SlideShare a Scribd company logo

Elastic Kubernetes Services (EKS)

sriram_rajan
sriram_rajan

A session covering Kubernetes concepts and Amazon Kubernetes Services (AWS EKS)

1 of 44
Download to read offline
JUNE FANATICAL SUPPORT FOR AWS CUSTOMER WEBINAR: AMAZON EKS
• WARNING : This session will be recorded !
AWS EKS (ELASTIC KUBERNETES SERVICE)
4 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
5 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
6 CONTAINER VS VM Host OS Hypervisor App A Binaries Guest OS (Windows) App B Binaries Guest OS (Linux) Host OS Container Engine App A Binaries OS Image (Ubuntu) App B Binaries OS image (Red Hat) The same Host Kernel VM CONTAINER Hardware Emulation
7 THE ECOSYSTEM Container PaaS A software package that contains everything the software needs to run; executables system tools, libraries, and settings. • Docker • LXC Container Orchestration Container Automating the process of deploying multiple containers to implement an application • Docker Swarm • Apache Mesos • Kubernetes A platform as-a-service that provides a fully managed container platform • AWS EKS • GKE (Google Kubernetes Engine) • RedHat OpenShift
8 THE CONTAINER BENEFITS • Look Cool – The cool kids are doing this. • Consistency - Predictable environments that include software dependencies such as specific versions of programming language runtimes and other software • Portability – Consistency drives the portability no matter where the application is ultimately deployed • Faster – Low overhead ensures faster boot time (order of seconds) • Better Economics – Lower overhead than a VM ensures better hardware use
9 DOCKER BASICS Docker Client docker pull Dockerfile docker build docker run Docker Registry Docker Hub docker push Docker Host docker daemon docker API Running containers
10 DOCKER BASICS • https://docs.docker.com/engine/getstarted/ • https://github.com/docker/labs
11 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
12 WHAT IS KUBERNETES § K.1.2.3.4.5.6.7.8.s (k8s) § Ancient Greek for “Pilot” or ”Helmsman” § Google’s opinionated Container management framework
13 IT IS MORE THAN GOOGLE • Open source (Apache 2.0 license) • Part of CNCF (Cloud Native Computing Foundation) • RedHat , IBM, Vmware, Pivotal & Microsoft are contributing to it
14 AND IS WINNING… § The Container Management Battle • Google has support for K8s • Docker has support for K8s • AWS has support for K8s • Azure has support for K8s • Red Hat Openshift uses K8s
15 KUBERNETES DESIGN GOALS § Primary goal is distributed micro services § But can cater for more traditional or stateful services • Concept of statefulsets in 1.9/1.10 (persistent storage, graceful deployment and termination, network identifiers)
16 KUBERNETES DESIGN PRINCIPLES § Application defines/declares desired state, K8s maintains it § Lots of primitives to help with container-centric infrastructure • Scheduling • Auto-restarting/Auto-healing • Application monitoring • Service discovery & naming • Secret management • Storage
17 EXTENSIBLE • Extensible – API for Plugins • Calico/Flannel – Overlay networks • CoreDNS – Service discovery using DNS
18 K8S DESIGN 18 Good to know but not critical if you are an end user consuming a K8s PaaS like Google GKE or AWS EKS API SERVER etcd SCHEDULER CONTROLLER MANAGER Master KUBELET KUBEPROXY CADVISOR Node PLUGINS KUBELET KUBEPROXY CADVISOR Node PLUGINS Cluster Architecture KUBECTL Developer Operator KOPS
19 KUBERNETES CLUSTER ARCHITECTURE § Master – Runs the control plane and is the heart of the system • Etcd – Configuration and metadata store • API server – REST based API • Scheduler – Schedules Activites (Pods etc) • Controller Manager server – Cluster operations (adding nodes) • Minion – The worker nodes • Cluster – Master + Minions
20 KUBERNETES CLUSTER ARCHITECTURE § Kubelet - Agent that runs on nodes and provides the execution arm for activities (e.g deploying pods) § Kube-proxy – Network proxy for load balancing, port mapping § cAdvisor – Container advisor. Resource usage and performance characteristics of running containers § Kubectl – Kubernetes CLI (cluster management and deployment) § Kops – Kubernetes cluster manager
