Pierre Mavro, profile picture
Uploaded byPierre Mavro
PDF, PPTX163 views

Criteo meetup - S.R.E Tech Talk

Pierre Mavro presented on the NoSQL team's migration from managing stateful applications with Chef to using Kubernetes. The team was managing over 200 logical clusters across over 4,500 servers with high availability and scalability needs. Using Chef tightly coupled applications to hardware, making maintenance difficult. Kubernetes allows separating applications from hardware lifecycles for better SLOs and SLAs. The team integrated Kubernetes, running distinct clusters for each NoSQL technology, with Consul and Prometheus for monitoring. Lessons included determining when to use StatefulSets versus Deployments, configuring resources and probes correctly, and testing workflows to understand Kubernetes complexity.

Embed presentation

Download as PDF, PPTX
Pierre Mavro – Staff SRE Lead - @deimosfr Meetup S.R.E Tech Talk – Criteo Paris 05/28/2019 Kubernetes at NoSQL (Team)
2 • 🎂 +4y Criteo – Staff SRE Lead BirdSight.co – Co-Founder 📖 Author of MariaDB High Performance Distributed software & infra lover deimosfr pmavro Pierre Mavro
3 • The mission statement of the team is to provide NoSQL databases and support solution to answer several kind of requests: • Volatile Key/Value cache • Key/value cache with persistence and replication • Highly available, very scalable and persisted storage • Scalable full text search storage We take care of non relational storage systems, including: • Memcached • Couchbase • Cassandra • Elasticsearch NoSQL Team: Mission
4 • Other numbers • Team members: 4 • Number of Datacenters: 7 • Total servers: +4500 • Max Couchbase QPS: 5.8M • Max Memcached QPS: 87M • Avg Couchbase + Memcached total RAM used: +600TB 201 83 2408 1971 Number of servers per techno Cassandra ElasticSearch Memcached Couchbase NoSQL Team: world wide numbers
Where we started from Where we are now What we learned Why we moved to Kubernetes for stateful apps
1. Where we started from
7 • • We’re managing +200 logical clusters • Pets VS Cattle: treating statefull apps as cattle is hard • Hardware failures matches up to 5% of the total nodes (40k nodes) • On NoSQL perimeter: 11% • Our needs and challenges: • High availability • High scaling • Low latency • Self service Context: management statefull apps at NoSQL
8 • Context: configuration management All the stack is managed by Chef: Pros Automation everywhere Single entrypoint for everything Teams are responsible of their coobooks layer Cons Software too tight to 1 machine Hardware lifecycle = software lifecycle Application OS Hardware Chefmanagement
9 • • Commission & decommission • SLA protection during maintenance • Application cluster lifecycle is complex to achieve when software is too tight to hardware • Maintenance requires manual interventions • Too much time spent on recuring tasks Scaling issues
2. Where we are now
11 • Solution: use a scheduler for application management The application is not managed by Chef anymore Pros Automation still everywhere Hardware lifecycle != software lifecycle Reduced hard link between hardware and soft Better SLO and SLA Cons Added a new element in the stack Application Kubernetes OS Hardware Chefmanagement
12 • • Chef: deploys Kubernetes • Split Kubernetes clusters per techno (couchbase, memcached…) • Consul: we’re running +35k agents -> consul-k8s (thx Hashicorp) • Prometheus: operator to integrate our Prometheus federation • Fluentd operator to forward logs to Elasticsearch • No network overlay for production workload • Local storage for I/O performance Integration to our existing stack
3. Lessons learned
14 • Questions to answer • Should I use Deployment or statefulset? • Requests/Limits • Collocation? Statefulset?
15 • What should you use? • Need of named instances? • Need graceful rolling restart? • LivenessProbe + ReadinessProbe • Hooks: PostStart + PreStop • TerminationGracePeriodSeconds not too low • Canary? (Partition) • HostPath or Local Volume? • Toleration: unreachable + not-ready • What kind of node downtime my application can allow? Statefulset useful parameters
16 • Know how your application works and behavior with expected workload Determine if Statefulset or Deployment better suits your needs Create an Operator to manage all manual operation (if needed) Run it as a Statefulset to understand complexity in Kubernetes and adapt if needed Don’t overcomplex things Workflow to avoid failure
Thank you! Q&A session

