Сегодня сложно не использовать облачные решение и их возможности в цифровом мире. Конкуренция между облачными провайдерами приводит к высокому качеству и большому выбору услуг, а GCP и AWS являются одними из лидеров на рынке облачных услуг. Они имеют огромные различия в услугах и возможностях, что очень затрудняет ответ на вопрос "Какой же клауд провайдер выбрать?"
Бизнес решения не редко сходится на том, чтобы не выбирать преимущества среди обоих провайдеров, а использовать преимущества обеих (или более) провайдеров с необходимыми сервисами. Так же не стоит забывать про необходимость в bare-metal решениях. Все эти потребности создают огромное количество новых проблем и сложностей для инженеров и архитекторов.
А сегодня мы поговорим с вами о том какие проблемы возникают при деплойменте приложений нашего стека в разные клауды.
Network architecture design for microservices on GCPRaphaël FRAYSSE
Follow me on Twitter: https://twitter.com/la1nra
Presentation for the GCPUG Tokyo Network Day 2019 https://gcpug-tokyo.connpass.com/event/144935/
A tale about thinking, planning, and designing a network architecture for large-scale microservices on GCP in a post-IPO company.
Blog version available at https://blog.usejournal.com/network-architecture-design-for-microservices-on-gcp-ce8d10d5396e
Edge can be divided into the Device Edge and the Infrastructure Edge. This presentation discusses how to leverage the Infrastructure edge in modern software architecture.
OSCON 2013 - The Hitchiker’s Guide to Open Source Cloud ComputingMark Hinkle
And while the Hitchhiker’s Guide to the Galaxy (HHGTTG) is a wholly remarkable book it doesn’t cover the nuances of cloud computing. Whether you want to build a public, private or hybrid cloud there are free and open source tools that can help provide you a complete solution or help augment your existing Amazon or other hosted cloud solution. That’s why you need the Hitchhiker’s Guide to (Open Source) Cloud Computing (HHGTCC) or at least to attend this talk understand the current state of open source cloud computing. This talk will cover infrastructure-as-a-service, platform-as-a-service and developments in big data and how to more effectively deploy and manage open source flavors of these technologies. Specific the guide will cover:
Infrastructure-as-a-Service – The Systems Cloud – Get a comparison of the open source cloud platforms including OpenStack, Apache CloudStack, Eucalyptus and OpenNebula
Platform-as-a-Service – The Developers Cloud – Learn about the tools that abstract the complexity for developers and used to build portable auto-scaling applications ton CloudFoundry, OpenShift, Stackato and more.
Data-as-a-Service – The Analytics Cloud – Want to figure out the who, what, where, when and why of big data? You’ll get an overview of open source NoSQL databases and technologies like MapReduce to help parallelize data mining tasks and crunch massive data sets in the cloud.
Network-as-a-Service – The Network Cloud – The final pillar for truly fungible network infrastructure is network virtualization. We will give an overview of software-defined networking including OpenStack Quantum, Nicira, open Vswitch and others.
Finally this talk will provide an overview of the tools that can help you really take advantage of the cloud. Do you want to auto-scale to serve millions of web pages and scale back down as demand fluctuates. Are you interested in automating the total lifecycle of cloud computing environments You’ll learn how to combine these tools into tool chains to provide continuous deployment systems that will help you become agile and spend more time improving your IT rather than simply maintaining it.
[Finally, for those of you that are Douglas Adams fans please accept the deepest apologies for bad analogies to the HHGTTG.]
Networking is NOT Free: Lessons in Network DesignRandy Bias
An in-depth critique of the existing OpenStack networking approach, with a focus on how the Nova network controller is more of a hindrance than a help. Discusses the gap in Quantum's functionality required to close the gap, and alternative solutions. How can we make networking in OpenStack robust, high performance, and fault tolerant? What do typical large scale networks look like and what lessons can we learn from them? Is there an approach to networking we can take that is the same with a handful of servers as it is with hundreds of racks?
Organizations are rapidly adopting hybrid cloud strategies to take advantage of both on-premises and cloud services. However, moving applications to the cloud can be difficult and time-consuming, often taking months. VMware offers a holistic platform that enables public sector organizations to not just migrate hundreds of mission-critical applications to the cloud in a few days but also provide access to those applications on any device. Additionally, VMware solutions enable simplification of day 2 operations and an end-to-end security policy that is consistent across on-premises and public cloud services. Come to this session to hear how VMware is helping to serve the mission of government to enable YOUR Hybrid Cloud by migrating applications to the cloud, extending data centers to the cloud, running virtual desktops in the cloud and modernizing applications with the power of VMware and AWS cloud services. Sponsored by VMware.
Transform your Business with VMware Cloud on AWS, an Integrated Hybrid ApproachAmazon Web Services
Dean Samuels, Head of Solutions Architecture, Hong Kong & Taiwan, AWS
Keith Chan, Senior Manager, Sales Engineering, Greater China, VMware
VMware and AWS together - VMware Cloud on AWS brings the best of both worlds with VMware's enterprise class Software-Defined Data Center technologies running on next-generation bare-metal AWS infrastructure and delivered as a cloud service. With VMware Cloud on AWS, not only will you be able to consume VMware products on AWS, but you will also be able to leverage AWS native services from virtual machines running within VMware Cloud on AWS. Come and learn about the latest features and how you can leverage the best of both VMware and AWS for your environment.
Network architecture design for microservices on GCPRaphaël FRAYSSE
Follow me on Twitter: https://twitter.com/la1nra
Presentation for the GCPUG Tokyo Network Day 2019 https://gcpug-tokyo.connpass.com/event/144935/
A tale about thinking, planning, and designing a network architecture for large-scale microservices on GCP in a post-IPO company.
Blog version available at https://blog.usejournal.com/network-architecture-design-for-microservices-on-gcp-ce8d10d5396e
Edge can be divided into the Device Edge and the Infrastructure Edge. This presentation discusses how to leverage the Infrastructure edge in modern software architecture.
OSCON 2013 - The Hitchiker’s Guide to Open Source Cloud ComputingMark Hinkle
And while the Hitchhiker’s Guide to the Galaxy (HHGTTG) is a wholly remarkable book it doesn’t cover the nuances of cloud computing. Whether you want to build a public, private or hybrid cloud there are free and open source tools that can help provide you a complete solution or help augment your existing Amazon or other hosted cloud solution. That’s why you need the Hitchhiker’s Guide to (Open Source) Cloud Computing (HHGTCC) or at least to attend this talk understand the current state of open source cloud computing. This talk will cover infrastructure-as-a-service, platform-as-a-service and developments in big data and how to more effectively deploy and manage open source flavors of these technologies. Specific the guide will cover:
Infrastructure-as-a-Service – The Systems Cloud – Get a comparison of the open source cloud platforms including OpenStack, Apache CloudStack, Eucalyptus and OpenNebula
Platform-as-a-Service – The Developers Cloud – Learn about the tools that abstract the complexity for developers and used to build portable auto-scaling applications ton CloudFoundry, OpenShift, Stackato and more.
Data-as-a-Service – The Analytics Cloud – Want to figure out the who, what, where, when and why of big data? You’ll get an overview of open source NoSQL databases and technologies like MapReduce to help parallelize data mining tasks and crunch massive data sets in the cloud.
Network-as-a-Service – The Network Cloud – The final pillar for truly fungible network infrastructure is network virtualization. We will give an overview of software-defined networking including OpenStack Quantum, Nicira, open Vswitch and others.
