Docker Summit 2016 - Kubernetes: Sweets and Bitters

Share the experience about how to maintain Kubernetes cluster, deploy container , integrate K8S with CI/CD framework

Software

Kubernetes :
Sweets and Bitters
Come On Docker ❤ 吉你

Hello!
I am Tom Tsai
I am here because I want to give life to
the servers
▷ Startup (DevOps)
▷ Trend Micro (QA, DevOps)
▷ DevOps Lecturer

“Have You Organization Adopted Any
Container Orchestration ?

Outline
▷ Kubernetes Introduction
▷ Access Kubernetes API
▷ Kubernetes CI/CD Pipeline
▷ Container High Availability
▷ Kubernetes Misc
▷ Q & A

Kubernetes Terminology
Pod
A group of one or
more containers
Replica Set
Ensures that a
specified number of
pod “replicas” are
running
Deployment
Provides declarative
updates for Pods and
Replica Sets
Service
a logical set of Pods
and a policy by
which to access
them

Deployment
Replica Set
Pod
Container 1
Container 2
Replica Set
Pod
Container 1
Container 2
Service

User Account V.S. Service Account
Service Account
User Account

Authorization Mode
▷ AlwaysDeny, AlwaysAllow, ABAC
▷ ABAC Mode
○ user, readonly, resource, namespace
○ {"user":"bob", "resource": "pods",
"readonly": true, "ns": "projectCaribou"}

Real Practice
Alpha
(readonly)
Staging
(readonly)
Prod
(readonly)
Jenkins False False False
Human False True True

Kubectl V.S. Restful API
~$ kubectl delete deployment nginx
DELETE
/apis/extensions/v1beta1/namespaces/default/deployments/nginx

Kubectl V.S. Restful API
~$ kubectl delete deployment nginx
DELETE
/apis/extensions/v1beta1/namespaces/default/deployments/nginx
deployment, replica set,
pod are deleted from K8S
only deployment is
deleted from K8S

Jenkins Integrate With Kubernetes
1. Create Deployment
2. Update Image ver.
3. Create Service
4. Of course, Testing
K8S Restful API

$Actually Happened… (1/3) Using Template Language to create Deployment, Service YAML File - Chef: ERB - Ansible: Jinja2 ... containers: - name: nginx image: "10.1.1.1:500/web/nginx:{{ image_tag }}" ...$

Actually Happened…(2/3)
HTTP POST (Reference)
/api/v1/namespaces/{namespace}/services/{name}
/apis/extensions/v1beta1/namespaces/{namespace}/deploy
ments/{name}

Actually Happened…(3/3)
HTTP PATCH (Reference)
/api/v1/namespaces/{namespace}/services/{name}
/apis/extensions/v1beta1/namespaces/{namespace}/deploy
ments/{name}

Container Alive V.S. Service Alive
▷ Container Alive != Service Alive
▷ When Container Dead, Restarting
Pod Automatically
▷ When Service Dead ?

Liveness Probes
▷ Check Whether Service Alive Or Not
▷ Restart Pod If Service Unavailable
▷ Exec Liveness
▷ Http Liveness

Readiness Probes
▷ Check Whether Service Alive Or Not
▷ Bind Pod If Service Ready
▷ Unbind Pod If Service Unavailable
▷ Exec Liveness
▷ Http Liveness

Termination Notice
▷ Grace Terminate Container
▷ Send SIGTERM to applications
▷ pre-stop lifecycle hook

Daemon Set
▷ Daemon Set ensures that all (or
some) nodes run a copy of a pod
▷ Rolling Update Issue

Deploy Daemon Set Workaround
▷ Replace Instead Of Rolling Update
▷ Deployment + hostPort Instead Of
Daemon Set
ports:
- containerPort: 9999
name: for-deployment
hostPort: {{ 2000 |random(start=1000, step=10) }}

$Troubleshooting ▷ Official Support Document ○ ~$ kubectl get {resource_type} | grep {name} ○ ~$ kubectl logs {pod_name} ○ ~$ kubectl describe {resource_type} {name} ○ ~$ kubectl edit {resource_type} {name} ○ ~$ kubectl exec -it {pod_name} bash$

Update V.S. Replace
▷ Rolling Update K8S Resource First, Reduce
Service Downtime
▷ Increase terminationGracePeriodSeconds
if needed
▷ But It’s Necessary To Replace Resource
Sometimes...