More Related Content

PDF
Security model for a remote company
byPierre Mavro
 
PDF
Cloud Native User Group: Prometheus Day 2
bysmalltown
 
PDF
Kubernetes Summit 2019 - Harden Your Kubernetes Cluster
bysmalltown
 
PDF
CDK Meetup: Rule the World through IaC
bysmalltown
 
PDF
Kubernetes Summit 2018 - Kubernetes: Stateless -> Stateful
bysmalltown
 
PDF
Secrets management vault cncf meetup
byJuraj Hantak
 
PDF
Kubernetes - Security Journey
byJerry Jalava
 
PPTX
Security best practices for kubernetes deployment
byMichael Cherny
 
Security model for a remote company
byPierre Mavro
 
Cloud Native User Group: Prometheus Day 2
bysmalltown
 
Kubernetes Summit 2019 - Harden Your Kubernetes Cluster
bysmalltown
 
CDK Meetup: Rule the World through IaC
bysmalltown
 
Kubernetes Summit 2018 - Kubernetes: Stateless -> Stateful
bysmalltown
 
Secrets management vault cncf meetup
byJuraj Hantak
 
Kubernetes - Security Journey
byJerry Jalava
 
Security best practices for kubernetes deployment
byMichael Cherny
 

What's hot

PDF
Scaling Microservices with Kubernetes
byDeivid Hahn Fração
 
PDF
What is Google Cloud Good For at DevFestInspire 2021
byRobert John
 
PDF
Deploying Kubernetes without scaring off your security team - KubeCon 2017
byMajor Hayden
 
PPTX
Kubernetes security
bySaiyam Pathak
 
PDF
AgileTW Feat. DevOpsTW: 維運 Kubernetes 的兩三事
bysmalltown
 
PPTX
Luca Relandini - Microservices and containers networking: Contiv, deep dive a...
byCodemotion
 
PDF
DCEU 18: Docker Containers in a Serverless World
byDocker, Inc.
 
PDF
Keystone at openstack multi sites
byVietnam Open Infrastructure User Group
 
PDF
DCSF19 Deploying Istio as an Ingress Controller
byDocker, Inc.
 
PPTX
Kata Container - The Security of VM and The Speed of Container | Yuntong Jin
byVietnam Open Infrastructure User Group
 
PDF
How to accelerate docker adoption with a simple and powerful user experience
byDocker, Inc.
 
PPTX
Kubernetes Security
byKarthik Gaekwad
 
PDF
Kubernetes User Group: 維運 Kubernetes 的兩三事
bysmalltown
 
PPTX
Meetup 12-12-2017 - Application Isolation on Kubernetes
bydtoledo67
 
PDF
OPNFV & OpenStack
byopenstackindia
 
PDF
Moby and Kubernetes entitlements
byDocker, Inc.
 
PDF
Kubernetes - how to orchestrate containers
byinovex GmbH
 
PPTX
Role of sdn controllers in open stack
byopenstackindia
 
PPTX
How OpenStack is Built - Anton Weiss - OpenStack Day Israel 2016
byCloud Native Day Tel Aviv
 
PPTX
Introducing LinuxKit
byDocker, Inc.
 
Scaling Microservices with Kubernetes
byDeivid Hahn Fração
 
What is Google Cloud Good For at DevFestInspire 2021
byRobert John
 
Deploying Kubernetes without scaring off your security team - KubeCon 2017
byMajor Hayden
 
Kubernetes security
bySaiyam Pathak
 
AgileTW Feat. DevOpsTW: 維運 Kubernetes 的兩三事
bysmalltown
 
Luca Relandini - Microservices and containers networking: Contiv, deep dive a...
byCodemotion
 
DCEU 18: Docker Containers in a Serverless World
byDocker, Inc.
 
Keystone at openstack multi sites
byVietnam Open Infrastructure User Group
 
DCSF19 Deploying Istio as an Ingress Controller
byDocker, Inc.
 
Kata Container - The Security of VM and The Speed of Container | Yuntong Jin
byVietnam Open Infrastructure User Group
 
How to accelerate docker adoption with a simple and powerful user experience
byDocker, Inc.
 
Kubernetes Security
byKarthik Gaekwad
 
Kubernetes User Group: 維運 Kubernetes 的兩三事
bysmalltown
 
Meetup 12-12-2017 - Application Isolation on Kubernetes
bydtoledo67
 
OPNFV & OpenStack
byopenstackindia
 
Moby and Kubernetes entitlements
byDocker, Inc.
 