Finally this talk will provide an overview of the tools that can help you really take advantage of the cloud. Do you want to auto-scale to serve millions of web pages and scale back down as demand fluctuates. Are you interested in automating the total lifecycle of cloud computing environments You’ll learn how to combine these tools into tool chains to provide continuous deployment systems that will help you become agile and spend more time improving your IT rather than simply maintaining it.
[Finally, for those of you that are Douglas Adams fans please accept the deepest apologies for bad analogies to the HHGTTG.]
Networking is NOT Free: Lessons in Network DesignRandy Bias
An in-depth critique of the existing OpenStack networking approach, with a focus on how the Nova network controller is more of a hindrance than a help. Discusses the gap in Quantum's functionality required to close the gap, and alternative solutions. How can we make networking in OpenStack robust, high performance, and fault tolerant? What do typical large scale networks look like and what lessons can we learn from them? Is there an approach to networking we can take that is the same with a handful of servers as it is with hundreds of racks?
Organizations are rapidly adopting hybrid cloud strategies to take advantage of both on-premises and cloud services. However, moving applications to the cloud can be difficult and time-consuming, often taking months. VMware offers a holistic platform that enables public sector organizations to not just migrate hundreds of mission-critical applications to the cloud in a few days but also provide access to those applications on any device. Additionally, VMware solutions enable simplification of day 2 operations and an end-to-end security policy that is consistent across on-premises and public cloud services. Come to this session to hear how VMware is helping to serve the mission of government to enable YOUR Hybrid Cloud by migrating applications to the cloud, extending data centers to the cloud, running virtual desktops in the cloud and modernizing applications with the power of VMware and AWS cloud services. Sponsored by VMware.
Transform your Business with VMware Cloud on AWS, an Integrated Hybrid ApproachAmazon Web Services
Dean Samuels, Head of Solutions Architecture, Hong Kong & Taiwan, AWS
Keith Chan, Senior Manager, Sales Engineering, Greater China, VMware
VMware and AWS together - VMware Cloud on AWS brings the best of both worlds with VMware's enterprise class Software-Defined Data Center technologies running on next-generation bare-metal AWS infrastructure and delivered as a cloud service. With VMware Cloud on AWS, not only will you be able to consume VMware products on AWS, but you will also be able to leverage AWS native services from virtual machines running within VMware Cloud on AWS. Come and learn about the latest features and how you can leverage the best of both VMware and AWS for your environment.
PKS: The What and How of Enterprise-Grade KubernetesVMware Tanzu
SpringOne Platform 2017
Cornelia Davis, Pivotal; Fred Melo, Pivotal
Because of its well thought out and powerful abstractions, robust and cloud-native architecture, and the vibrant community around it, the use of Kubernetes for containerized workloads has surged. And while Kubernetes is theoretically ready to run applications in production, the actual viability is highly dependent on how Kubernetes itself is managed. In this session Cornelia and Fred will cover role of the container orchestration system in your IT landscape, and they’ll dive under the covers to show how it provides the enterprise-class Kubernetes services you need to trust your most critical workloads to it. Yes, technical details revealed!
Containers, From Development to Production2nd Watch
Many organizations want to implement some type of microservices strategy, commonly by way of containers. Running containers in development can create fast feedback cycles and gives developers additional autonomy while working, but how does this translate to running containers in production? In this webinar we will talk about the main drivers and challenges with containers, as well as the huge divide between running containers in development and operationalizing your application at scale and for production release.
The slide deck for our recent talk at the alt.Net meetup:
Note: These slides make almost no sense without the presentation, although some have requested the slides, so here they are.
If there are any questions regarding the slides, feel free to contact either Abhaya or Joshua.
Microservice scars:
PageUp is on a journey from monolith to microservices.
This talk is to discuss the lessons we learnt from our first microservice. It has been running in production for 9 months - looking back, we have scars, and we've learnt a lot - lets have a retro!
We will cover all sorts of topics ranging from the technical details of our approach, in terms of technology stack, continuous deployments, to the soft skills - stakeholder management, team dynamic. We talk through our experience, and what we took from it. Something for everyone.
Abhaya Chauhan is a Senior Technical Advisor at PageUp - led the team for PageUp's first microservice.
He is focused on ensuring the company is ready for scale. Reducing time to market and bringing agility back to our product. He loves to focus on delivering pragmatically, and showing value.@AbhayaChauhan
www.abhayachauhan.com
Joshua Toth is a Full Stack Developer at PageUp - A member of the team that produced PageUp's first microservice. He loves learning about new technologies and tackling whatever challenge is presented. He has an interest in security and devops as a culture.@TothJoshuaJ
TothJoshuaJ@gmail.com
Your developers are asking for it. The boss is wondering how much longer it's going to take. You need to get Kubernetes up and running. This session will explore core Kubernetes concepts as it relates to our knowledge as a vSphere administrator. We will explore the differences between open source and commercialized versions of Kubernetes and take a quick look at different application deployment mechanisms. You’re going to leave with a better understanding of Kubernetes architecture and how to take the next step towards containerization.
Powerup & GCP | Workshop on Google Kubernetes EnginePowerup
Continuing our #powerupgrade series, expert practitioners at Powerup and GCP (Google Cloud Platform) organized a session on GKE - showcasing operational and cost efficiencies by completely eliminating the need to install, manage and operate one's own Kubernetes clusters. Do not miss being a part of this interactive learning and best-practice showcase. We also had domain experts and business leaders at the event who have successfully implemented GKE.
Services are the New Cloud Platform (Services-as-a-Platform)Randy Bias
How Amazon Web Services and other public clouds are really building Services-as-a-Platform (SaaP) not IaaS or PaaS. SaaP combined with DevOps is the ultimate path to faster, more nimble enterprise services and application delivery and lowering business time to value (TTV).
You can seamlessly extend your datacenter into the cloud with VMware Cloud on AWS. This webinar focuses on getting started, moving and managing VMware workloads on AWS.
How to Overcome Data Challenges When Refactoring Monoliths to MicroservicesVMware Tanzu
When taking existing monoliths and decomposing their components into new microservices, the most critical concerns have much less to do with the application code and more to do with handling data.
In this webinar, Kenny Bastani from Pivotal and Jason Mimick from MongoDB will focus on various methods of strangling a monolith’s ownership of domain data by transitioning the system of record over time. The new system of record, MongoDB, will fuel rapidly built and deployed microservices which companies can leverage for new revenue streams.
They will use practices from Martin Fowler’s Strangler Application to slowly strangle domain data away from a legacy system into cloud-native MongoDB clusters using microservices built with Spring Boot and Spring Cloud.
Speakers:
Kenny Bastani is a Spring developer advocate at Pivotal. As a passionate blogger and open source contributor, Kenny engages a community of passionate developers on topics ranging from graph databases to microservices. Kenny is a co-author of Cloud Native Java: Designing Resilient Systems with Spring Boot, Spring Cloud, and Cloud Foundry from O’Reilly.
Jason Mimick is the Technical Director for Partners at MongoDB developing new product and technical innovations with a number of companies. He's been at MongoDB nearly 4 years and previously spent the last 20-odd years in various engineering positions at Intersystems, Microsoft, and other companies.
Spring Cloud Kubernetes: An Easier Path from Idea to ProductionVMware Tanzu
Kubernetes might be a dream for operations teams willing to learn its intricacies, but it can be a nightmare for developers whose primary goal is getting working applications into production.