Capability
Unfortunately, I annot
disclose these details. 你 Pod 數有多高 ?
Pod Number Container Per Pod
100 10
10 100
Which Loading Is
Higher?

Access K8S From External
NodePort
Where Pod?

Access K8S From External
Service IP
Pod IP
Directly

Thanks!
Any questions?
You can find me at:
smalltown20110306
smalltown0110
smalltown0110

雖然執行 Docker Container 只需要一行指令，但是要利用 Docker 構築出 Immutable Infrastructure，並且無痛地運行在各個不同的環境中，可還有許多的事情要準備，其中最重要的就是幫 Immutable Infrastructure 建置完善的 CI/CD Pipeline ，在此場議程中會跟大家分享我 Build, Deployment, Test Docker Image 遇到的各種問題和做法，期望大家能藉由 Immutable Infrastructure 獲得更高效率的開發及運行環境

Kubernetes Day 2017 - Build, Ship and Run Your APP, Production !!

This document summarizes a talk about building, shipping, and running applications in production using containers on AWS. It discusses migrating an existing service from an on-premise data center to AWS, refactoring the application into microservices and containerizing it using Docker. It then covers setting up a Kubernetes cluster on CoreOS to orchestrate the containers across AWS, addressing challenges like application state, updates and monitoring. Terraform is presented as a way to define infrastructure as code and provision AWS resources. Logging, metrics collection and monitoring the Kubernetes cluster are also discussed.

How to Achieve Canary Deployment on Kubernetes

HanLing Shen

This document provides an overview of how to achieve canary deployments on Kubernetes. It begins with background on AWS Elastic Beanstalk and Kubernetes. It then explains blue/green deployments and canary deployments. The remainder of the document demonstrates how to set up canary deployments on Kubernetes using multiple deployments, services, and labels to route a portion of traffic to a new version. It also discusses tools like Helm and Jenkins that can help automate the canary deployment process.

Kubernetes service with ha

Sam Zheng

This document discusses methods for providing high availability services in Kubernetes including NodePort, cloud provider load balancers, Ingress, and Keepalived VIP. NodePort exposes services on each node's IP at a static port. Cloud provider load balancers rely on the cloud platform to provide an external IP for services. Ingress is for HTTP load balancing but does not fully support external networking. Keepalived VIP uses a virtual IP address, IP to service mapping, and daemonset to provide high availability services on bare metal clusters without a cloud provider.

K8s

Sam Zheng

This document provides an introduction to Kubernetes, including what it is, why it is needed, how to install it, and its main components. Kubernetes is an open-source platform for automating deployment, scaling, and operations of containerized applications. It groups containers together in pods and uses controllers like replication controllers and deployments to maintain the desired number of pods. Services provide a way for pods to discover and communicate with each other. Installation can be done using kubeadm to create a multi-node cluster with a master and nodes.

Kubernetes meetup 101

Jakir Patel

KubeCon EU 2016: Killing containers to make weather beautiful

KubeAcademy

The Met Office Informatics Lab includes scientists, developers and designers. We build prototypes exploring new technologies to make environmental data useful. Here we describe a recent project to process multi-dimensional weather data to create a fully interactive 4D browser application. We used long-running containers to serve data and web pages and short-running processes to ingest and compress the data. Forecast data is issued every three hours so our data ingestion goes through regular and predictable bursts (i.e. perfect for autoscaling). We built a Kubernetes cluster in an AWS group which auto-scales based on load. We used replication controllers to process the data. Every three hours ingestion jobs are added to a queue and the number of ingestion containers are set in proportion to the queue length. Each worker completes exactly one ingestion job from the queue and then exits, at which point Kubernetes creates a new one to process the next message. This has allowed us to remove the lifespan logic from the containers and keep them light, fast and massively scalable. We are now in the process of using this in our production systems. Sched Link: http://sched.co/6BWQ

Introduction kubernetes 2017_12_24

Sam Zheng

This document provides an introduction to Kubernetes and Container Network Interface (CNI). It begins with an introduction to the presenter and their background. It then discusses the differences between VMs and containers before explaining why Kubernetes is needed for container orchestration. The rest of the document details the architecture of Kubernetes, including the master node, worker nodes, pods, labels, replica sets, deployments, services, and how to build a Kubernetes cluster. It concludes with a brief introduction to CNI and a call for questions.