Kubernetes - how to orchestrate containers
byinovex GmbH
 
Role of sdn controllers in open stack
byopenstackindia
 
How OpenStack is Built - Anton Weiss - OpenStack Day Israel 2016
byCloud Native Day Tel Aviv
 
Introducing LinuxKit
byDocker, Inc.
 

Similar to Criteo meetup - S.R.E Tech Talk

PPTX
Sergey Dzyuban "To Build My Own Cloud with Blackjack…"
byFwdays
 
PDF
Pilot Hadoop Towards 2500 Nodes and Cluster Redundancy
byStuart Pook
 
PDF
Lunar Way and the Cloud Native "stack"
byKasper Nissen
 
PPTX
Docker-N-Beyond
bysantosh007
 
PDF
Deploying your first application with Kubernetes
byOVHcloud
 
PDF
Download full Managing Kubernetes operating Kubernetes clusters in the real w...
byduduhasikul
 
PPT
Google does containers: Hello Kubernetes - Steve Wong and Vladimir Vivien - D...
by{code} by Dell EMC
 
PDF
From CoreOS to Kubernetes and Concourse CI
byDenis Izmaylov
 
PDF
Introduction To Apache Mesos
byTimothy St. Clair
 
PDF
stackconf 2024 | Orchestrating Resilient Data: Harnessing the Strength of Kub...
byNETWAYS
 
PDF
Postgres on Kubernetes - Dos and Donts.pdf
byChristoph Engelbert
 
PPTX
Infrastructure design for Kubernetes
byGuillaume Morini
 
PDF
Kubernetes Architecture - beyond a black box - Part 1
byHao H. Zhang
 
PDF
kubernetes_largescale_system_design_optimization
byRaviShankar KS
 
PDF
Kubernetes Up Running Dive Into The Future Of Infrastructure Third Edition 3r...
byluvoszugrav
 
PDF
2016 10-26 docker meetup - kubernetes on open stack
byAmrita Prasad
 
PPTX
TRAINING_ABOUT_KUBERNETES_Nguyen_Si_Nhan.pptx
bynhannguyensi
 
PDF
Managing Kubernetes operating Kubernetes clusters in the real world First Edi...
byjayedmonotbp
 
PDF
Micro services may not be the best idea
bySamuel ROZE
 
PDF
Overcoming (organizational) scalability issues in your Prometheus ecosystem
byQAware GmbH
 
Sergey Dzyuban "To Build My Own Cloud with Blackjack…"
byFwdays
 
Pilot Hadoop Towards 2500 Nodes and Cluster Redundancy
byStuart Pook
 
Lunar Way and the Cloud Native "stack"
byKasper Nissen
 
Docker-N-Beyond
bysantosh007
 
Deploying your first application with Kubernetes
byOVHcloud
 
Download full Managing Kubernetes operating Kubernetes clusters in the real w...
byduduhasikul
 
Google does containers: Hello Kubernetes - Steve Wong and Vladimir Vivien - D...
by{code} by Dell EMC
 
From CoreOS to Kubernetes and Concourse CI
byDenis Izmaylov
 
Introduction To Apache Mesos
byTimothy St. Clair
 
stackconf 2024 | Orchestrating Resilient Data: Harnessing the Strength of Kub...
byNETWAYS
 
Postgres on Kubernetes - Dos and Donts.pdf
byChristoph Engelbert
 
Infrastructure design for Kubernetes
byGuillaume Morini
 
Kubernetes Architecture - beyond a black box - Part 1
byHao H. Zhang
 
kubernetes_largescale_system_design_optimization
byRaviShankar KS
 
Kubernetes Up Running Dive Into The Future Of Infrastructure Third Edition 3r...
byluvoszugrav
 
2016 10-26 docker meetup - kubernetes on open stack
byAmrita Prasad
 
TRAINING_ABOUT_KUBERNETES_Nguyen_Si_Nhan.pptx
bynhannguyensi
 
Managing Kubernetes operating Kubernetes clusters in the real world First Edi...
byjayedmonotbp
 
Micro services may not be the best idea
bySamuel ROZE
 
Overcoming (organizational) scalability issues in your Prometheus ecosystem
byQAware GmbH
 