Spring Cloud Kubernetes addresses developers’ needs by making it simple to deploy Spring Cloud and Spring Boot applications into Kubernetes environments.
This webinar will explore some key Spring Cloud Kubernetes concepts and demonstrate the process of porting an existing application onto a Kubernetes cluster.
Microservices, Containers, Docker and a Cloud-Native Architecture in the Midd...Kai Wähner
Microservices are the next step after SOA: Services implement a limited set of functions. Services are developed, deployed and scaled independently. Continuous Integration and Continuous Delivery automate deployments. This way you get shorter time to results and increased flexibility. Containers improve these even more offering a very lightweight and flexible deployment option.
In the middleware world, you use concepts and tools such as an Enterprise Service Bus (ESB), Complex Event Processing (CEP), Business Process Management (BPM) or API Gateways. Many people still think about complex, heavyweight central brokers here. However, Microservices and containers are relevant not just for custom self-developed applications, but they are also a key requirement to make the middleware world more flexible, agile and automated.
This session discusses the requirements, best practices and challenges for creating a good Microservices architecture in the middleware world. A live demo with the open source PaaS framework CloudFoundry shows how technologies and frameworks such as Java, SOAP / REST Web Services, Jenkins and Docker are used to create an agile software development lifecycle to realize “Middleware Microservices”. It also discusses other modern cloud-native alternatives such as Kubernetes, Docker, Mesos, Mesosphere or Amazon ECS / AWS.
As cloud computing continues to gain popularity, companies that are natively Windows question if they too can leverage AWS. Learn about the benefits the cloud provides, best practices of cloud computing services, and solutions available on AWS for Windows workloads. Learn how Covanta is delivering services to its users 90% faster and saving more than 60% in IT infrastructure costs after migrating its Windows workloads to the cloud.
A Leading Cloud Services Provider offering Backup, Disaster Recovery and Business Continuity Solutions along with Production in the cloud, Test/Dev, and File Mobility. We offer a white glove, consultative approach and what makes our cloud different, makes your business better.
PKS: The What and How of Enterprise-Grade KubernetesVMware Tanzu
SpringOne Platform 2017
Cornelia Davis, Pivotal; Fred Melo, Pivotal
Because of its well thought out and powerful abstractions, robust and cloud-native architecture, and the vibrant community around it, the use of Kubernetes for containerized workloads has surged. And while Kubernetes is theoretically ready to run applications in production, the actual viability is highly dependent on how Kubernetes itself is managed. In this session Cornelia and Fred will cover role of the container orchestration system in your IT landscape, and they’ll dive under the covers to show how it provides the enterprise-class Kubernetes services you need to trust your most critical workloads to it. Yes, technical details revealed!
Containers, From Development to Production2nd Watch
Many organizations want to implement some type of microservices strategy, commonly by way of containers. Running containers in development can create fast feedback cycles and gives developers additional autonomy while working, but how does this translate to running containers in production? In this webinar we will talk about the main drivers and challenges with containers, as well as the huge divide between running containers in development and operationalizing your application at scale and for production release.
The slide deck for our recent talk at the alt.Net meetup:
Note: These slides make almost no sense without the presentation, although some have requested the slides, so here they are.
If there are any questions regarding the slides, feel free to contact either Abhaya or Joshua.
Microservice scars:
PageUp is on a journey from monolith to microservices.
This talk is to discuss the lessons we learnt from our first microservice. It has been running in production for 9 months - looking back, we have scars, and we've learnt a lot - lets have a retro!
We will cover all sorts of topics ranging from the technical details of our approach, in terms of technology stack, continuous deployments, to the soft skills - stakeholder management, team dynamic. We talk through our experience, and what we took from it. Something for everyone.
Abhaya Chauhan is a Senior Technical Advisor at PageUp - led the team for PageUp's first microservice.
He is focused on ensuring the company is ready for scale. Reducing time to market and bringing agility back to our product. He loves to focus on delivering pragmatically, and showing value.@AbhayaChauhan
www.abhayachauhan.com
Joshua Toth is a Full Stack Developer at PageUp - A member of the team that produced PageUp's first microservice. He loves learning about new technologies and tackling whatever challenge is presented. He has an interest in security and devops as a culture.@TothJoshuaJ
TothJoshuaJ@gmail.com
Your developers are asking for it. The boss is wondering how much longer it's going to take. You need to get Kubernetes up and running. This session will explore core Kubernetes concepts as it relates to our knowledge as a vSphere administrator. We will explore the differences between open source and commercialized versions of Kubernetes and take a quick look at different application deployment mechanisms. You’re going to leave with a better understanding of Kubernetes architecture and how to take the next step towards containerization.
Powerup & GCP | Workshop on Google Kubernetes EnginePowerup
Continuing our #powerupgrade series, expert practitioners at Powerup and GCP (Google Cloud Platform) organized a session on GKE - showcasing operational and cost efficiencies by completely eliminating the need to install, manage and operate one's own Kubernetes clusters. Do not miss being a part of this interactive learning and best-practice showcase. We also had domain experts and business leaders at the event who have successfully implemented GKE.
Services are the New Cloud Platform (Services-as-a-Platform)Randy Bias
How Amazon Web Services and other public clouds are really building Services-as-a-Platform (SaaP) not IaaS or PaaS. SaaP combined with DevOps is the ultimate path to faster, more nimble enterprise services and application delivery and lowering business time to value (TTV).
You can seamlessly extend your datacenter into the cloud with VMware Cloud on AWS. This webinar focuses on getting started, moving and managing VMware workloads on AWS.
How to Overcome Data Challenges When Refactoring Monoliths to MicroservicesVMware Tanzu
When taking existing monoliths and decomposing their components into new microservices, the most critical concerns have much less to do with the application code and more to do with handling data.
In this webinar, Kenny Bastani from Pivotal and Jason Mimick from MongoDB will focus on various methods of strangling a monolith’s ownership of domain data by transitioning the system of record over time. The new system of record, MongoDB, will fuel rapidly built and deployed microservices which companies can leverage for new revenue streams.
They will use practices from Martin Fowler’s Strangler Application to slowly strangle domain data away from a legacy system into cloud-native MongoDB clusters using microservices built with Spring Boot and Spring Cloud.
Speakers:
Kenny Bastani is a Spring developer advocate at Pivotal. As a passionate blogger and open source contributor, Kenny engages a community of passionate developers on topics ranging from graph databases to microservices. Kenny is a co-author of Cloud Native Java: Designing Resilient Systems with Spring Boot, Spring Cloud, and Cloud Foundry from O’Reilly.
Jason Mimick is the Technical Director for Partners at MongoDB developing new product and technical innovations with a number of companies. He's been at MongoDB nearly 4 years and previously spent the last 20-odd years in various engineering positions at Intersystems, Microsoft, and other companies.
Spring Cloud Kubernetes: An Easier Path from Idea to ProductionVMware Tanzu
Kubernetes might be a dream for operations teams willing to learn its intricacies, but it can be a nightmare for developers whose primary goal is getting working applications into production.
Spring Cloud Kubernetes addresses developers’ needs by making it simple to deploy Spring Cloud and Spring Boot applications into Kubernetes environments.
This webinar will explore some key Spring Cloud Kubernetes concepts and demonstrate the process of porting an existing application onto a Kubernetes cluster.