Apache Kafka зараз на хайпі. Все більше компаній починають використовувати її, як message bus. Проте Kafka може набагато більше, аніж бути просто транспортом. Її реальна міць і краса розкриваються, коли Kafka стає центральною нервовою системою вашої архітектури. Вона швидка, надійна і доволі гнучка для різних сценаріїв використання. На цій доповіді Сергій поділитися досвідом побудови data streaming платформи. Ми поговоримо про те, як Kafka працює, як її потрібно конфігурувати і в які халепи можна потрапити, якщо Kafka використовується неоптимально.

Introduction to CircleCI

Whose Job Is It Anyway? Kubernetes, CRI, & Container Runtimes

Tectonic Summit 2016: The Origins of Kubernetes

"On-premises" FaaS on Kubernetes

Alex Casalboni

DockerCon EU 2015: The Glue is the Hard Part: Making a Production-Ready PaaS

PaaSTA is Yelp's open-source Docker-based PaaS that glues together common PaaS components like scheduling with Mesos/Marathon, service delivery with Docker, discovery with SmartStack, and monitoring with Sensu. The document discusses how PaaSTA provides a production-ready platform by using stable components, reducing single points of failure, enabling graceful degradation, making upgrades painless, and incorporating self-healing and alerting capabilities. Lessons learned include the importance of interfaces, maintaining the app-infra boundary, using the right abstractions, and making iterative improvements.

Kube-AWS

This document discusses Kube-AWS, which is a tool for deploying Kubernetes clusters on AWS. It outlines the design goals of creating artifacts that are secure, reproducible, and auditable. It then demonstrates "under the hood" how Kube-AWS works by initializing a cluster configuration, rendering assets, deploying the cluster, exporting the deployment details, and making changes to reproduce the cluster. Recent work is noted along with future plans.

CRI Runtimes Deep-Dive: Who's Running My Pod!?

A talk given at QCon NYC on Wednesday, June 27, 2018 in the Container track, focused on helping developers understand the inner workings of pluggable container runtimes in the Kubernetes world. The second half of this talk is not available in slide form, but should be available via QCon video. The non-slide talk content included hands-on-keyboard demonstrations of various tools which can be used to investigate and introspect kubelet and pod -> container runtime boundaries and details, all shown in IBM Cloud using the containerd runtime underneath a Kubernetes 1.11 cluster.

Networking in docker

Jakir Patel

This document discusses Docker networking concepts, deployment options, and layers of networking. It covers key concepts like network namespaces and port mapping. For deployments, it describes single host with up to 40 containers and multi-host options when a single host is overloaded. The layers of networking are low-level, Docker, and multi-host options like overlay and plugins. Specific Docker networking modes like bridge, host, and none are also outlined.

Lifecycle of a pod

Pods are the smallest deployable units in Kubernetes. A Pod contains one or more containers that share resources and can communicate through localhost. The lifecycle of a Pod includes phases like Pending, Running, Succeeded, Failed, and Unknown. Probes like liveness and readiness probes are used to check the health of containers. Init containers allow running pre-startup actions before app containers are started.

Introduction to Kubernetes

Ross Kukulinski

DockerCon EU 2015: Trading Bitcoin with Docker

Presented by Sebastien Goasguen, VP, Apache CloudStack and Mathieu Buffenoir, co-founder, SBEX Bity is an internet money gateway built by Swiss Bitcoin Exchange ( SBEX ). To trade bitcoin the entire infrastructure of Bity is running in Docker containers. All the components of the infrastructure are using Docker, from the frontend applications and load balancer, the Django based backend, replicated Postgres database, Bitcoin daemon and remittance engine. All software goes through a CI pipeline that starts with Docker images being built on private repositories in Docker hub. Developers take also advantage of a docker-compose definition that allows them to run the entire infrastructure on a single laptop. Finally the production deployments happen thanks to the Ansible Docker module on a CloudStack based public cloud. Everything has been automated to ease re-deployment and operations. This presentation will go through every component and how Docker has enabled us to go production in 4 months.

The State of containerd

containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision, low-level storage and network attachments, etc. containerd is designed to be embedded into a larger system, rather than being used directly by developers or end-users.

What's Running My Containers? A review of runtimes and standards.