More from Pierre Mavro

PDF
Compass digital ocean’s customer advisory group 2021_10
byPierre Mavro
 
PDF
Traefik on Kubernetes at MySocialApp (CNCF Paris Meetup)
byPierre Mavro
 
PDF
Couchbase live 2016
byPierre Mavro
 
PDF
Ansible meetup-0915
byPierre Mavro
 
PDF
Drbd
byPierre Mavro
 
PDF
Mariadb mysql avancé
byPierre Mavro
 
ODP
Puppet slides
byPierre Mavro
 
Compass digital ocean’s customer advisory group 2021_10
byPierre Mavro
 
Traefik on Kubernetes at MySocialApp (CNCF Paris Meetup)
byPierre Mavro
 
Couchbase live 2016
byPierre Mavro
 
Ansible meetup-0915
byPierre Mavro
 
Drbd
byPierre Mavro
 
Mariadb mysql avancé
byPierre Mavro
 
Puppet slides
byPierre Mavro
 

Recently uploaded

PPTX
How CFD Simulations Support Sustainable Data Center Design Optimization
byWeb Synergies
 
PPTX
Pitch Deck for MEVIA OS - No Apps, Infinite, Decentralized Operating System
byDr. Edwin Hernandez
 
PPTX
Prime Teams – Real-Time Employee Monitoring & Project Management Software
byPrime Teams
 
PPTX
‘Analyzing Application Logs Using AI’ Webinar
byTier1 app
 
PPTX
Data Skills for Business Analysts: What You Need to Succeed
byScott W. Ambler
 
PDF
ACE Aarhus February 2026: Atlassian news
byDanielEriksen5
 
PDF
Prompt Engineering vs Content Engineering vs RAG.pdf
byVineet Sharma
 
PDF
Lost Android Phone Recovery_ Steps That Work Fast.pdf
byIsabella Reed
 
PDF
On Demand Massage Therapist Booking App Development
byV3CUBE TECHNOLABS
 
PDF
Versnel innovatie met GitHub Enterprise - Rick Smit GitHub
byDelta-N
 
PPTX
Topic: Introduction to Storage Elements Flip-Flops.pptx
byhn486916
 
PDF
openstack_operations_slides_version1.3_pp.pdf
byssuser47d511
 
PDF
Ready, Set, REST! Introducing MySQL's Built-In REST Service
byMiguel Araújo
 
DOCX
A Comprehensive Guide To Buy Verified PayPal Accounts_.docx
bysmartusapva.com
 
PDF
Mastering Zero-Allocation Parsers: A Deep Dive into High-Performance C#
byVineet Sharma
 
PPTX
‘Analyzing Application Logs Using AI’ Webinar
byTier1 app
 
PPTX
40m_wAIred_DigitalPlatformRabobank_10022026.pptx
bySimonedeGijt
 
PDF
MySQL Routing Guidelines: Designing Smarter Query Routing Together
byMiguel Araújo
 
PDF
Langchain4J – An Introduction for Impatient Developers
byJuarez Junior
 
PDF
The Modern Architect's Codex: Design Patterns in .NET 9
byVineet Sharma
 
How CFD Simulations Support Sustainable Data Center Design Optimization
byWeb Synergies
 
Pitch Deck for MEVIA OS - No Apps, Infinite, Decentralized Operating System
byDr. Edwin Hernandez
 
Prime Teams – Real-Time Employee Monitoring & Project Management Software
byPrime Teams
 
‘Analyzing Application Logs Using AI’ Webinar
byTier1 app
 
Data Skills for Business Analysts: What You Need to Succeed
byScott W. Ambler
 
ACE Aarhus February 2026: Atlassian news
byDanielEriksen5
 
Prompt Engineering vs Content Engineering vs RAG.pdf
byVineet Sharma
 
Lost Android Phone Recovery_ Steps That Work Fast.pdf
byIsabella Reed
 
On Demand Massage Therapist Booking App Development
byV3CUBE TECHNOLABS
 
Versnel innovatie met GitHub Enterprise - Rick Smit GitHub
byDelta-N
 
Topic: Introduction to Storage Elements Flip-Flops.pptx
byhn486916
 
openstack_operations_slides_version1.3_pp.pdf
byssuser47d511
 
Ready, Set, REST! Introducing MySQL's Built-In REST Service
byMiguel Araújo
 
A Comprehensive Guide To Buy Verified PayPal Accounts_.docx
bysmartusapva.com
 
Mastering Zero-Allocation Parsers: A Deep Dive into High-Performance C#
byVineet Sharma
 