Microservices, Containers, Docker and a Cloud-Native Architecture in the Midd...Kai Wähner
Microservices are the next step after SOA: Services implement a limited set of functions. Services are developed, deployed and scaled independently. Continuous Integration and Continuous Delivery automate deployments. This way you get shorter time to results and increased flexibility. Containers improve these even more offering a very lightweight and flexible deployment option.
In the middleware world, you use concepts and tools such as an Enterprise Service Bus (ESB), Complex Event Processing (CEP), Business Process Management (BPM) or API Gateways. Many people still think about complex, heavyweight central brokers here. However, Microservices and containers are relevant not just for custom self-developed applications, but they are also a key requirement to make the middleware world more flexible, agile and automated.
This session discusses the requirements, best practices and challenges for creating a good Microservices architecture in the middleware world. A live demo with the open source PaaS framework CloudFoundry shows how technologies and frameworks such as Java, SOAP / REST Web Services, Jenkins and Docker are used to create an agile software development lifecycle to realize “Middleware Microservices”. It also discusses other modern cloud-native alternatives such as Kubernetes, Docker, Mesos, Mesosphere or Amazon ECS / AWS.
As cloud computing continues to gain popularity, companies that are natively Windows question if they too can leverage AWS. Learn about the benefits the cloud provides, best practices of cloud computing services, and solutions available on AWS for Windows workloads. Learn how Covanta is delivering services to its users 90% faster and saving more than 60% in IT infrastructure costs after migrating its Windows workloads to the cloud.
A Leading Cloud Services Provider offering Backup, Disaster Recovery and Business Continuity Solutions along with Production in the cloud, Test/Dev, and File Mobility. We offer a white glove, consultative approach and what makes our cloud different, makes your business better.
One And Done Multi-Cloud Load Balancing Done Right.pptxAvi Networks
Did you know that on average, it takes organizations more than three months using legacy load balancers to scale their load balancing capacity? That includes tedious policy management, expensive over-provisioning (or even more expensive under-provisioning), and the risk of supply-chain delays.
Join us for an eye-opening discussion of application delivery done right. By following the guiding principles of a cloud operating model, your team can get operational simplicity, multi-cloud consistency, pervasive analytics, holistic security and full life-cycle automation. This means less time spent on manual, repetitive tasks and troubleshooting, freeing up more time to proactively manage and automate your load balancers.
Multiple ways of building hybrid clouds on KubernetesJanos Matyas
There has been a lot of talk about hybrid-clouds over the years. We think that beneath the buzzwords lie some very important use-cases driven by the needs of enterprises and SaaS providers. However, delivering and operating hybrid-clouds and creating a seamless operational experience has been too complex for most organizations. This is - in part - due to the observation that there can be different hybrid-techniques that are best for different needs. We present 4 different approaches to building hybrid clouds on Kubernetes: cluster groups, federation, service mesh and a custom K8s cloud controller.
AWS re:Invent 2016: Hybrid Architecture Design: Connecting Your On-Premises W...Amazon Web Services
You’re trying to minimize your time to deploy applications, reduce capital expenditure, and take advantage of the economies of scale made possible by using Amazon Web Services; however, you have existing on-premises applications that are not quite ready for complete migration. Hybrid architecture design can help! In this session, we discuss the fundamentals that any architect needs to consider when building a hybrid design from the ground up. Attendees get exposure to Amazon VPC, VPNs, Amazon Direct Connect, on-premises routing and connectivity, application discovery and definition, and how to tie all of these components together into a successful hybrid architecture.
Software Engineering in the (AWS) CloudDhaval Nagar
This session was meant to explore the popular AWS cloud services to help in a modern application development.
From cloud computing to application architecture and serverless, I tried to cover a few points overall to show case the emergence and future of cloud computing.
Unlock the Cloud: Building a Vendor Independent Private CloudAbiquo, Inc.
Standards in cloud computing are essential to its growth. Learn how to create a private cloud without being locked in to any one vendor. Abiquo uses OVF standards to help its customers create private clouds with multiple hypervisor technologies in the same cloud.
Cloud Native Demystified: Build Once, Run Anywhere!Codit
Innovate faster and accelerate your company's position in a world increasingly defined by the way we build software, in this webinar on Cloud Native.
Discover the webcast: https://bit.ly/3vOga40
(NET208) Enable & Secure Your Business Apps via the Hybrid Cloud on AWSAmazon Web Services
Learn how to enable and support data migrations in AWS and keep your business applications highly secure, whether you are migrating your IT infrastructure to the cloud, migrating your business applications to the cloud, or simply moving traffic on AWS between different Availability Zones. Our real-world use cases include securing your critical business applications in AWS by deploying vSRX as a perimeter firewall for VPC instances, and enabling secure transport and routing for hybrid cloud deployments using IPSec VPNs on vMX. Session sponsored by Juniper Networks.
GCP Meetup #3 - Approaches to Cloud Native Architecturesnine
Talk by Daniel Leahy and Nic Gibson, given at the Google Cloud Meetup on March 3, 2020, hosted by Nine Internet Solutions AG - Your Swiss Managed Cloud Service Provider.
Building realtime data applications that can seamlessly run and integrate data across On Prem, and multiple public cloud vendors. How Hybrid Cloud can help tackle regulatory requirements for Data Sovereignty, Stressed Exit, and operational resilience.
Your Journey to Cloud-Native Begins with DevOps, Microservices, and ContainersAtlassian
Everyone is excited about cloud-native applications. And for good reason! They're scalable, resilient, portable across cloud environments, and make it easier to incorporate customer feedback quickly. But there's a catch: cloud-native applications fundamentally change the way you provision, deploy, and manage your infrastructure.
That's where DevOps, microservices, and containers come in. This session will show you how to combine them to create a highly-automated continuous delivery platform. By streamlining the process to resemble factory assembly lines, you can adapt quickly to market changes and keep your customers happy – without burning your team out.
Providing Microsoft Azure Functions And Microsoft Dataverse Resources With Cl...ShapeBlue
Many business projects (CRM, ERP, etc) are using proprietary cloud solutions that may be available outside these major clouds. Christophe, Pierre and Quentin will demonstrate the possibilities to use Apache Cloudstack when working on the Microsoft Azure and Microsoft Dataverse world, providing the same features on an open-source cloud solution.
Christophe Senior code and platform architect, DIMSI partner, Christophe is helping all technical teams to choose best patterns and implementations to deliver fast, reliable and clean software solutions When not trashing and re-coding software developed by our team, you may find him playing with his 2 children, drinking beers with his friends or on his computer watching Series
Pierre Senior back-end developer, Pierre is in charge of Backroll integration inside Cloudstack. Pierre has a proven track record of successful c# and Java projects. When not playing with his keyboard, Pierre is surfing, WingFoiling or bodyboarding on the Brittany coast.
Quentin Senior DevOps engineer & Cloud enabler, DIMSI partner Quentin is in charge of DIMSI custom developments on Apache Cloudstack deployment : customer portal, backup solution. On a daily basis, he helps our customers and our developers to use and embrace Devops methodology, by building CI/CD pipelines (GitLab, Azure Devops), dockerizing apps and automate things as much as possible... When not DevOps'ing, Quentin loves to binge watch series and movies, play with his cat "Boogie" and is a crazy fan of street food.
-----------------------------------------
CloudStack Collaboration Conference 2022 took place on 14th-16th November in Sofia, Bulgaria and virtually. The day saw a hybrid get-together of the global CloudStack community hosting 370 attendees. The event hosted 43 sessions from leading CloudStack experts, users and skilful engineers from the open-source world, which included: technical talks, user stories, new features and integrations presentations and more.