A talk given at Open Source Leadership Summit (OSLS) on Thursday, March 14th in Half Moon Bay, CA. In this talk the current status of the Open Container Initiative (OCI) standards as well as the Kubernetes Container Runtime Interface (CRI) were presented, with a view towards how these components have provided a level playing field with significant choice when it comes to container runtimes for use in Kubernetes, as well as interoperability per the OCI standards.

Automatically Renew Certificated In Your Kubernetes Cluster

Rex gke-clustree

Romain Vrignaud

Clustree runs about 30 microservices on Google Kubernetes Engine (GKE) with ~280 pods across 15 nodes. They use Kubernetes for all stateless applications across environments and some stateful ones. Key aspects of their infrastructure include Docker, Elasticsearch, RabbitMQ, Prometheus for metrics, Fluentd and Logstash for logging to Elasticsearch, and Influxdb with Grafana. They have experienced some issues but find Kubernetes provides great benefits like easy rolling upgrades and declarative infrastructure.

Kubernetes101 - Pune Kubernetes Meetup 6

This document provides an overview and agenda for a hands-on Kubernetes workshop. The workshop will cover Kubernetes concepts like pods, deployments, services, labels and selectors. It will demonstrate how to set up a Kubernetes cluster on Google Cloud and on a local laptop. Attendees will get hands-on experience with deploying applications and performing rolling updates using Kubernetes primitives.

實際架構實踐演化與解決方案

Camel Camel

Moby Summit introduction

This document provides an overview and agenda for the Moby Summit in Copenhagen in October 2017. The key points are: - The summit will discuss collaboration between Docker and the Cloud Native Computing Foundation (CNCF) on projects like containerd, Kubernetes integration, LinuxKit and more. - The agenda includes sessions on Infrakit, LinuxKit, containerd, security, serverless computing, networking and Birds of Feather breakout sessions on these topics. - Speakers will discuss governance of the Moby project, runtimes like containerd and runc, and integrations between Docker and Kubernetes. - The goal is to foster open collaboration and move major container projects forward as an open community.

Kubernetes上で動作する機械学習モジュールの配信＆管理基盤Rekcurd について

LINE Corporation

Rekcurd is a tool for deploying and managing machine learning models on Kubernetes. It provides a dashboard for uploading models, switching between models without stopping services, and versioning models. Rekcurd integrates with Kubernetes for high availability, auto-scaling, load balancing and auto-healing of machine learning services. The presentation demonstrates how Rekcurd addresses common tasks in serving machine learning models on Kubernetes.

Kubernetes Workshop

loodse

This document provides an overview of Kubernetes, an open-source system for automating deployment, scaling, and management of containerized applications. It describes basic Kubernetes components like pods, replication controllers, services, deployments, and replica sets. It explains how Kubernetes is used to group and schedule containers, maintain desired pod counts, update applications seamlessly with rolling updates, and more. The document also notes Kubernetes was inspired by Google's internal container systems and can manage applications across cloud and bare-metal environments.

Intro to Kubernetes & GitOps Workshop

Weaveworks

For this info-packed and hands-on workshop we cover: 📍 Introduction to Kubernetes & GitOps talk: We cover the most popular path that has brought success to many users already - GitOps as a natural evolution of Kubernetes. We'll give an overview of how you can benefit from Kubernetes and GitOps: greater security, reliability, velocity and more. Importantly, we cover definitions and principles standardized by the CNCF's OpenGitOps group and what it means for you. 📍 Get Started with GitOps: You'll have GitOps up and running in about 30 mins using our free and open source tools! We'll give a brief vision of where you want to be with those security, reliability, and velocity benefits, and then we'll support you while go through the getting started steps. During the workshop, you'll also experience in action and see demos for: - an opinionated repo structure to minimize decision fatigue - disaster recovery using GitOps - Helm charts example - Multi-cluster example - all with free and open source tools mostly in the CNCF (eg. Flux and Helm). If you have questions before or after the workshop, talk to us at #weave-gitops http://bit.ly/WeaveGitOpsSlack (If you need to invite yourself to the Slack, visit https://slack.weave.works/)

What's hot

DevOps Fest 2020. Сергій Калінець. Building Data Streaming Platform with Apac...

