 2019 - Highlights
KubeCon + CloudNativeCon Barcelona and Shanghai 2019 - HighlightsKubeCon + CloudNativeCon Barcelona and Shanghai 2019 - Highlights
KubeCon + CloudNativeCon Barcelona and Shanghai 2019 - HighlightsKrishna-Kumar
 
Serverless and Design Patterns In GCP
Serverless and Design Patterns In GCPServerless and Design Patterns In GCP
Serverless and Design Patterns In GCPOliver Fierro
 
How Kubernetes helps Devops
How Kubernetes helps DevopsHow Kubernetes helps Devops
How Kubernetes helps DevopsSreenivas Makam
 
Introduction to kubernetes
Introduction to kubernetesIntroduction to kubernetes
Introduction to kubernetesGabriel Carro
 
Google Cloud Platform and Kubernetes
Google Cloud Platform and KubernetesGoogle Cloud Platform and Kubernetes
Google Cloud Platform and KubernetesKasper Nissen
 
GKE Tip Series - Usage Metering
GKE Tip Series - Usage MeteringGKE Tip Series - Usage Metering
GKE Tip Series - Usage MeteringSreenivas Makam
 
Introduction to Kubernetes and Google Container Engine (GKE)
Introduction to Kubernetes and Google Container Engine (GKE)Introduction to Kubernetes and Google Container Engine (GKE)
Introduction to Kubernetes and Google Container Engine (GKE)Opsta
 

Recommended

Google Anthos - Azure Stack - AWS Outposts :Comparison
Google Anthos - Azure Stack - AWS Outposts :ComparisonGoogle Anthos - Azure Stack - AWS Outposts :Comparison
Google Anthos - Azure Stack - AWS Outposts :ComparisonKrishna-Kumar
 
KubeCon + CloudNativeCon Barcelona and Shanghai 2019 - Highlights
KubeCon + CloudNativeCon Barcelona and Shanghai 2019 - HighlightsKubeCon + CloudNativeCon Barcelona and Shanghai 2019 - Highlights
KubeCon + CloudNativeCon Barcelona and Shanghai 2019 - HighlightsKrishna-Kumar
 
Serverless and Design Patterns In GCP
Serverless and Design Patterns In GCPServerless and Design Patterns In GCP
Serverless and Design Patterns In GCPOliver Fierro
 
How Kubernetes helps Devops
How Kubernetes helps DevopsHow Kubernetes helps Devops
How Kubernetes helps DevopsSreenivas Makam
 
Introduction to kubernetes
Introduction to kubernetesIntroduction to kubernetes
Introduction to kubernetesGabriel Carro
 
Google Cloud Platform and Kubernetes
Google Cloud Platform and KubernetesGoogle Cloud Platform and Kubernetes
Google Cloud Platform and KubernetesKasper Nissen
 
GKE Tip Series - Usage Metering
GKE Tip Series - Usage MeteringGKE Tip Series - Usage Metering
GKE Tip Series - Usage MeteringSreenivas Makam
 
Introduction to Kubernetes and Google Container Engine (GKE)
Introduction to Kubernetes and Google Container Engine (GKE)Introduction to Kubernetes and Google Container Engine (GKE)
Introduction to Kubernetes and Google Container Engine (GKE)Opsta
 
Episode 2: Deploying Kubernetes at Scale
Episode 2: Deploying Kubernetes at ScaleEpisode 2: Deploying Kubernetes at Scale
Episode 2: Deploying Kubernetes at ScaleMesosphere Inc.
 
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...Edureka!
 
Kubernetes Application Deployment with Helm - A beginner Guide!
Kubernetes Application Deployment with Helm - A beginner Guide!Kubernetes Application Deployment with Helm - A beginner Guide!
Kubernetes Application Deployment with Helm - A beginner Guide!Krishna-Kumar
 
Designing Cloud Native Applications with Kubernetes
Designing Cloud Native Applications with KubernetesDesigning Cloud Native Applications with Kubernetes
Designing Cloud Native Applications with KubernetesBilgin Ibryam
 
Cloud Native Java Development Patterns
Cloud Native Java Development PatternsCloud Native Java Development Patterns
Cloud Native Java Development PatternsBilgin Ibryam
 
7 - Monitoring Kubernetes with Elastic
7 - Monitoring Kubernetes with Elastic7 - Monitoring Kubernetes with Elastic
7 - Monitoring Kubernetes with ElasticKangaroot
 
Google Cloud - Stand Out Features
Google Cloud - Stand Out FeaturesGoogle Cloud - Stand Out Features
Google Cloud - Stand Out FeaturesGDG Cloud Bengaluru
 
Scale into Multi-Cloud with Containers
Scale into Multi-Cloud with ContainersScale into Multi-Cloud with Containers
Scale into Multi-Cloud with ContainersImesh Gunaratne
 
Anthos Security: modernize your security posture for cloud native applications
Anthos Security: modernize your security posture for cloud native applicationsAnthos Security: modernize your security posture for cloud native applications
Anthos Security: modernize your security posture for cloud native applicationsGreg Castle
 
5 - Hands-on Kubernetes Workshop:
5 - Hands-on Kubernetes Workshop:5 - Hands-on Kubernetes Workshop:
5 - Hands-on Kubernetes Workshop:Kangaroot
 
Anthos Application Modernization Platform
Anthos Application Modernization PlatformAnthos Application Modernization Platform
Anthos Application Modernization PlatformGDG Cloud Bengaluru
 
An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...
An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...
An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...SlideTeam
 
Episode 1: Building Kubernetes-as-a-Service
Episode 1: Building Kubernetes-as-a-ServiceEpisode 1: Building Kubernetes-as-a-Service
Episode 1: Building Kubernetes-as-a-ServiceMesosphere Inc.
 
CNCF Introduction - Feb 2018
CNCF Introduction - Feb 2018CNCF Introduction - Feb 2018
CNCF Introduction - Feb 2018Krishna-Kumar
 
3 - Delen Private Bank: FOSS adventures in a Cloud Native world
3 - Delen Private Bank: FOSS adventures in a Cloud Native world3 - Delen Private Bank: FOSS adventures in a Cloud Native world
3 - Delen Private Bank: FOSS adventures in a Cloud Native worldKangaroot
 
Kubernetes - A Rising Hero
Kubernetes - A Rising HeroKubernetes - A Rising Hero
Kubernetes - A Rising HeroHuynh Thai Bao
 
쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)
쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)
쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)충섭 김
 
Kubernetes Networking - Sreenivas Makam - Google - CC18
Kubernetes Networking - Sreenivas Makam - Google - CC18Kubernetes Networking - Sreenivas Makam - Google - CC18
Kubernetes Networking - Sreenivas Makam - Google - CC18CodeOps Technologies LLP
 
Operating Kubernetes at Scale (Australia Presentation)
Operating Kubernetes at Scale (Australia Presentation)Operating Kubernetes at Scale (Australia Presentation)
Operating Kubernetes at Scale (Australia Presentation)Mesosphere Inc.
 
TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...
TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...
TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...tdc-globalcode
 
Get Your Head in the Cloud - Lessons in GPU Computing with Schlumberger
Get Your Head in the Cloud - Lessons in GPU Computing with SchlumbergerGet Your Head in the Cloud - Lessons in GPU Computing with Schlumberger
Get Your Head in the Cloud - Lessons in GPU Computing with Schlumbergerinside-BigData.com
 
Netflix oss season 1 episode 3
Netflix oss season 1 episode 3 Netflix oss season 1 episode 3
Netflix oss season 1 episode 3 Ruslan Meshenberg
 

More Related Content

What's hot

Episode 2: Deploying Kubernetes at Scale
Episode 2: Deploying Kubernetes at ScaleEpisode 2: Deploying Kubernetes at Scale
Episode 2: Deploying Kubernetes at ScaleMesosphere Inc.
 
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...Edureka!
 
Kubernetes Application Deployment with Helm - A beginner Guide!
Kubernetes Application Deployment with Helm - A beginner Guide!Kubernetes Application Deployment with Helm - A beginner Guide!
Kubernetes Application Deployment with Helm - A beginner Guide!Krishna-Kumar
 
Designing Cloud Native Applications with Kubernetes
Designing Cloud Native Applications with KubernetesDesigning Cloud Native Applications with Kubernetes
Designing Cloud Native Applications with KubernetesBilgin Ibryam
 
Cloud Native Java Development Patterns
Cloud Native Java Development PatternsCloud Native Java Development Patterns
Cloud Native Java Development PatternsBilgin Ibryam
 
7 - Monitoring Kubernetes with Elastic
7 - Monitoring Kubernetes with Elastic7 - Monitoring Kubernetes with Elastic
7 - Monitoring Kubernetes with ElasticKangaroot
 
Google Cloud - Stand Out Features
Google Cloud - Stand Out FeaturesGoogle Cloud - Stand Out Features
Google Cloud - Stand Out FeaturesGDG Cloud Bengaluru
 
Scale into Multi-Cloud with Containers
Scale into Multi-Cloud with ContainersScale into Multi-Cloud with Containers
Scale into Multi-Cloud with ContainersImesh Gunaratne
 
Anthos Security: modernize your security posture for cloud native applications
Anthos Security: modernize your security posture for cloud native applicationsAnthos Security: modernize your security posture for cloud native applications
Anthos Security: modernize your security posture for cloud native applicationsGreg Castle
 
5 - Hands-on Kubernetes Workshop:
5 - Hands-on Kubernetes Workshop:5 - Hands-on Kubernetes Workshop:
5 - Hands-on Kubernetes Workshop:Kangaroot
 
Anthos Application Modernization Platform
Anthos Application Modernization PlatformAnthos Application Modernization Platform
Anthos Application Modernization PlatformGDG Cloud Bengaluru
 
An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...
An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...
An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...SlideTeam
 
Episode 1: Building Kubernetes-as-a-Service
Episode 1: Building Kubernetes-as-a-ServiceEpisode 1: Building Kubernetes-as-a-Service
Episode 1: Building Kubernetes-as-a-ServiceMesosphere Inc.
 
CNCF Introduction - Feb 2018
CNCF Introduction - Feb 2018CNCF Introduction - Feb 2018
CNCF Introduction - Feb 2018Krishna-Kumar
 
3 - Delen Private Bank: FOSS adventures in a Cloud Native world
3 - Delen Private Bank: FOSS adventures in a Cloud Native world3 - Delen Private Bank: FOSS adventures in a Cloud Native world
3 - Delen Private Bank: FOSS adventures in a Cloud Native worldKangaroot
 
Kubernetes - A Rising Hero
Kubernetes - A Rising HeroKubernetes - A Rising Hero
Kubernetes - A Rising HeroHuynh Thai Bao
 
쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)
쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)
쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)충섭 김
 
Kubernetes Networking - Sreenivas Makam - Google - CC18
Kubernetes Networking - Sreenivas Makam - Google - CC18Kubernetes Networking - Sreenivas Makam - Google - CC18
Kubernetes Networking - Sreenivas Makam - Google - CC18CodeOps Technologies LLP
 
Operating Kubernetes at Scale (Australia Presentation)
Operating Kubernetes at Scale (Australia Presentation)Operating Kubernetes at Scale (Australia Presentation)
Operating Kubernetes at Scale (Australia Presentation)Mesosphere Inc.
 
TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...
TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...
TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...tdc-globalcode
 

What's hot (20)

Episode 2: Deploying Kubernetes at Scale
Episode 2: Deploying Kubernetes at ScaleEpisode 2: Deploying Kubernetes at Scale
Episode 2: Deploying Kubernetes at Scale
 
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
 
Kubernetes Application Deployment with Helm - A beginner Guide!
Kubernetes Application Deployment with Helm - A beginner Guide!Kubernetes Application Deployment with Helm - A beginner Guide!
Kubernetes Application Deployment with Helm - A beginner Guide!
 
Designing Cloud Native Applications with Kubernetes
Designing Cloud Native Applications with KubernetesDesigning Cloud Native Applications with Kubernetes
Designing Cloud Native Applications with Kubernetes
 
Cloud Native Java Development Patterns
Cloud Native Java Development PatternsCloud Native Java Development Patterns
Cloud Native Java Development Patterns
 
7 - Monitoring Kubernetes with Elastic
7 - Monitoring Kubernetes with Elastic7 - Monitoring Kubernetes with Elastic
7 - Monitoring Kubernetes with Elastic
 
Google Cloud - Stand Out Features
Google Cloud - Stand Out FeaturesGoogle Cloud - Stand Out Features
Google Cloud - Stand Out Features
 
Scale into Multi-Cloud with Containers
Scale into Multi-Cloud with ContainersScale into Multi-Cloud with Containers
Scale into Multi-Cloud with Containers
 
Anthos Security: modernize your security posture for cloud native applications
Anthos Security: modernize your security posture for cloud native applicationsAnthos Security: modernize your security posture for cloud native applications
Anthos Security: modernize your security posture for cloud native applications
 
5 - Hands-on Kubernetes Workshop:
5 - Hands-on Kubernetes Workshop:5 - Hands-on Kubernetes Workshop:
5 - Hands-on Kubernetes Workshop:
 
Anthos Application Modernization Platform
Anthos Application Modernization PlatformAnthos Application Modernization Platform
Anthos Application Modernization Platform
 
An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...
An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...
An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...
 