DevOps Fest 2020. Сергій Калінець. Building Data Streaming Platform with Apac...DevOps_Fest
Apache Kafka зараз на хайпі. Все більше компаній починають використовувати її, як message bus. Проте Kafka може набагато більше, аніж бути просто транспортом. Її реальна міць і краса розкриваються, коли Kafka стає центральною нервовою системою вашої архітектури. Вона швидка, надійна і доволі гнучка для різних сценаріїв використання.
На цій доповіді Сергій поділитися досвідом побудови data streaming платформи. Ми поговоримо про те, як Kafka працює, як її потрібно конфігурувати і в які халепи можна потрапити, якщо Kafka використовується неоптимально.
DevOps Fest 2020. Kohsuke Kawaguchi. GitOps, Jenkins X & the Future of CI/CDDevOps_Fest
CI/CD process has been something your DevOps engineer purpose-built for your team. But with Kubernetes & cloud-native, that’s becoming “legacy.” The rising level of platform abstraction allows all the good practices that the industry has developed over time to be integrated, hidden, and simplified behind just one practice called “GitOps.” That simplified world is what Jenkins X enables.
We will discuss GitOps, Jenkins X, and how that combination drastically simplifies cloud-native web app development. You’ll understand why traditional DevOps is not suitable in a Kubernetes and cloud-native world, explore GitOps principles and discover how they facilitate high-velocity app development.
And finally, Kohsuke will make a fool of himself by talking about the future — now that Jenkins X simplifies the CD process, where is the next frontier?
DevOps Fest 2020. Барух Садогурский и Леонид Игольник. Устраиваем DevOps без ...DevOps_Fest
Казалось бы, доклад про устроение DevOps должен быть про настройку Дженкинса, но нет! Этот доклад для тех, кто понимает, что DevOps — это история про культуру, коллаборацию и общение, но не очень представляет, как будучи скромным исполнителем или тимлидом, повлиять на целый энтерпрайз, и сдвинуть организацию в сторону DevOps. Барух расскажет какими методами можно воспользоваться для влияния на stake–holder-ов, что кому говорить, как мотивировать, и как работать с возражениями. Пожалуй, за исключением парапсихологических практик и гипноза (которые не стоит раскрывать неокрепшим умам), на этом докладе будут обозрены все способы влиять, не имея полномочий на благо наступления повсеместного DevOps в индустрии.
DevOps Fest 2020. James Spiteri. Advanced Security Operations with Elastic Se...DevOps_Fest
How does your organization detect and respond to cyber threats?
Learn how the latest security capabilities in the Elastic Stack enable interactive exploration and automated analysis, an endpoint protection product to fully combine prevention, detection, and response into a single autonomous agent and unsupervised machine learning to reduce false positives and spot anomalies — all at the speed and scale your security practitioners need to defend your organization.
It doesn’t stop there - this session will also cover how security teams use Canvas, Maps, and other Kibana elements to triage events and perform initial investigations.
DevOps Fest 2020. Pavlo Repalo. Edge Computing: Appliance and ChallangesDevOps_Fest
Over the last years booming of cloud technologies created a lot of opportunities for business and together with IoT expansion established new niche: Edge Computing. Since it's one of the first speech within the UA community we will go through main points about the origin, business use cases, main frameworks, and challenges. Why DevOps people should start learning embedded programming aspects and why we shouldn't allow to register a cloud node after reboot? That's the questions what we'll also review with professional part of the audience.
DevOps Fest 2020. Максим Безуглый. DevOps - как архитектура в процессе. Две к...DevOps_Fest
Сотни вопросов о структуре и процессах, которые ставят и решают архитекторы и практики DevOps на примере решений в своем проекте.
Взаимоопределяющие вопросы архитектуры, DevOps, бизнеса и разработки.
Взрыв сложности - представьте, что вместо простого gmail подобного почтового SPA вам нужно построить и развивать новый sendmail на сервере + thunderbird для клиентов (desktop, мобильную и веб версию) по SAAS multi tenant модели.
DevOps Fest 2020. Павел Жданов та Никора Никита. Построение процесса CI\CD дл...DevOps_Fest
Хотя на первый взгляд кажется, что нет никакой разницы, в действительности проприетарные и opensource проекты имеют большое отличие в реализации CI\CD process. Разные команды к которым добавляются неучтенные котрибьютеры работают в разных временных зонах, разработка ведется в условиях недостаточной коммуникации. За добавление новых изменений отвечает не один или несколько человек, а консорциум. В результате, процесс внесения изменений слишком затягивается, увеличивая потенциальные конфликты не только в файлах но и бизнес логике. Все эти особенности вносят свое влияние на устройство CI\CD для open source project. Как он устроен мы и расскажем в нашем докладе.
DevOps Fest 2020. Андрій Шабалін. Distributed Tracing for microservices with ...DevOps_Fest
Зараз, в 2020 році, певно немає таких людей, які не використовують чи не чули про мікросервіси. Складність таких системам полягає не лише в правильному проектуванні на етапі створення і розробки, але і самій експлуатації. У роботі в таких розподілених системах команді неодмінно доведеться зіткнутися з челенджами пошуку “bottlenecks” і відсутністю повної картини комунікації сервісів.
У розподілених системах метрики та логи не завжди дають достатньо інформації для пошуку проблем, оскільки вони продукують дані що відносяться до конкретних компонент системи та не покриває їх взаємодії в цілому. Ця доповідь буде присвячена вирішенню проблем з “observability” та “application performance monitoring” за допомогою підходу “distributed tracing” з Jaeger.
DevOps Fest 2020. Дмитрий Кудрявцев. Реализация GitOps на Kubernetes. ArgoCDDevOps_Fest
Kubernetes став стандартом для обчислювальних платформ і багато хто вже адаптував цю платформу як основну. Особливістю цієї платформи є нетипова система управління конфігураціями.
На презентації ми розглянемо що являє собою декларативний конфігураційний менеджмент. Чому Kustomize для нас є найкращим інструментом. І як за допомогою ArgoCD розгорнути Kubeflow на Kubernetes кластері.
DevOps Fest 2020. Роман Орлов. Инфраструктура тестирования в KubernetesDevOps_Fest
Сегодня многие сервисы, которые два года назад жили в Docker контейнерах, переезжают в Kubernetes. И инфраструктура тестирования не исключение. В своем докладе я хочу рассказать чем Kubernetes может быть полезен для внутренней инфраструктуры, и как мы используем Kubernetes для организации Selenium-тестирования. Вы узнаете как мы прошли путь от «голого» железа до «кубера», что это дало и какую можно получить экономию. На реальных примерах вы увидите как мы работаем с Kubernetes API, как запускаем Windows в Kubernetes, а также наши «грабли» и best practices.
DevOps Fest 2020. Андрей Шишенко. CI/CD for AWS Lambdas with Serverless frame...DevOps_Fest
Доклад рассказывает, как оптимизировать и автоматизировать процесс активной разработки и деплоймента serverless приложений/микросервисов. Сравниваются разные подходы в разворачивании serverless стека на AWS (API GW + Lambda), В процессе презентации я поясню, почему мы выбрали Gitlab-Ci, а не Jenkins ,как CI/CD движок, почему мы выбрали Serverless Framework, а не AWS SAM, как способ разворачивания Serverless приложений. В презентации я покажу, как легко с помощью данного технического решения описывать комплексные задачи, их мониторинг, алертинг, обеспечивать безопасность. Расскажу о проблемах, с которыми мы столкнулись (у нас больше 130 API GWы и 600 Lamdas) за последние 2 года, и какие планы на модернизацию текущего решения.