DevOps_Fest

Introduction to CircleCI

Whose Job Is It Anyway? Kubernetes, CRI, & Container Runtimes

Tectonic Summit 2016: The Origins of Kubernetes

"On-premises" FaaS on Kubernetes

Alex Casalboni

DockerCon EU 2015: The Glue is the Hard Part: Making a Production-Ready PaaS

Kube-AWS

CRI Runtimes Deep-Dive: Who's Running My Pod!?

Networking in docker

Jakir Patel

Lifecycle of a pod

Introduction to Kubernetes

Ross Kukulinski

DockerCon EU 2015: Trading Bitcoin with Docker

The State of containerd

What's Running My Containers? A review of runtimes and standards.

Automatically Renew Certificated In Your Kubernetes Cluster

Rex gke-clustree

Romain Vrignaud

Kubernetes101 - Pune Kubernetes Meetup 6

實際架構實踐演化與解決方案

Camel Camel

Moby Summit introduction

Kubernetes上で動作する機械学習モジュールの配信＆管理基盤Rekcurd について

LINE Corporation

What's hot (20)

DevOps Fest 2020. Сергій Калінець. Building Data Streaming Platform with Apac...

Introduction to CircleCI

Whose Job Is It Anyway? Kubernetes, CRI, & Container Runtimes

Tectonic Summit 2016: The Origins of Kubernetes

"On-premises" FaaS on Kubernetes

DockerCon EU 2015: The Glue is the Hard Part: Making a Production-Ready PaaS

Kube-AWS

CRI Runtimes Deep-Dive: Who's Running My Pod!?

Networking in docker

Lifecycle of a pod

Introduction to Kubernetes

DockerCon EU 2015: Trading Bitcoin with Docker

The State of containerd

What's Running My Containers? A review of runtimes and standards.

Automatically Renew Certificated In Your Kubernetes Cluster

Rex gke-clustree

Kubernetes101 - Pune Kubernetes Meetup 6

實際架構實踐演化與解決方案

Moby Summit introduction

Kubernetes上で動作する機械学習モジュールの配信＆管理基盤Rekcurd について

Similar to Docker Summit 2016 - Kubernetes: Sweets and Bitters

Kubernetes Workshop

loodse

Intro to Kubernetes & GitOps Workshop

Weaveworks

AgileTW Feat. DevOpsTW: 維運 Kubernetes 的兩三事

Container Orchestration 之爭已經落幕，Kubernetes 成為主流，AWS, Azure 跟 GCP 都已提出相對應的解決方案，但該選擇廠商所提供的服務或是自己架設呢？如何把 Stateless 甚至是 Stateful 應用服務運行於其上呢？部署應用程式到 Kubernetes 之中該如何做比較好？本分享談及多次在公司導入及維運 Kubernetes 的相關經驗，讓有興趣或是剛使用的人可以減少摸索的時間

Riga Dev Day 2016 - Microservices with Apache Camel & fabric8 on Kubernetes

Claus Ibsen

This document discusses microservices with Apache Camel and fabric8 on Kubernetes. It begins with a quick Apache Camel demo of a Twitter search application built with Camel. It then provides an overview of Kubernetes and fabric8, including key concepts like pods, replication controllers, services, and labels. The remainder discusses developing and deploying Java microservices to Kubernetes using Camel, CDI, fabric8, and the OpenShift CLI for tasks like deployment, scaling, and viewing logs.

Container Camp London (2016-09-09)

craigbox

Developing Java based microservices ready for the world of containers

Claus Ibsen

Developing Java based microservices ready for the world of containers The so-called experts are saying microservices and containers will change the way we build, maintain, operate, and integrate applications. This talk is intended for Java developers who wants to hear and see how you can develop Java microservices that are ready to run in containers. In this talk we will build a set of Java based Microservices that uses a mix of technologies with: - Spring Boot with Apache Camel - Apache Tomcat with Apache Camel You will see how we can build small discrete microservices with these Java technologies and build and deploy on the Kubernets/OpenShift3 container platform. We will discuss practices how to build distributed and fault tolerant microservices using technologies such as Kubernetes Services, Camel EIPs, Netflixx Hysterix, and Ribbon. We will use Zipkin service tracing across all four Java based microservices to provide a visualization of timings and help highlight latency problems in our mesh of microservices. And the self healing and fault tolerant aspects of the Kubernetes/OpenShift3 platform is also discussed and demoed when we let the chaos monkeys loose killing containers. This talk is a 50/50 mix between slides and demo.