Episode 1: Building Kubernetes-as-a-Service
Episode 1: Building Kubernetes-as-a-ServiceEpisode 1: Building Kubernetes-as-a-Service
Episode 1: Building Kubernetes-as-a-Service
 
CNCF Introduction - Feb 2018
CNCF Introduction - Feb 2018CNCF Introduction - Feb 2018
CNCF Introduction - Feb 2018
 
3 - Delen Private Bank: FOSS adventures in a Cloud Native world
3 - Delen Private Bank: FOSS adventures in a Cloud Native world3 - Delen Private Bank: FOSS adventures in a Cloud Native world
3 - Delen Private Bank: FOSS adventures in a Cloud Native world
 
Kubernetes - A Rising Hero
Kubernetes - A Rising HeroKubernetes - A Rising Hero
Kubernetes - A Rising Hero
 
쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)
쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)
쿠버네티스를 이용한 기능 브랜치별 테스트 서버 만들기 (GitOps CI/CD)
 
Kubernetes Networking - Sreenivas Makam - Google - CC18
Kubernetes Networking - Sreenivas Makam - Google - CC18Kubernetes Networking - Sreenivas Makam - Google - CC18
Kubernetes Networking - Sreenivas Makam - Google - CC18
 
Operating Kubernetes at Scale (Australia Presentation)
Operating Kubernetes at Scale (Australia Presentation)Operating Kubernetes at Scale (Australia Presentation)
Operating Kubernetes at Scale (Australia Presentation)
 
TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...
TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...
TDC2017 | São Paulo - Trilha Cloud Computing How we figured out we had a SRE ...
 

Similar to Cloud Native Use Cases from KubeCon 2019

Get Your Head in the Cloud - Lessons in GPU Computing with Schlumberger
Get Your Head in the Cloud - Lessons in GPU Computing with SchlumbergerGet Your Head in the Cloud - Lessons in GPU Computing with Schlumberger
Get Your Head in the Cloud - Lessons in GPU Computing with Schlumbergerinside-BigData.com
 
Netflix oss season 1 episode 3
Netflix oss season 1 episode 3 Netflix oss season 1 episode 3
Netflix oss season 1 episode 3 Ruslan Meshenberg
 
Kubernetes extensibility: crd & operators
Kubernetes extensibility: crd & operators Kubernetes extensibility: crd & operators
Kubernetes extensibility: crd & operators Giacomo Tirabassi
 
Kubernetes extensibility: CRDs & Operators
Kubernetes extensibility: CRDs & OperatorsKubernetes extensibility: CRDs & Operators
Kubernetes extensibility: CRDs & OperatorsSIGHUP
 
USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a Month
USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a MonthUSENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a Month
USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a MonthNicolas Brousse
 
OSDC 2018 | Three years running containers with Kubernetes in Production by T...
OSDC 2018 | Three years running containers with Kubernetes in Production by T...OSDC 2018 | Three years running containers with Kubernetes in Production by T...
OSDC 2018 | Three years running containers with Kubernetes in Production by T...NETWAYS
 
SaltConf14 - Eric johnson, Google - Orchestrating Google Compute Engine with ...
SaltConf14 - Eric johnson, Google - Orchestrating Google Compute Engine with ...SaltConf14 - Eric johnson, Google - Orchestrating Google Compute Engine with ...
SaltConf14 - Eric johnson, Google - Orchestrating Google Compute Engine with ...SaltStack
 
K8s@Pollfish - Can you run a monolith on k8s?
K8s@Pollfish - Can you run a monolith on k8s?K8s@Pollfish - Can you run a monolith on k8s?
K8s@Pollfish - Can you run a monolith on k8s?George Paraskevas
 
[WSO2Con USA 2018] Deploying Applications in K8S and Docker
[WSO2Con USA 2018] Deploying Applications in K8S and Docker[WSO2Con USA 2018] Deploying Applications in K8S and Docker
[WSO2Con USA 2018] Deploying Applications in K8S and DockerWSO2
 
Kubernetes Forum Seoul 2019: Re-architecting Data Platform with Kubernetes
Kubernetes Forum Seoul 2019: Re-architecting Data Platform with KubernetesKubernetes Forum Seoul 2019: Re-architecting Data Platform with Kubernetes
Kubernetes Forum Seoul 2019: Re-architecting Data Platform with KubernetesSeungYong Oh
 
Paris Container Day 2016 : Kubernetes, votre assurance-vie pour le cloud (Go...
Paris Container Day 2016 : Kubernetes, votre assurance-vie pour le cloud (Go... Paris Container Day 2016 : Kubernetes, votre assurance-vie pour le cloud (Go...
Paris Container Day 2016 : Kubernetes, votre assurance-vie pour le cloud (Go...Publicis Sapient Engineering
 
Kubernetes 1.12 Update and Container Security with Liz Rice
Kubernetes 1.12 Update and Container Security with Liz RiceKubernetes 1.12 Update and Container Security with Liz Rice
Kubernetes 1.12 Update and Container Security with Liz RiceCloudOps2005
 
[WSO2Con Asia 2018] Deploying Applications in K8S and Docker
[WSO2Con Asia 2018] Deploying Applications in K8S and Docker[WSO2Con Asia 2018] Deploying Applications in K8S and Docker
[WSO2Con Asia 2018] Deploying Applications in K8S and DockerWSO2
 
Mattia Gandolfi - Improving utilization and portability with Containers and C...
Mattia Gandolfi - Improving utilization and portability with Containers and C...Mattia Gandolfi - Improving utilization and portability with Containers and C...
Mattia Gandolfi - Improving utilization and portability with Containers and C...Codemotion
 
Como creamos QuestDB Cloud, un SaaS basado en Kubernetes alrededor de QuestDB...
Como creamos QuestDB Cloud, un SaaS basado en Kubernetes alrededor de QuestDB...Como creamos QuestDB Cloud, un SaaS basado en Kubernetes alrededor de QuestDB...
Como creamos QuestDB Cloud, un SaaS basado en Kubernetes alrededor de QuestDB...javier ramirez
 
[WSO2Con EU 2018] Deploying Applications in K8S and Docker
[WSO2Con EU 2018] Deploying Applications in K8S and Docker[WSO2Con EU 2018] Deploying Applications in K8S and Docker
[WSO2Con EU 2018] Deploying Applications in K8S and DockerWSO2
 
Google Cloud - Scale With A Smile (Dec 2014)
Google Cloud - Scale With A Smile (Dec 2014)Google Cloud - Scale With A Smile (Dec 2014)
Google Cloud - Scale With A Smile (Dec 2014)Ido Green
 