‘Analyzing Application Logs Using AI’ Webinar
byTier1 app
 
40m_wAIred_DigitalPlatformRabobank_10022026.pptx
bySimonedeGijt
 
MySQL Routing Guidelines: Designing Smarter Query Routing Together
byMiguel Araújo
 
Langchain4J – An Introduction for Impatient Developers
byJuarez Junior
 
The Modern Architect's Codex: Design Patterns in .NET 9
byVineet Sharma
 

Criteo meetup - S.R.E Tech Talk

  • 1.
    Pierre Mavro –Staff SRE Lead - @deimosfr Meetup S.R.E Tech Talk – Criteo Paris 05/28/2019 Kubernetes at NoSQL (Team)
  • 2.
    2 • 🎂 +4yCriteo – Staff SRE Lead BirdSight.co – Co-Founder 📖 Author of MariaDB High Performance Distributed software & infra lover deimosfr pmavro Pierre Mavro
  • 3.
    3 • The missionstatement of the team is to provide NoSQL databases and support solution to answer several kind of requests: • Volatile Key/Value cache • Key/value cache with persistence and replication • Highly available, very scalable and persisted storage • Scalable full text search storage We take care of non relational storage systems, including: • Memcached • Couchbase • Cassandra • Elasticsearch NoSQL Team: Mission
  • 4.
    4 • Other numbers •Team members: 4 • Number of Datacenters: 7 • Total servers: +4500 • Max Couchbase QPS: 5.8M • Max Memcached QPS: 87M • Avg Couchbase + Memcached total RAM used: +600TB 201 83 2408 1971 Number of servers per techno Cassandra ElasticSearch Memcached Couchbase NoSQL Team: world wide numbers
  • 5.
    Where we started from Wherewe are now What we learned Why we moved to Kubernetes for stateful apps
  • 6.
    1. Where westarted from
  • 7.
    7 • • We’remanaging +200 logical clusters • Pets VS Cattle: treating statefull apps as cattle is hard • Hardware failures matches up to 5% of the total nodes (40k nodes) • On NoSQL perimeter: 11% • Our needs and challenges: • High availability • High scaling • Low latency • Self service Context: management statefull apps at NoSQL
  • 8.
    8 • Context: configurationmanagement All the stack is managed by Chef: Pros Automation everywhere Single entrypoint for everything Teams are responsible of their coobooks layer Cons Software too tight to 1 machine Hardware lifecycle = software lifecycle Application OS Hardware Chefmanagement
  • 9.
    9 • • Commission& decommission • SLA protection during maintenance • Application cluster lifecycle is complex to achieve when software is too tight to hardware • Maintenance requires manual interventions • Too much time spent on recuring tasks Scaling issues
  • 10.
    2. Where weare now
  • 11.
    11 • Solution: usea scheduler for application management The application is not managed by Chef anymore Pros Automation still everywhere Hardware lifecycle != software lifecycle Reduced hard link between hardware and soft Better SLO and SLA Cons Added a new element in the stack Application Kubernetes OS Hardware Chefmanagement
  • 12.
    12 • • Chef:deploys Kubernetes • Split Kubernetes clusters per techno (couchbase, memcached…) • Consul: we’re running +35k agents -> consul-k8s (thx Hashicorp) • Prometheus: operator to integrate our Prometheus federation • Fluentd operator to forward logs to Elasticsearch • No network overlay for production workload • Local storage for I/O performance Integration to our existing stack
  • 13.
  • 14.
    14 • Questions toanswer • Should I use Deployment or statefulset? • Requests/Limits • Collocation? Statefulset?
  • 15.
    15 • What shouldyou use? • Need of named instances? • Need graceful rolling restart? • LivenessProbe + ReadinessProbe • Hooks: PostStart + PreStop • TerminationGracePeriodSeconds not too low • Canary? (Partition) • HostPath or Local Volume? • Toleration: unreachable + not-ready • What kind of node downtime my application can allow? Statefulset useful parameters
  • 16.
    16 • Know howyour application works and behavior with expected workload Determine if Statefulset or Deployment better suits your needs Create an Operator to manage all manual operation (if needed) Run it as a Statefulset to understand complexity in Kubernetes and adapt if needed Don’t overcomplex things Workflow to avoid failure
  • 17.