Introduction to istio

Andrea Monacchi

Developing Java based microservices ready for the world of containers

Claus Ibsen

The so-called experts are saying microservices and containers will change the way we build, maintain, operate, and integrate applications. This talk is intended for Java developers who wants to hear and see how you can develop Java microservices that are ready to run in containers. In this talk we will build a set of Java based Microservices that uses a mix of technologies with Apache Camel, Spring Boot and WildFly Swarm. You will see how we can build small discrete microservices with these Java technologies and build and deploy on the Kubernets container platform. We will discuss practices how to build distributed and fault tolerant microservices using technologies such as Kubernetes Services, Camel EIPs, and Netflixx Hysterix. And the self healing and fault tolerant aspects of the Kubernetes platform is also discussed and demoed when we let the chaos monkeys loose killing containers. This talk is a 50/50 mix between slides and demo. The talk was presented at JDKIO on September 13th 2016.

Introduction to kubernetes

Rishabh Indoria

Kubernetes is an open-source system for automating deployment, scaling, and management of containerized applications. It groups containers that make up an application into logical units for easy management and discovery called Pods. ReplicaSets ensure that a specified number of pod replicas are running at any given time. Key components include Pods, Services for enabling network access to applications, and Deployments to update Pods and manage releases.

Kubernetes architecture

Janakiram MSV

Kubernetes is an open-source system for managing containerized applications and services. It includes a master node that runs control plane components like the API server, scheduler, and controller manager. Worker nodes run the kubelet service and pods. Pods are the basic building blocks that can contain one or more containers. Labels are used to identify and select pods. Replication controllers ensure a specified number of pod replicas are running. Services define a logical set of pods and associated policy for access. They are exposed via cluster IP addresses or externally using load balancers.

kubernetes.pdf

crezzcrezz

Kubernetes intro public - kubernetes meetup 4-21-2015

Rohit Jnagal

This document introduces Kubernetes, an open-source system for automating deployment, scaling, and management of containerized applications. It was developed at Google based on their 15+ years of running production workloads in containers. Kubernetes can manage applications running on virtual machines, bare metal, public or private cloud providers. It uses a declarative model where users specify the desired state and Kubernetes ensures the actual state matches it. Key concepts include pods, replication controllers, services, labels/selectors, and monitoring/logging addons.

Kubernetes intro public - kubernetes user group 4-21-2015

reallavalamp

Free GitOps Workshop + Intro to Kubernetes & GitOps

Weaveworks

Follow along in this free workshop and experience GitOps! AGENDA:  Welcome - Tamao Nakahara, Head of DX (Weaveworks)  Introduction to Kubernetes & GitOps - Mark Emeis, Principal Engineer (Weaveworks)  Weave Gitops Overview - Tamao Nakahara  Free Gitops Workshop - David Harris, Product Manager (Weaveworks) If you're new to Kubernetes and GitOps, we'll give you a brief introduction to both and how GitOps is the natural evolution of Kubernetes. Weave GitOps Core is a continuous delivery product to run apps in any Kubernetes. It is free and open source, and you can get started today! https://www.weave.works/product/gitops-core If you’re stuck, also come talk to us at our Slack channel! #weave-gitops http://bit.ly/WeaveGitOpsSlack (If you need to invite yourself to the Slack, visit https://slack.weave.works/)

Database as a Service (DBaaS) on Kubernetes

ObjectRocket

Scaling Microservices with Kubernetes

Deivid Hahn Fração

This document provides an overview of using Kubernetes to scale microservices. It discusses the challenges of scaling, monitoring, and discovery for microservices. Kubernetes provides a solution to these challenges through its automation of deployment, scaling, and management of containerized applications. The document then describes Kubernetes architecture and components like the master, nodes, pods, services, deployments and secrets which allow Kubernetes to provide portability, self-healing and a declarative way to manage the desired state of applications.

MicroProfile, Docker, Kubernetes, Istio and Open Shift lab @dev nexus

Emily Jiang

This document provides an overview of Eclipse MicroProfile, Open Liberty, and hands-on cloud-native Java microservices. It discusses key MicroProfile APIs for REST, configuration, fault tolerance, health checks, metrics, and more. It also covers deploying microservices on Docker, Kubernetes, and using a service mesh like Istio. The document concludes with a link to a GitHub repository containing a tutorial lab for getting started with a MicroProfile application on Open Liberty.