Kubernetes Multitenancy Karl Isenberg - KubeCon NA 2019
Kubernetes Multitenancy Karl Isenberg - KubeCon NA 2019Kubernetes Multitenancy Karl Isenberg - KubeCon NA 2019
Kubernetes Multitenancy Karl Isenberg - KubeCon NA 2019Karl Isenberg
 
Cloud Native Camel Design Patterns
Cloud Native Camel Design PatternsCloud Native Camel Design Patterns
Cloud Native Camel Design PatternsBilgin Ibryam
 

Similar to Cloud Native Use Cases from KubeCon 2019 (20)

Get Your Head in the Cloud - Lessons in GPU Computing with Schlumberger
Get Your Head in the Cloud - Lessons in GPU Computing with SchlumbergerGet Your Head in the Cloud - Lessons in GPU Computing with Schlumberger
Get Your Head in the Cloud - Lessons in GPU Computing with Schlumberger
 
Netflix oss season 1 episode 3
Netflix oss season 1 episode 3 Netflix oss season 1 episode 3
Netflix oss season 1 episode 3
 
Kubernetes extensibility: crd & operators
Kubernetes extensibility: crd & operators Kubernetes extensibility: crd & operators
Kubernetes extensibility: crd & operators
 
Kubernetes extensibility: CRDs & Operators
Kubernetes extensibility: CRDs & OperatorsKubernetes extensibility: CRDs & Operators
Kubernetes extensibility: CRDs & Operators
 
USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a Month
USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a MonthUSENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a Month
USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a Month
 
OSDC 2018 | Three years running containers with Kubernetes in Production by T...
OSDC 2018 | Three years running containers with Kubernetes in Production by T...OSDC 2018 | Three years running containers with Kubernetes in Production by T...
OSDC 2018 | Three years running containers with Kubernetes in Production by T...
 
SaltConf14 - Eric johnson, Google - Orchestrating Google Compute Engine with ...
SaltConf14 - Eric johnson, Google - Orchestrating Google Compute Engine with ...SaltConf14 - Eric johnson, Google - Orchestrating Google Compute Engine with ...
SaltConf14 - Eric johnson, Google - Orchestrating Google Compute Engine with ...
 
K8s@Pollfish - Can you run a monolith on k8s?
K8s@Pollfish - Can you run a monolith on k8s?K8s@Pollfish - Can you run a monolith on k8s?
K8s@Pollfish - Can you run a monolith on k8s?
 
[WSO2Con USA 2018] Deploying Applications in K8S and Docker
[WSO2Con USA 2018] Deploying Applications in K8S and Docker[WSO2Con USA 2018] Deploying Applications in K8S and Docker
[WSO2Con USA 2018] Deploying Applications in K8S and Docker
 
Kubernetes Forum Seoul 2019: Re-architecting Data Platform with Kubernetes
Kubernetes Forum Seoul 2019: Re-architecting Data Platform with KubernetesKubernetes Forum Seoul 2019: Re-architecting Data Platform with Kubernetes
Kubernetes Forum Seoul 2019: Re-architecting Data Platform with Kubernetes
 
Paris Container Day 2016 : Kubernetes, votre assurance-vie pour le cloud (Go...
Paris Container Day 2016 : Kubernetes, votre assurance-vie pour le cloud (Go... Paris Container Day 2016 : Kubernetes, votre assurance-vie pour le cloud (Go...
Paris Container Day 2016 : Kubernetes, votre assurance-vie pour le cloud (Go...
 
Kubernetes 1.12 Update and Container Security with Liz Rice
Kubernetes 1.12 Update and Container Security with Liz RiceKubernetes 1.12 Update and Container Security with Liz Rice
Kubernetes 1.12 Update and Container Security with Liz Rice
 
[WSO2Con Asia 2018] Deploying Applications in K8S and Docker
[WSO2Con Asia 2018] Deploying Applications in K8S and Docker[WSO2Con Asia 2018] Deploying Applications in K8S and Docker
[WSO2Con Asia 2018] Deploying Applications in K8S and Docker
 
Mattia Gandolfi - Improving utilization and portability with Containers and C...
Mattia Gandolfi - Improving utilization and portability with Containers and C...Mattia Gandolfi - Improving utilization and portability with Containers and C...
Mattia Gandolfi - Improving utilization and portability with Containers and C...
 
Como creamos QuestDB Cloud, un SaaS basado en Kubernetes alrededor de QuestDB...
Como creamos QuestDB Cloud, un SaaS basado en Kubernetes alrededor de QuestDB...Como creamos QuestDB Cloud, un SaaS basado en Kubernetes alrededor de QuestDB...
Como creamos QuestDB Cloud, un SaaS basado en Kubernetes alrededor de QuestDB...
 
[WSO2Con EU 2018] Deploying Applications in K8S and Docker
[WSO2Con EU 2018] Deploying Applications in K8S and Docker[WSO2Con EU 2018] Deploying Applications in K8S and Docker
[WSO2Con EU 2018] Deploying Applications in K8S and Docker
 
KONG-APIGateway.pptx
KONG-APIGateway.pptxKONG-APIGateway.pptx
KONG-APIGateway.pptx
 
Google Cloud - Scale With A Smile (Dec 2014)
Google Cloud - Scale With A Smile (Dec 2014)Google Cloud - Scale With A Smile (Dec 2014)
Google Cloud - Scale With A Smile (Dec 2014)
 
Kubernetes Multitenancy Karl Isenberg - KubeCon NA 2019
Kubernetes Multitenancy Karl Isenberg - KubeCon NA 2019Kubernetes Multitenancy Karl Isenberg - KubeCon NA 2019
Kubernetes Multitenancy Karl Isenberg - KubeCon NA 2019
 
Cloud Native Camel Design Patterns
Cloud Native Camel Design PatternsCloud Native Camel Design Patterns
Cloud Native Camel Design Patterns
 

More from Krishna-Kumar

SODA Ambassadors & Community Ecosystem
SODA Ambassadors & Community EcosystemSODA Ambassadors & Community Ecosystem
SODA Ambassadors & Community EcosystemKrishna-Kumar
 
Open Source Building Career and Competency
Open Source Building Career and CompetencyOpen Source Building Career and Competency
Open Source Building Career and CompetencyKrishna-Kumar
 
CCICI CIP 1.0 Testbed - Security access implementation and reference - v1.0
CCICI CIP 1.0 Testbed - Security access implementation and reference - v1.0CCICI CIP 1.0 Testbed - Security access implementation and reference - v1.0
CCICI CIP 1.0 Testbed - Security access implementation and reference - v1.0Krishna-Kumar
 