DevOps Fest 2020. Александр Глущенко. Modern Enterprise Network Architecture ...DevOps_Fest
При разработке и сопровождении enterprise продуктов в AWS Cloud мы всегда сталкиваемся со сложностями в разработке архитектуры сети, которая будет объединять множество AWS аккаунтов и сервисов и отвечать требованиям высокой доступности, безопасности и regulatory compliance. В данном докладе я хочу поделиться со слушателями своим опытом и привести примеры готовых шаблонов масштабируемой, безопасной архитектуры между несколькими учетными записями
DevOps Fest 2020. Виталий Складчиков. Сквозь монолитный enterprise к микросер...DevOps_Fest
В своем выступлении я хочу пригласить участников взглянуть на банк как на современную компанию. Я хотел бы показать наш путь от монолитной архитектуры к микросервисам. Это не типичная статья истории трансформации с Интренета. Это наш маленький прорыв в устоявшейся архитектуре многих банков.
Прежде всего вы можете увидеть шаги от SOA (Enterprise Service Bus) к MSA (Docker, Kubernetes).
DevOps Fest 2020. Денис Медведенко. Управление сложными многокомпонентными ин...DevOps_Fest
В этом докладе мы поговорим о разворачивании инфраструктуры для Azure Service Fabric c помощью инструмента Terraform. Мы расскажем о составляющих инфраструктуры и сложностях, с которыми мы столкнулись при работе с ней. Также вы узнаете о том, как запускается процесс CI/CD для Azure Service Fabric.
DevOps Fest 2020. Павел Галушко. Что делать devops'у если у вас захотели mach...DevOps_Fest
Все у вас хорошо, ci крутится, cd мутится, веб бегает стабильно и жизнь наладилась. Но приходит светлая идея в голову руководителя что надо использовать ML или проект новый с этой новой чудо технологией (вообще она не новая, но это опустим). Что вам надо делать, куда бежать, что смотреть и как со всем этим жить.
DevOps Fest 2020. Сергей Абаничев. Modern CI\CD pipeline with Azure DevOpsDevOps_Fest
Создавайте и тестируйте приложения на любом языке программирования, разворачивайте их в любых облачных провайдерах или локальных средах. Запускайте параллельно на Linux, macOS и Windows, разворачивайте контейнеры на отдельных узлах или в Kubernetes. Все это возможно с помощью одного инструмента - Azure DevOps Services. Он обеспечивает полное покрытие DevOps с помощью одного приложения.
В этом докладе мы рассмотрим решение Microsoft, которое позволяет избежать использования десятков различных инструментов для доставки приложения конечным пользователям
DevOps Fest 2020. Philipp Krenn. Scale Your Auditing EventsDevOps_Fest
The Linux Audit daemon is responsible for writing audit records to the disk, which you can then access with ausearch and aureport. However, it turned out that parsing and centralizing these records is not as easy as you would hope. Elastic's new Auditbeat fixes this by keeping the original configuration, but ships them to a centralized location where you can easily visualize all events. You can also use Auditbeat to detect changes to critical files, like binaries and configuration files, and identify potential security policy violations.
This talk shows you what can you do to discover changes, events, and potential security breaches as soon as possible on interactive dashboards. Additionally, we are combining Auditd events with logs, which are security-relevant, and explore them in Elastic's free SIEM.
DevOps Fest 2020. Володимир Мельник. TuchaKube - перша українська DevOps/Host...DevOps_Fest
TuchaKube - платформа, яка забезпечує автоматизацію CI/CD-процесів та хостинг контейнерів у Kubernetes-кластері. Платформа дозволяє тримати код аплікацій в наданому платформою Git-репозиторії, керувати процесом розробки за допомогою наданого платформою GitLab, автоматично запускати компіляцію, тестування та деполймент в Kubernetes-кластер. Доповідь містить опис принципів роботи платформи та коротку демонстрацію основних функцій.
DevOps Fest 2020. Денис Васильев. Let's make it KUL! Kubernetes Ultra LightDevOps_Fest
Если 2019 год был громким призывом Let's KIK It!
и в индустрии жарко обсуждали стек Kubernetes, Istio и Knative, то 2020 обещает стать годом выхода на сцену больших Telco.
Тенденция быть Smart и 5G-Ready порождает целую нишу вызовов, специальных решений и подходов. Раскрывет новые возможности на базе Kubernetes, IOT, Multiaccess Edge Computing (MEC), Embedded Computing, Serverless.
На границе (Edge) Telco, Automotive и Smart Services для такой трансформаци в телеком индустрии уже требуются специалисты и соответствующий стек.
Предлагаю обсудить современные тенденции в телеком, рассмотреть в действии экосистему KUL: Kubernetes Ultra Light. На основе стека K3S, ультралегкой ServiceMesh Gloo и Serverless системы OpenFaaS, мы продемострируем реальный пример сервиса для SmartCity.
DevOps Fest 2020. Даніель Яворович. Data pipelines: building an efficient ins...DevOps_Fest
Я розповім про досвід будування системи для роботи з великими даними на базі відкритої технологіі Apache Nifi та Kubernetes на прикладі аналізу ресурсів новин з використанням NLP аналізом.
The Roman Empire A Historical Colossus.pdfkaushalkr1407
The Roman Empire, a vast and enduring power, stands as one of history's most remarkable civilizations, leaving an indelible imprint on the world. It emerged from the Roman Republic, transitioning into an imperial powerhouse under the leadership of Augustus Caesar in 27 BCE. This transformation marked the beginning of an era defined by unprecedented territorial expansion, architectural marvels, and profound cultural influence.
The empire's roots lie in the city of Rome, founded, according to legend, by Romulus in 753 BCE. Over centuries, Rome evolved from a small settlement to a formidable republic, characterized by a complex political system with elected officials and checks on power. However, internal strife, class conflicts, and military ambitions paved the way for the end of the Republic. Julius Caesar’s dictatorship and subsequent assassination in 44 BCE created a power vacuum, leading to a civil war. Octavian, later Augustus, emerged victorious, heralding the Roman Empire’s birth.
Under Augustus, the empire experienced the Pax Romana, a 200-year period of relative peace and stability. Augustus reformed the military, established efficient administrative systems, and initiated grand construction projects. The empire's borders expanded, encompassing territories from Britain to Egypt and from Spain to the Euphrates. Roman legions, renowned for their discipline and engineering prowess, secured and maintained these vast territories, building roads, fortifications, and cities that facilitated control and integration.
The Roman Empire’s society was hierarchical, with a rigid class system. At the top were the patricians, wealthy elites who held significant political power. Below them were the plebeians, free citizens with limited political influence, and the vast numbers of slaves who formed the backbone of the economy. The family unit was central, governed by the paterfamilias, the male head who held absolute authority.
Culturally, the Romans were eclectic, absorbing and adapting elements from the civilizations they encountered, particularly the Greeks. Roman art, literature, and philosophy reflected this synthesis, creating a rich cultural tapestry. Latin, the Roman language, became the lingua franca of the Western world, influencing numerous modern languages.