Scaling Push Messaging for Millions of Devices @Netflix

C4Media

Video and slides synchronized, mp3 and slide download available at URL https://bit.ly/2oA2uI5. Susheel Aroskar talks about Zuul Push, a scalable push notification service that handles millions of "always-on" persistent connections from all the Netflix apps running. He covers the design of the Zuul Push server and reviews the design details of the back-end message routing infrastructure that lets any Netflix microservice push notifications to any connected client. Filmed at qconnewyork.com. Susheel Aroskar works as a software engineer on the Cloud Gateway team at Netflix, which develops and operates Zuul, an API gateway that fronts all of the Netflix cloud traffic and handles more than 100 billion requests/day. Prior to Zuul, he worked on Netflix CDN's control plane in the cloud, which is responsible for steering more than a third of all North American peak evening internet traffic.

Getting started with kubernetes

Bob Killen

Getting-Started-with-Containers-and-Kubernetes_-March-2020-CNCF-Webinar.pdf

ssuser348b1c

Similar to Docker Summit 2016 - Kubernetes: Sweets and Bitters (20)

Kubernetes Workshop

Intro to Kubernetes & GitOps Workshop

AgileTW Feat. DevOpsTW: 維運 Kubernetes 的兩三事

Riga Dev Day 2016 - Microservices with Apache Camel & fabric8 on Kubernetes

Container Camp London (2016-09-09)

Developing Java based microservices ready for the world of containers

Introduction to istio

Developing Java based microservices ready for the world of containers

Introduction to kubernetes

Kubernetes architecture

kubernetes.pdf

Kubernetes intro public - kubernetes meetup 4-21-2015

Kubernetes intro public - kubernetes user group 4-21-2015

Free GitOps Workshop + Intro to Kubernetes & GitOps

Database as a Service (DBaaS) on Kubernetes

Scaling Microservices with Kubernetes

MicroProfile, Docker, Kubernetes, Istio and Open Shift lab @dev nexus

Scaling Push Messaging for Millions of Devices @Netflix

Getting started with kubernetes

Getting-Started-with-Containers-and-Kubernetes_-March-2020-CNCF-Webinar.pdf

More from smalltown

SHOPLINE 職人聊天室: 警報管理 - 從系統和制度下手 By smalltown

The presentation "Alert Management: A System and Policy Approach" by Smalltown, SRE Team Lead at MaiCoin Group, emphasizes the critical role of well-managed alerts in service maintenance. Key points include the necessity for clear, specific, and actionable alerts, categorizing alerts by severity, and using automation tools like PagerDuty for proper notification. It warns against over-reliance on automation, which can lead to inflexibility and skill degradation. Different teams prioritize different metrics, such as user experience, service quality, system stability, and security. Engaging all teams in monitoring and defining clear On-Call roles and responsibilities is crucial. The presentation also advocates for continuous improvement and a blameless culture to enhance the monitoring system and incident response.

Kubernetes Summit 2023: Head First Kubernetes

Kubernetes is an open-source system for automating deployment, scaling, and management of containerized applications. It groups containers that make up an application into logical units for easy management and discovery called pods. It helps with deployment, maintenance, and scaling of containerized applications. It provides basic mechanisms for deploying containers on a cluster of nodes, load balancing, scaling, and ensuring availability.

SRE Conference 2022 - How to Build a Healthy On-Call Culture

Kubernetes Summit 2021: Multi-Cluster - The Good, the Bad and the Ugly

This document discusses Kubernetes multi-cluster management and monitoring. It introduces the benefits of using a centralized "center cluster" to manage multiple tenant clusters, including configuration management using GitOps, centralized monitoring using Prometheus and Loki, and centralized logging using Elasticsearch. It also discusses platform options for managing multiple Kubernetes clusters, recommending Rancher as a server-side solution that provides configuration, management, security, and upgrades across clusters.

DevOpsDays Taipei 2021 - How FinTech Embrace Change Management

This document discusses how FinTech companies can embrace change management when making changes to systems in production. It introduces change management and different types of changes according to ITIL. Traditional change management approaches are outlined along with challenges startups face with limited resources. The document then proposes implementing a chatbot to streamline the request for change process and integrating it with systems to automate permissions and code releases. It concludes by emphasizing the importance of external auditing standards like SOC2 and ISO 27001 for change management processes.