Cloud interoperability and open standards for digital india open infrasummit
Cloud interoperability and open standards for digital india open infrasummitCloud interoperability and open standards for digital india open infrasummit
Cloud interoperability and open standards for digital india open infrasummitKrishna-Kumar
 
Google Cloud Container Security Quick Overview
Google Cloud Container Security Quick OverviewGoogle Cloud Container Security Quick Overview
Google Cloud Container Security Quick OverviewKrishna-Kumar
 
Introduction to ieee standards development - Bangalore Section
Introduction to ieee standards development - Bangalore SectionIntroduction to ieee standards development - Bangalore Section
Introduction to ieee standards development - Bangalore SectionKrishna-Kumar
 
IEEE Standards Association - Introduction
IEEE Standards Association - IntroductionIEEE Standards Association - Introduction
IEEE Standards Association - IntroductionKrishna-Kumar
 
IoTShow.in Bangalore 2019 - a Recap on 'IoT and Edge' Talk.
IoTShow.in Bangalore 2019 - a Recap on 'IoT and Edge' Talk.IoTShow.in Bangalore 2019 - a Recap on 'IoT and Edge' Talk.
IoTShow.in Bangalore 2019 - a Recap on 'IoT and Edge' Talk.Krishna-Kumar
 
Kubecon seattle 2018 recap - Application Deployment aspects
Kubecon seattle 2018 recap - Application Deployment aspectsKubecon seattle 2018 recap - Application Deployment aspects
Kubecon seattle 2018 recap - Application Deployment aspectsKrishna-Kumar
 
Open Source Edge Computing Platforms - Overview
Open Source Edge Computing Platforms - OverviewOpen Source Edge Computing Platforms - Overview
Open Source Edge Computing Platforms - OverviewKrishna-Kumar
 
cncf overview and building edge computing using kubernetes
cncf overview and building edge computing using kubernetescncf overview and building edge computing using kubernetes
cncf overview and building edge computing using kubernetesKrishna-Kumar
 
Evolution of containers to kubernetes
Evolution of containers to kubernetesEvolution of containers to kubernetes
Evolution of containers to kubernetesKrishna-Kumar
 
My Ladakh Marathon Run 2018
My Ladakh Marathon Run 2018My Ladakh Marathon Run 2018
My Ladakh Marathon Run 2018Krishna-Kumar
 
Containers and workload security an overview
Containers and workload security an overview Containers and workload security an overview
Containers and workload security an overview Krishna-Kumar
 
Now yoga - a study on where why what how
Now yoga - a study on where why what howNow yoga - a study on where why what how
Now yoga - a study on where why what howKrishna-Kumar
 
KubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup BangaloreKubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup BangaloreKrishna-Kumar
 
Yoga for confused IT engineer
Yoga for confused IT engineerYoga for confused IT engineer
Yoga for confused IT engineerKrishna-Kumar
 
Why kubernetes for Serverless (FaaS)
Why kubernetes for Serverless (FaaS)Why kubernetes for Serverless (FaaS)
Why kubernetes for Serverless (FaaS)Krishna-Kumar
 
Cloud, Big Data, IoT, ML - together to build a real world use case!
Cloud, Big Data, IoT, ML - together to build a real world use case!Cloud, Big Data, IoT, ML - together to build a real world use case!
Cloud, Big Data, IoT, ML - together to build a real world use case!Krishna-Kumar
 
cross cloud inter-operability with iPaaS and serverless for Telco cloud SDN/NFV
cross cloud inter-operability with iPaaS and serverless for Telco cloud SDN/NFVcross cloud inter-operability with iPaaS and serverless for Telco cloud SDN/NFV
cross cloud inter-operability with iPaaS and serverless for Telco cloud SDN/NFVKrishna-Kumar
 

More from Krishna-Kumar (20)

SODA Ambassadors & Community Ecosystem
SODA Ambassadors & Community EcosystemSODA Ambassadors & Community Ecosystem
SODA Ambassadors & Community Ecosystem
 
Open Source Building Career and Competency
Open Source Building Career and CompetencyOpen Source Building Career and Competency
Open Source Building Career and Competency
 
CCICI CIP 1.0 Testbed - Security access implementation and reference - v1.0
CCICI CIP 1.0 Testbed - Security access implementation and reference - v1.0CCICI CIP 1.0 Testbed - Security access implementation and reference - v1.0
CCICI CIP 1.0 Testbed - Security access implementation and reference - v1.0
 
Cloud interoperability and open standards for digital india open infrasummit
Cloud interoperability and open standards for digital india open infrasummitCloud interoperability and open standards for digital india open infrasummit
Cloud interoperability and open standards for digital india open infrasummit
 
Google Cloud Container Security Quick Overview
Google Cloud Container Security Quick OverviewGoogle Cloud Container Security Quick Overview
Google Cloud Container Security Quick Overview
 
Introduction to ieee standards development - Bangalore Section
Introduction to ieee standards development - Bangalore SectionIntroduction to ieee standards development - Bangalore Section
Introduction to ieee standards development - Bangalore Section
 
IEEE Standards Association - Introduction
IEEE Standards Association - IntroductionIEEE Standards Association - Introduction
IEEE Standards Association - Introduction
 
IoTShow.in Bangalore 2019 - a Recap on 'IoT and Edge' Talk.
IoTShow.in Bangalore 2019 - a Recap on 'IoT and Edge' Talk.IoTShow.in Bangalore 2019 - a Recap on 'IoT and Edge' Talk.
IoTShow.in Bangalore 2019 - a Recap on 'IoT and Edge' Talk.
 
Kubecon seattle 2018 recap - Application Deployment aspects
Kubecon seattle 2018 recap - Application Deployment aspectsKubecon seattle 2018 recap - Application Deployment aspects
Kubecon seattle 2018 recap - Application Deployment aspects
 
Open Source Edge Computing Platforms - Overview
Open Source Edge Computing Platforms - OverviewOpen Source Edge Computing Platforms - Overview
Open Source Edge Computing Platforms - Overview
 
cncf overview and building edge computing using kubernetes
cncf overview and building edge computing using kubernetescncf overview and building edge computing using kubernetes
cncf overview and building edge computing using kubernetes
 
Evolution of containers to kubernetes
Evolution of containers to kubernetesEvolution of containers to kubernetes
Evolution of containers to kubernetes
 
My Ladakh Marathon Run 2018
My Ladakh Marathon Run 2018My Ladakh Marathon Run 2018
My Ladakh Marathon Run 2018
 
Containers and workload security an overview
Containers and workload security an overview Containers and workload security an overview
Containers and workload security an overview
 