Roman architecture and engineering achievements were monumental. They perfected the arch, vault, and dome, constructing enduring structures like the Colosseum, Pantheon, and aqueducts. These engineering marvels not only showcased Roman ingenuity but also served practical purposes, from public entertainment to water supply.
Model Attribute Check Company Auto PropertyCeline George
In Odoo, the multi-company feature allows you to manage multiple companies within a single Odoo database instance. Each company can have its own configurations while still sharing common resources such as products, customers, and suppliers.
Read| The latest issue of The Challenger is here! We are thrilled to announce that our school paper has qualified for the NATIONAL SCHOOLS PRESS CONFERENCE (NSPC) 2024. Thank you for your unwavering support and trust. Dive into the stories that made us stand out!
Students, digital devices and success - Andreas Schleicher - 27 May 2024..pptxEduSkills OECD
Andreas Schleicher presents at the OECD webinar ‘Digital devices in schools: detrimental distraction or secret to success?’ on 27 May 2024. The presentation was based on findings from PISA 2022 results and the webinar helped launch the PISA in Focus ‘Managing screen time: How to protect and equip students against distraction’ https://www.oecd-ilibrary.org/education/managing-screen-time_7c225af4-en and the OECD Education Policy Perspective ‘Students, digital devices and success’ can be found here - https://oe.cd/il/5yV
Instructions for Submissions thorugh G- Classroom.pptxJheel Barad
This presentation provides a briefing on how to upload submissions and documents in Google Classroom. It was prepared as part of an orientation for new Sainik School in-service teacher trainees. As a training officer, my goal is to ensure that you are comfortable and proficient with this essential tool for managing assignments and fostering student engagement.
2024.06.01 Introducing a competency framework for languag learning materials ...Sandy Millin
http://sandymillin.wordpress.com/iateflwebinar2024
Published classroom materials form the basis of syllabuses, drive teacher professional development, and have a potentially huge influence on learners, teachers and education systems. All teachers also create their own materials, whether a few sentences on a blackboard, a highly-structured fully-realised online course, or anything in between. Despite this, the knowledge and skills needed to create effective language learning materials are rarely part of teacher training, and are mostly learnt by trial and error.
Knowledge and skills frameworks, generally called competency frameworks, for ELT teachers, trainers and managers have existed for a few years now. However, until I created one for my MA dissertation, there wasn’t one drawing together what we need to know and do to be able to effectively produce language learning materials.
This webinar will introduce you to my framework, highlighting the key competencies I identified from my research. It will also show how anybody involved in language teaching (any language, not just English!), teacher training, managing schools or developing language learning materials can benefit from using the framework.
The Indian economy is classified into different sectors to simplify the analysis and understanding of economic activities. For Class 10, it's essential to grasp the sectors of the Indian economy, understand their characteristics, and recognize their importance. This guide will provide detailed notes on the Sectors of the Indian Economy Class 10, using specific long-tail keywords to enhance comprehension.
For more information, visit-www.vavaclasses.com
Unit 8 - Information and Communication Technology (Paper I).pdfThiyagu K
This slides describes the basic concepts of ICT, basics of Email, Emerging Technology and Digital Initiatives in Education. This presentations aligns with the UGC Paper I syllabus.
MARUTI SUZUKI- A Successful Joint Venture in India.pptx
DevOps Fest 2020. Станислав Коленкин. How to connect non-connectible: tips, tricks and tears
1. Continuous Delivery. Continuous DevOps. KYIV, 2020
CONTINUOUS DELIVERY. CONTINUOUS DEVOPS.
20-21,MARCH 2020
KYIV, UKRAINE
How to connect non-connectible:
tears, more tears, tips and tricks
2. Continuous Delivery. Continuous DevOps. KYIV, 2020
Introduction
If your business uses cloud computing–as most businesses do these
days–it’s very likely that you have at least one public cloud solution.
The “public cloud” refers to cloud computing services such as
storage, software, and virtual machines that are provided by third
parties over the internet. Some of the biggest public cloud providers are
Amazon Web Services, Microsoft Azure, and Google Cloud Platform.
Increasingly, however, companies are growing interested in a “cloud
agnostic” strategy. So what does “cloud agnostic” mean, and how can
your own business be cloud agnostic?
4. Continuous Delivery. Continuous DevOps. KYIV, 2020
Cloud Agnostic
One of the greatest benefits of cloud computing is its flexibility. If
you’re running out of storage, for example, your public cloud solution can
automatically scale it up for you so that your operations will continue
seamlessly.
Being “cloud agnostic” takes this idea of the flexible cloud one step
further. As the name suggests, cloud agnostic organizations are those
capable of easily running their workloads and applications within any
public cloud.
6. Continuous Delivery. Continuous DevOps. KYIV, 2020
Cloud Agnostic
The fact that an organization is “cloud agnostic” doesn’t mean that
it’s completely indifferent as to which cloud provider it uses for which
workloads. Indeed, the organization will likely have established
preferences for their cloud setup, based on factors such as price, region,
and the offerings from each provider.
Rather, being cloud agnostic means that you’re capable of switching
tracks to a different public cloud provider should the need arise, with
minimal hiccups and disruption to your business.
9. Continuous Delivery. Continuous DevOps. KYIV, 2020
Cloud Agnostic: Pros
● No vendor lock-in: As mentioned above, being cloud agnostic makes
the risk of vendor lock-in much less likely. Companies that are cloud
agnostic can “diversify their portfolio” and become more resilient to
failure and changes in the business IT landscape.
● More customization: Using a strategy that’s cloud agnostic and
multi-cloud lets you tweak and adjust your cloud roadmap exactly as
you see fit. You don’t have to miss out on a feature that’s exclusive to
a single provider just because you’re locked into a different solution.
● Redundancy. Having systems in place across various clouds means
you are covered should any one encounter problems.
10. Continuous Delivery. Continuous DevOps. KYIV, 2020
Cloud Agnostic: Cons
● Greater complexity: Being cloud agnostic sounds great on paper, but
the realities of implementation can be much more difficult. Creating
a cloud strategy with portability built in from the ground up
generally incurs additional complexity and cost.
● “Lowest common denominator”: If you focus too much on being
cloud agnostic, you may only be able to use services that are offered
by all of the major public cloud providers.
12. Continuous Delivery. Continuous DevOps. KYIV, 2020
Strategies for Being Cloud Agnostic
Nevertheless, there are a number of “low-hanging fruit” technologies
that you can adopt on the path toward being cloud agnostic. These will
be advantageous for your business no matter where you stand on the
cloud agnostic spectrum.
For example, container technologies such as Docker is an invaluable
part of being cloud agnostic. Essentially, a “container” is a software unit
that packages source code together with its libraries and dependencies.
This allows the application to be quickly and easily ported from one
computing environment to another.
Don’t forget about containerd.
13. Continuous Delivery. Continuous DevOps. KYIV, 2020
Strategies for Being Cloud Agnostic
Kubernetes is an open-source container-orchestration system for
automating application deployment, scaling, and management. It was
originally designed by Google, and is now maintained by the Cloud
Native Computing Foundation.
But exist a lot of others orchestration systems such as:
• Docker swarm
• Mesos
• Openshift (Kubernetes under hood)
• etc
14. Continuous Delivery. Continuous DevOps. KYIV, 2020
Strategies for Being Cloud Agnostic
Another tactic for being cloud agnostic is to use managed database
services. These are public cloud offerings in which the provider installs,
maintains, manages, and provides access to a database. The major public
clouds such as AWS, Microsoft Azure, and Google all offer theoretical
possibilities for migrating between providers.