Kubernetes Summit 2020 - DevOps: Where is My PodPod

This document discusses various strategies for managing Kubernetes clusters and pods, including: - Using separate clusters for different applications, environments, or combinations to balance isolation and resource efficiency - Strategies for placing pods on nodes like node selectors, affinity, taints, and tolerations - The importance of resource management to ensure critical applications have sufficient resources and avoid out-of-resource issues - Mechanisms like pod disruption budgets to handle disruptions gracefully

CDK Meetup: Rule the World through IaC

AWS re:Invent re:Cap 2019: My ElasticSearch Journey on AWS

Cloud Native User Group: Shift-Left Testing IaC With PaC

This document discusses shift-left testing of infrastructure as code (IaC) using policy as code (PaC). It provides an overview of IaC and how testing has traditionally happened later in the development cycle. It then introduces Open Policy Agent (OPA) as a PaC tool that can be used to automate auditing of IaC configurations like Terraform and Kubernetes. Examples are given showing how OPA can validate Terraform plans and Kubernetes admission control policies. The benefits of using OPA for shift-left testing of IaC are discussed.

DevOpsDays Taipei 2019 - Mastering IaC the DevOps Way

Kubernetes Summit 2019 - Harden Your Kubernetes Cluster

This document discusses various ways to harden a Kubernetes cluster. It covers topics like building secure container images, scanning for vulnerabilities, using network policies and Istio for traffic control, credential management with Vault, runtime security tools like Pod Security Policies and Falco, and policy as code with Open Policy Agent and Rego. The overall message is on implementing practices and tools throughout the development, deployment and runtime phases to minimize security risks for a Kubernetes environment.

HashiCorp Vault Workshop：幫 Credentials 找個窩

Credentials 究竟該儲存在哪邊才算安全一直是個很尷尬的問題，外洩的消息更是時有耳聞；而一般的應用程式設計時，很少考量到如何定期去更新 Credentials，這時 DevOps 的救星 HashiCorp 發現了大家的需求，因而推出 Vault 來作為 Credentials 的歸宿，其主要最大的兩大功能就是讓大家可以將 Credentials 安心地存放在其中，並且針對一些特定的應用服務提供動態 Credentials 的功能，此 Workshop 主要分成三個主軸： - Vault 基本使用 - Dynamic Credentials 使用方式 - Vault 在生產環境使用的最佳準則

TW SEAT - DevOps: Security 干我何事？

Cloud Native User Group: Prometheus Day 2

提到 Kubernetes 要如何監測時，標準答案就是 Prometheus 裝下去就對了，但在擁有多個 K8S Cluster 時，組態如何管理，Metric 如何保管，AlertManager 如何設定…等該怎麼做比較好？此分享為 smalltown 透過 Prometheus Operator 整合 Thanos 來監控多個 K8S Cluster 的經驗談，期許大家聽完此分享可以縮短摸索的時間，更輕鬆的使用 Prometheus

Kubernetes User Group: 維運 Kubernetes 的兩三事

DevOpsDays - DevOps: Security 干我何事？

Kubernetes Summit 2018 - Kubernetes: Stateless -> Stateful

This document discusses Kubernetes operators and the operator framework. It defines an operator as software with specific application knowledge that extends Kubernetes through custom controllers and resources. It provides examples of stateful services that require operators to manage tasks like setup, scaling, backups, and upgrades. The operator framework introduced by CoreOS aims to make it easier to build operators using tools like the Operator SDK and Operator Lifecycle Manager. It also gives a demonstration of the Prometheus and Elasticsearch operators.

DevOpsDays Taipei 2017 - Terraform: Everything Is Code

COSCUP 2017 - infrastructure As Code

This document discusses the benefits of implementing infrastructure, pipelines, images, servers, orchestration, and chat operations as code. Key benefits include being reproducible, saving time, avoiding human error, and not becoming outdated. It outlines tools like Terraform, Jenkins, Packer, Kubernetes, Docker, configuration management, and Hubot. Code samples and demos are provided to define infrastructure with Terraform, transform jobs into pipelines with Jenkins, build images with Packer, define containers in Kubernetes, build servers with Docker, and interact with services through Hubot chat. A link is provided to access additional sample code.

AWS Connect 2017 - Container (feat. AWS)