Now yoga - a study on where why what how
Now yoga - a study on where why what howNow yoga - a study on where why what how
Now yoga - a study on where why what how
 
KubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup BangaloreKubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
 
Yoga for confused IT engineer
Yoga for confused IT engineerYoga for confused IT engineer
Yoga for confused IT engineer
 
Why kubernetes for Serverless (FaaS)
Why kubernetes for Serverless (FaaS)Why kubernetes for Serverless (FaaS)
Why kubernetes for Serverless (FaaS)
 
Cloud, Big Data, IoT, ML - together to build a real world use case!
Cloud, Big Data, IoT, ML - together to build a real world use case!Cloud, Big Data, IoT, ML - together to build a real world use case!
Cloud, Big Data, IoT, ML - together to build a real world use case!
 
cross cloud inter-operability with iPaaS and serverless for Telco cloud SDN/NFV
cross cloud inter-operability with iPaaS and serverless for Telco cloud SDN/NFVcross cloud inter-operability with iPaaS and serverless for Telco cloud SDN/NFV
cross cloud inter-operability with iPaaS and serverless for Telco cloud SDN/NFV
 

Recently uploaded

Salesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantSalesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantAxelRicardoTrocheRiq
 
Building Real-Time Data Pipelines: Stream & Batch Processing workshop Slide
Building Real-Time Data Pipelines: Stream & Batch Processing workshop SlideBuilding Real-Time Data Pipelines: Stream & Batch Processing workshop Slide
Building Real-Time Data Pipelines: Stream & Batch Processing workshop SlideChristina Lin
 
Cloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackCloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackVICTOR MAESTRE RAMIREZ
 
Project Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationProject Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationkaushalgiri8080
 
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...MyIntelliSource, Inc.
 
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio, Inc.
 
why an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdfwhy an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdfjoe51371421
 
TECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service providerTECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service providermohitmore19
 
Unlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language ModelsUnlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language Modelsaagamshah0812
 
Hand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxHand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxbodapatigopi8531
 
The Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdfThe Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdfkalichargn70th171
 
Asset Management Software - Infographic
Asset Management Software - InfographicAsset Management Software - Infographic
Asset Management Software - InfographicHr365.us smith
 
chapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptchapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptkotipi9215
 
A Secure and Reliable Document Management System is Essential.docx
A Secure and Reliable Document Management System is Essential.docxA Secure and Reliable Document Management System is Essential.docx
A Secure and Reliable Document Management System is Essential.docxComplianceQuest1
 
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...ICS
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comFatema Valibhai
 
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfLearn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfkalichargn70th171
 
DNT_Corporate presentation know about us
DNT_Corporate presentation know about usDNT_Corporate presentation know about us
DNT_Corporate presentation know about usDynamic Netsoft
 
Introduction to Decentralized Applications (dApps)
Introduction to Decentralized Applications (dApps)Introduction to Decentralized Applications (dApps)
Introduction to Decentralized Applications (dApps)Intelisync
 
5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdfWave PLM
 

Recently uploaded (20)

Salesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantSalesforce Certified Field Service Consultant
Salesforce Certified Field Service Consultant
 
Building Real-Time Data Pipelines: Stream & Batch Processing workshop Slide
Building Real-Time Data Pipelines: Stream & Batch Processing workshop SlideBuilding Real-Time Data Pipelines: Stream & Batch Processing workshop Slide
Building Real-Time Data Pipelines: Stream & Batch Processing workshop Slide
 
Cloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackCloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStack
 
Project Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationProject Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanation
 
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
 
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
 
why an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdfwhy an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdf
 
TECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service providerTECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service provider
 
Unlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language ModelsUnlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language Models
 
Hand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxHand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptx
 
The Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdfThe Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdf
 
Asset Management Software - Infographic
Asset Management Software - InfographicAsset Management Software - Infographic
Asset Management Software - Infographic
 
chapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptchapter--4-software-project-planning.ppt
chapter--4-software-project-planning.ppt
 
A Secure and Reliable Document Management System is Essential.docx
A Secure and Reliable Document Management System is Essential.docxA Secure and Reliable Document Management System is Essential.docx
A Secure and Reliable Document Management System is Essential.docx
 
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.com
 
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfLearn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
 
DNT_Corporate presentation know about us
DNT_Corporate presentation know about usDNT_Corporate presentation know about us
DNT_Corporate presentation know about us
 
Introduction to Decentralized Applications (dApps)
Introduction to Decentralized Applications (dApps)Introduction to Decentralized Applications (dApps)
Introduction to Decentralized Applications (dApps)
 