Deploy on any cloud, including fully on-premise deploys, is the
easiest and most cost effective way to remain cloud agnostic. This is
because with virtually one click, you can save your settings and deploy to
whatever environment your enterprise wishes. In short, simplicity equals
operational cost efficiency.
.
16. Continuous Delivery. Continuous DevOps. KYIV, 2020
Multi-Cloud problems
Problems:
• Network connectivity
• Routing
• Multi project connectivity (Hub and Spoke Architecture)
• Resolve DNS names
• Access to Cloud provider’s services
• IPs intersection (include problem with DNS)
17. Continuous Delivery. Continuous DevOps. KYIV, 2020
Multi-Cloud: Network Connectivity
MCR - Megaport Cloud Router to enable multi-cloud connectivity
between Google Virtual Private Cloud (VPC) and Amazon VPC without
deploying physical infrastructure. For other cloud service provider VPCs,
you can replace the second half of the tutorial with instructions from
Megaport.
https://www.megaport.com/
18. Continuous Delivery. Continuous DevOps. KYIV, 2020
Multi-Cloud: Network Connectivity
MCR - Megaport Cloud Router to enable multi-cloud connectivity
between Google Virtual Private Cloud (VPC) and Amazon VPC without
deploying physical infrastructure. For other cloud service provider VPCs,
you can replace the second half of the tutorial with instructions from
Megaport.
21. Continuous Delivery. Continuous DevOps. KYIV, 2020
Multi-Cloud: Network Connectivity
● An HA VPN gateway in GCP with two
interfaces.
● Two AWS virtual private gateways, which
connect to your HA VPN gateway.
● An external VPN gateway resource in GCP
that represents your AWS virtual private
gateway. This resource provides information
to GCP about your AWS gateway.
● Two tunnels from one AWS virtual private
gateway to one interface of the HA VPN
gateway.
● Two tunnels from the other AWS virtual
private gateway to the other interface of the
HA VPN gateway.
22. Continuous Delivery. Continuous DevOps. KYIV, 2020
Multi-Cloud: Network Connectivity
● GCP Propagating of supernet via VPN tunnel is possible
● GCP All routes are advertised, no summarization
● In GCP it’s possible to add a custom route at GCP Cloud Router
(https://cloud.google.com/router/docs/how-to/advertising-overv
iew) and this route will be advertised via tunnel, including
supernet route, if advertisement is enabled.
● GCP Route advertisement might be disabled and only custom
ranges are advertised via the tunnel.
● In AWS we can NOT propagate custom routes and supernet
27. Continuous Delivery. Continuous DevOps. KYIV, 2020
AWS DNS
Route53 resolver provides
two capabilities:
● Route 53 Resolver
Endpoints for
inbound queries
● Conditional
Forwarding Rules for
outbound queries.
The IP address of the DNS
server is the base of the VPC
network range plus two
36. Continuous Delivery. Continuous DevOps. KYIV, 2020
AWS Load Balancer
When an internal load balancer is created, it receives a public DNS
name with the following form:
internal-name-123456789.region.elb.amazonaws.com
The DNS servers resolve the DNS name of your load balancer to the
private IP addresses of the load balancer nodes for your internal load
balancer. Each load balancer node is connected to the private IP
addresses of the back-end instances using elastic network interfaces. If
cross-zone load balancing is enabled, each node is connected to each
back-end instance, regardless of Availability Zone. Otherwise, each node
is connected only to the instances that are in its Availability Zone.
40. Continuous Delivery. Continuous DevOps. KYIV, 2020
GCP Load Balancer
Global access (BETA) is an optional parameter for internal LoadBalancer Services that
allows clients from any region in your VPC network to access the internal TCP/UDP
load balancer. Without global access, traffic originating from clients in your VPC network
must be in the same region as the load balancer. Global access allows clients in any
region to access the load balancer. Backend instances must still be located in the same
region as the load balancer.
Global access is enabled per-Service using the following annotation:
networking.gke.io/internal-load-balancer-allow-global-access: "true".
Global access is not supported with legacy networks. Normal inter-region traffic costs
apply when using global access across regions. Global access is currently Beta and is
supported only on Rapid Channel clusters as of GKE 1.16.
41. Continuous Delivery. Continuous DevOps. KYIV, 2020
GCP Load Balancer
Global access disabled Global access enabled
Clients must be in the same region as the load
balancer. They also must be in the same VPC
network as the load balancer or in a VPC
network that is connected to the load
balancer's VPC network by using VPC
Network Peering.
Clients can be in any region. They still must be
in the same VPC network as the load balancer
or in a VPC network that's connected to the
load balancer's VPC network by using VPC
Network Peering.
On-premises clients can access the load
balancer through Cloud VPN tunnels or
interconnect attachments (VLANs). These
tunnels or attachments must be in the same
region as the load balancer.
On-premises clients can access the load
balancer through Cloud VPN tunnels or
interconnect attachments (VLANs). These
tunnels or attachments can be in any region.
44. Continuous Delivery. Continuous DevOps. KYIV, 2020
Access to Cloud Services
It is not a rare case when an application running on Google
Kubernetes Engine (GKE) needs to access Amazon Web Services (AWS)
APIs. Any application has needs. Maybe it needs to run an analytics
query on Amazon Redshift, access data stored in Amazon S3 bucket,
convert text to speech with Amazon Polly or use any other AWS service.
This multi-cloud scenario is common nowadays, as companies are
working with multiple cloud providers.
45. Continuous Delivery. Continuous DevOps. KYIV, 2020
Access to Cloud Services
Cross-cloud access introduces a new challenge; how to manage
cloud credentials, required to access from one cloud provider to services
running in the other. The naive approach, distributing and saving cloud
provider secrets is not the most secure approach; distributing long-term
credentials to each service, that needs to access AWS services, is
challenging to manage and a potential security risk.
46. Continuous Delivery. Continuous DevOps. KYIV, 2020
GCP Workload Identity
Workload Identity is the recommended way to access Google Cloud
services from within GKE due to its improved security properties and
manageability. To learn more, refer to the alternatives below.
Workloads running on GKE must authenticate to use Google Cloud
APIs such as the Compute APIs, Storage and Database APIs, or Machine
Learning APIs. Once you configure the relationship between a
Kubernetes service account and a Google service account, any workload
running as the Kubernetes service account automatically authenticates
as the Google service account when accessing Google Cloud APIs.
47. Continuous Delivery. Continuous DevOps. KYIV, 2020
GCP Workload Identity
KSA - Kubernetes service account
GSA - GCP service account
49. Continuous Delivery. Continuous DevOps. KYIV, 2020
AWS fine-grained IAM roles for service accounts
The IAM roles for service accounts feature is available on new
Amazon EKS Kubernetes version 1.14 clusters, and clusters that were
updated to versions 1.14 or 1.13 on or after September 3rd, 2019.
After you have enabled the IAM OIDC identity provider for your
cluster, you can create IAM roles to associate with a service account in
your cluster.
54. Continuous Delivery. Continuous DevOps. KYIV, 2020
Access to Cloud Services
Anthos Config Connector is a
Kubernetes add-on that allows
customers to manage GCP
resources, such as Cloud Spanner
or Cloud Storage, through your
cluster's API.
Even though Config Connector
is designed for GKE, it can be easily
installed in any Kubernetes
environment.