5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf
 

Cloud Native Use Cases from KubeCon 2019

  • 1. 1 Cloud Native Use Cases From KubeCon 2019 San Diego – A Recap by Krishna Kumar, https://www.meetup.com/Bangalore-CNCF-Meetup
  • 2. 2 KubeCon/CloudNativeCon 2019 San Diego ● The largest CNCF Event Ever!! ● November 2019 at San Diego, US ● 12000+ Attendees ● 100+ of vendors ● 100+ announcements ● 300+ sessions/presentations ● CNCF: 20+ projects; 500+ members; 100+ big vendors ● In 2019 –> 200+ members joined ● Videos & Slides from the event: https://github.com/cloudyuga/kubecon19-NA#case%20studi es https://www.youtube.com/playlist?list=PLj6h78yzYM2ND s-iu8WU5fMxINxHXlien Top10 Announcements: 1. Helm 3 is Launched 2. AWS, Intuit and WeaveWorks Collaborate on Argo Flux 3. Confidential Computing for Kubernetes from Microsoft 4. Red Hat Launches CodeReady Workspaces 2.0 5. Mirantis Launches Kubernetes as a Service (KaaS) 6. O’Reilly Acquires Katacoda 7. Portworx Launches PX-Autopilot 8. Diamanti Announces Spektra Hybrid Cloud Solution 9. Buoyant Announces Dive, a SaaS Control Plane for Kubernetes 10.Rancher Extends Kubernetes to the Edge https://www.forbes.com/sites/janakirammsv/2019/11/24/10-most-interesting-ann ouncements-from-kubecon--cloudnativecon-2019/#38d26962583b
  • 3. 3 Whatwehavetoday.....? ● KubeCon 2019 San Diego Quick Recap of some case studies: (1) Cruise - Multi tenancy (2) Slack - DB Migration toVitess (3) Yahoo - Istio & k8s on Prem (4) Gusto - Moving a startup to k8s (5) Reddit - k8s in production (6) Tinder - Moving to k8s journey (7) Spotify - Envoy migration (8) Airbnb - Scaling 1000s of nodes in multicluster (9) Ebay - Setup Search on k8s (10) Uber - Kubernetes Migration Journey (11) Lyft – Large scale stateful workloads in k8s (12) GrapeUp - Continous deployments to Car (13) Planet Scale - DB Service on k8s (14) Sales Force - Enterprise Cloud (15) Goldman Sachs - k8s Policy & OPA implementation (16) Fidelity - Finance grade K8s with GitOps (17) FreddiMac – Istio Journey Brownfield to GreenField (18) Govt of Ottawa - Moving Legacy to Cloud (19) Min of Def. Israel - AI in k8s production (20) Dept of Def. US - Moved to k8s & Istio
  • 4. 4 Cruise – Multi tenancy ● Building autonomous vehicle ● Clusters – 12- 26 ● Large Cluser – 1000 nodes – 64 or 32 vCPU each ● Using Gsuite & GKE. Use tools Daytona, Vault, Krail, Isopod, Juno – proprietary ● Built a scalable multi tenant system with shared clusters mostly. Downtime & cost both low. ● Domain isolation – Environmental vs. Organizational. Project based namespaces. ● Permission isolation – RBAC & Google group; Secrets at application level; ● System isolation – machine, nodepool, cluster, network ● Resource isolation – Storage volumes & quotas ● Network isolation – Shared Tunnels (NAT gateways); Shared observability logs ● More here: https://www.youtube.com/watch?v=m19D9vZ1QFQ
  • 5. 5 Slack – DB Migration toVitess ● Migrating datasets to Vitess – Database clustering Mysql with horizontal scaling ● Storage 7.5+PB; Queries 53+ billion; ● Small shards vs. Big shards ; Durability through replication ● Fault tolerance & Isolation – blast radius minimum; isolated topologies ● Moved from Single Cell to multiplel cell ● More here: https://www.youtube.com/watch?v=aTItjMJE17c
  • 6. 6 Yahoo – Istio & k8s on Prem ● 990+ apps; 1k+ stateful apps; 18 prod clusters (9 prod & 9 canary); 7 DC; 2900+ nodes; 1.5M+ RPS on Ingress ● The orange blocks in picture Yahoo built. E,g: Authenz – identity service ; Auth Webhook; ● Mapped RBAC in Athenz domoain. ● Soft multi tenancy – isolated namesapces – some dedicated cluster only - ● Istio – Network transparent to applications – mutual TLS - ● K8s identity provider for every pod idenity – envoy RBAC – SPIFFE X509 - ● Proprietary tempalte and template engine – create expanded YAML ist – In CI/CD pipeline ● Developers are happy & Efficeint deployment mechanism in place. ● More here: https://www.youtube.com/watch?v=fEaVU1i-fOQ ●
  • 7. 7 Gusto – Moving a startup to k8s ● Gusto - 100K customers - Payroll management ● GoSpotcheck – 200K task / day ● A Heroku PaaS platform in place initially and moved to GKE evntually. AWS to Google cloud – Heroku to k8s ● 20 months total duration – started with 2 guys ● Containerizing existing apps started with Trail & Error! ● Use terraform for GKE cluster. Use Docker Hub extensively. ● Rails, Ambassador, Envoy, GRPC, SuperGloo, Harness for CD, No spinnaker, Login with Sumo from traditional env. ● Developers are happy - Moved a monolithic in 6 weeks window – very efficient ● Management happy - Saved from $110K+/month to $40K/month ● More here: https://www.youtube.com/watch?v=AqMxaxJsJKY
  • 8. 8 Reddit – k8s in production ● Home for discussion for web ● 330M+ monthly users; 16M+ posts/month ● 30K k8s users/community – r/kubernetes ● Org wide onboarding process initiated successfully. Empowered service owners to design their own. ● Moved to AWS Multi AZ from single AZ cluster for reliability and better traffic. Mirrored clusters prevented outage. ● CDN + LB handle unhealthy clusters. 19 clusters - OPA running in all. ● Spinnaker + Autogenerated Helm charts + templates based YAML + Terraform – to Sync clusters ● Dev env: Started with Skaffold + minikube. Now Remote dev clusters & starklark resource generator ● More here: https://www.youtube.com/watch?v=WTbIBqNcjoQ
  • 9. 9 Tinder – Moving to k8s journey ● Tinder is a app for Meeting new people ● Legacy : AWS instances + Puppet + prometheus. 30 source repo with various languages ● 2000 nodes + 18000 cores + 6 Control plane, 30K pods, 130K container ● 750K samples/sec Prometheus + 5TB day og ingetion AWS K8s ● Terraform + kube-aws + peered VPC + Endpoints ELB ● 1000+ Pods CoreDNS Daemonsets, One Envoy in AZ, Frontend TCP ELB, 2-6 sidecar per pod, Thanos ● Issues faced: ARP exhuastion, DNS timeouts, unbalanced load, etc. ● Planning multicluster deployment from CI/CD and also prometheus logs across clusters ● More here: https://www.youtube.com/watch?v=o3WXPXDuCSU
  • 10. 10 Spotify – Envoy migration ● Audio streaming platforms – 248M users – 8M+ RPS - 1200 microS - 3B+ playlists ● GCP – US, Europe, Asia ● Nginx & haproxy based environment moved to envoy ● Migration is transparent – shift slowly to Edge – almost zero downrime ● GCP LB + you need to know the traffic flow well for zero downtime ● Rate limiting & Auth schems needs to look ● Achieved automated migration with reliable strategy ● More here: https://www.youtube.com/watch?v=I_oa8l0j-yM
  • 11. 11 Airbnb – Scaling 1000s of nodes in multicluster ● Massive k8s adoption from Legacy – not greenfield; 1200 services ● 2.4K nodes at Airbnb now (Alibaba did a 10K nodes cluster) ● EC2, Chef, Terraform, inhouse Kubegen – Convert airbnb config to k8s config ● Etcd v3, not using KubeFed now. Kops, kubeadm, helm, Deploy < 10 min. ● Smartstack servicemesh - Equivalent to various VPC CNIs (AWS, Lyft). ● Service placement in random cluster; Up to 400 node cluster is usually used. ● Now --> 22 cluster types; 36 clusters; 7000+ nodes ● More here: https://www.youtube.com/watch?v=ay7NibpRAYU
  • 12. 12 Ebay – Setup Search on k8s ● Own search engine called Kasini. 1.4B+ listerners + 300K QPS/day ● 40% Data Center is for search purpose; Web , DB, Hadoop, AI ● 60+ production cluster, 2k+ node clusters – 160K+ pods, 30K+ hosts ● Selected K8s for speed, scale, flexible, Automate ● Matrics deployment Operator; Mutating Webhook; Multi cluster support; ● Performance exploration in comparison with Baremetal – Kernel, CPU turbo boost, Networking ipvlan ● More here: https://www.youtube.com/watch?v=chGN44Kqpd8 ●
  • 13. 13 Uber – Kubernetes Migration Journey ● Multi region & Multi zone – Baremetal Mesos to k8s movement – needed sidecar kind of pod ● 15M+ trips per day - 65 countries/700 cities - 1K microservices - 10K instances - 100K service containers per cluster - ● 1M+ batch containers - 35+ clusters - 5K+ builds per day - Cluster larger than 5K nodes – Kafka, Elastic, SPIRE ● Benchmarked: etcd 50K writes & 150K reads / sec & value size > 256 bytes - 40K pods in 8K nodes can in 30 sec. ● Peleton custom scheduler from Uber as k8s plugin. 1m/1k containers launched per day/sec. Also share for Mesos. ● Large volume of batch workload; stateless and batch on shared cluster; Distributed deep learning on GPU. ● More here: https://www.youtube.com/watch?v=91c3iUI2K7M
  • 14. 14 Lyft – Large Scale Stateful Workloads in k8s ● Flyte – Custom orchestrator for data pipeline, Data science jobs, ETL, Backup, Ride Simulations, ● Serverless, REST/gRPC, Multi tenant, Run on AWS & Google ● Flyte worklfow is k8s custom resource, Several other CRDs like Spark; ● 1000s of containers started /min, 10M+ containers / month, High API server load ~90/min, ● Use Resource Quota, Periodics GC of CRDs, reduce number of etcd writes, ● Performance – discoverbale task & Node affinity; Cost optimization – QoS, Bube-batch scheduler, ● Scaling beyond single cluster to meet SLO, Flyteadmin intelligently distributes workloads ● More here: https://www.youtube.com/watch?v=ECeVQoble0g
  • 15. 15 GrapeUp – Continous deployments to Car ● Tried, KubeEdge - https://kubeedge.io/en/, k3s - https://k3s.io/ and then modified model. ● Custom car controller - used digital twin patterns ● Rsocket (byte stream transport), Custom docker ima ges ● From Jenkin direct deployment to car using digital twin pattern ● More here https://www.youtube.com/watch?v=zmuOxFp3CAk
  • 16. 16 Planet Scale – DB Service on k8s ● Planetscale CNDb – Cloud native database – built on top of Vitess & MySQL. ● Journey - Inconsitent deployment to containers; stateful workload to stateless world ● Vitess – a great management system for large one distributed system – mainly SQL – but challenge to configure ● Wrote a Vitess Operator; etcd use this operator; Lots of autoprovisioning including Grafana plugin. ● Planetscale cluster CRDs + lots of meta infra built on, ● Prometheus, Grafana, Using proxy OpenResty instead of Nginx ● Looking Multi cloud clusters – master in AWS and replica in GCP, BYOD k8s, ● More here: https://www.youtube.com/watch?v=469NOldFOgw
  • 17. 17 SalesForce – Enterprise Cloud ● Private DC, BareMetal, Internal PKI with mTLS, OPA, RBAC ● Each tenant has namesapce, Internal secret management system ● Container image scanning for forensic ● Jsonnet in Git, Operator CRD, Spinnaker template, helm charts ● Kubernetes history visualization tool – Sloop. Its opensouce! ● TestBed to Canary to production – deployment model ● More here: https://www.youtube.com/watch?v=M5H4SrUM5BU
  • 18. 18 Goldman Sachs – K8s Policy & OPA implementation ● 12 clusters + Running on VM + 150 namespace per cluster ● Prometheus, Grafana, Ceph, Rook, CoreDNS, OPA ● Tenant at namespace level, Group Roles, RBAC, Quotas, NFSShares, Ngnix ● OPA controls --> Prohibit changes Admission Control & Provisioning with Resources ● 24 rules/namespace, culster state fix 5 min; Weekly maintenanceOffload all decisions to OPA - any env changes that will be handled. ● 5 min turnaround for global application policy implementation (version controlled) ● More here: https://www.youtube.com/watch?v=lYHr_UaHsYQ
  • 19. 19 Fidelity – Finance grade K8s with GitOps ● Hightly Regulated industry – Policy & Security ● FIDEKS – Custom Augmented k8s platform, Helm, Flux CD deply workload, ● Rollout of updates using GitOps – standard workflow with git repo. ● AWS, EKSManager, EKSctl, EKS Connect, ● Flux Helm operator, AD group, Jenkin, Cucumber, ● More here: https://www.youtube.com/watch?v=9xIG4lze7Uo
  • 20. 20 Freddie Mac – Istio Journey Brownfield to Greenfield ● Istio Journey ● • 600+ Application, Legacy apps, CI/CD pipelines, GitOps • VMWare, Jave, SQL, NoSQL, HW loadbalancer initially • Service side car mix and match, PKI, HA Autoscaling, traffic flow control • Istio – zero trust, DNS aware, m-TLS, Security as code, Cloud LBs, • Centralized compliance, Locality aware multi AZ k8s, Istio based not HWLB • Not ORG CA but intermediate CA and put in FIPS compliant HW not in memory • More here: https://www.youtube.com/watch?v=Rako7zKXquU
  • 21. 21 Govt of Ottawa – Moving Legacy to Cloud ● Support federal government workers, their concerns, etc. ● Need to Migrate old linux servers - 17K+ employees - 120+ business lines - 400+ apps (Java, .NET, perl) ● GitOps + FluxCD + Smart templates - Azure App servuce and VMs are still in use ● Looking forwad – Corporate container security standards; cloud governance; Automation tooling ● More here: https://www.youtube.com/watch?v=oBuOf-IvHWQ
  • 22. 22 MoD Israel – AI in k8s production ● Self Service Cloud experience for data scientists ● Multi tenancy with Openshift + AutoML setup + Ceph, PostgreSQL, JupyterHub, RabitMQ ● Working with several ML communities ● Open Data Hub – Reference Architecture for ML Service – Deploy several components using the Open data Hub operator ● CI/CD with production for AI workloads achieved ● More here: https://www.youtube.com/watch?v=LnXlZN8J6w0
  • 23. 23 DoD US – Moved to k8s & Istio ● Lots of silos in DoD. ● DoD DevSecOps is open source now, Centralized artifactory repo, zero trust security, ● Knative, OPA, EFK, ● STIG Complaince & OpenSCAP, Twistlock, Anchore, ● K8s is adopted in figher planes and running smooth!!! ● More here: https://www.youtube.com/watch?v=YjZ4AZ7hRM0
  • 24. 24 If you are looking for Latest Open source News Weekly, Click here: https://github.com/krishna-mk/Top-10-OpenSource-News-Weekly