21 21 KUBERNETES CONCEPTS & TERMINOLOGY Deployment: auth Image - auth:stable Replicas - 10 Container Port - 10080 Label -app:auth Pod: auth-fm8lzPod: auth-qwc4df Deployments - Declares desired state for Pods & ReplicaSets. Pods - Runs of one or more containers. Basic building block ReplicaSets - Ensures that a specified number of pods are running Service: auth Port: 80 Node Port: <service> Target Port : 10080 DNS: auth.default.cluster.local IP: X.X.X.X or LoadBalancer :a469bd69f-XXXXX.us-west- 2.elb.amazonaws.com Services – Services binds deployments into a “service” • Creates Endpoints or load balancer • Auto-update service with DNS Names and SRV records • Updates resources whenever Pods in it change Labels & Label Selectors - Labels are key value pairs for identifying objects. Label sector matches labels to rules E.g. environment = production && application = auth
22 22 Deployment: auth Image - auth:stable Replicas - 10 Container Port - 10080 Label -app:auth Pod: auth-fm8lzPod: auth-qwc4df Service: auth IP: 1.1.1.1 or LoadBalancer :a469bd69f-XXXXX.us-west- 2.elb.amazonaws.com Namespace: dev Deployment: auth Image - auth:stable Replicas - 10 Container Port - 10080 Label -app:auth Pod: auth-fm8lzPod: auth-qwc4df Service: auth Port: 80 Node Port: <service> Target Port : 10080 DNS: auth.prod.cluster.local IP: 2.2.2.2 or LoadBalancer :6rtfj5i9bd69f-XXXXX.us-west- 2.elb.amazonaws.com Namespace: prod Port: 80 Node Port: <service> Target Port : 10080 DNS: auth.dev.cluster.local Namespaces –Logical environments inside the same physical cluster Typically used with different teams or different environments (staging/production) Services can have same names across namespaces DNS entries are updated in relation to namespaces KUBERNETES CONCEPTS & TERMINOLOGY
23 KUBERNETES CONCEPTS & TERMINOLOGY § StatefulSet - Introduced in version 1.10 and is like a deployment but provides guarantees about the ordering and uniqueness of these Pods (Sticky identity) § DaemonSets – Run something on every node. E.g Log collection or storage daemon § Job – Creates one of more Pods and ensures a specified number are successful. Can be used to run multiple pods in parallel
24 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
25 EKS (MANAGED KUBERNETES) § Fully managed Kubernetes cluster § High availability § Managed Upgrades § Automatically detects and replaces unhealthy masters § Integrated § IAM Support § VPC Support § Autoscale models § Cloudwatch & Cloudtrail support
26 EKS (MANAGED KUBERNETES) § Certified Kubernetes Conformant § https://github.com/cncf/k8s-conformance § Kubernetes versions • Currently 1.10 • Choice of 3 most recent versions (going forward) • All the existing plugins and tooling from the Kubernetes community supported on your workers § Open source theme § Many components are open source
27 EKS PRICING • $0.20 per hour per cluster (About 144 per month) • You also pay for worker node resources - EC2 (instance sizes, reserved instances) - EBS (Elastic Block Storage) - Load balancer - Bandwidth
28 EKS CLUSTER CREATION Prerequisites Provision cluster Provision worker nodes Node Registration Add-ons - IAM Role for EKS - VPC with two AZs - Public + private subnets - Security group - Kubectl - Cluster name - Version - IAM role - VPC and Subnets - Security Groups - EC2 instances - Count - Autoscale configuration - VPC and Subnets - Security Groups - Apply configuration map - Network plugins - Storage profiles - etc
30 EKS NETWORKING • A new open source VPC plugin – CNI (Container Network Interface) - Allows pods to have the same IP address as they do on the VPC network - Can be used with EC2 based K8s • This plugin does the following - Attaches network interfaces and allocates IPs to the K8s nodes - Maintains a "warm pool" of IP addresses for assignment - Configures networking on each node - Use Iptables at the host level for NAT etc (yes, it does)
31 EKS NETWORKING - CALICO • Support for Calico, a network policy engine for Kubernetes • Enables the implementation of network segmentation and tenant isolation - E.g. To separate the same cluster from different environments • Works similar to security groups - Create network ingress and egress rules, - Assign network policies - But applies to pods using pod selectors and labels
32 EKS USER MANAGEMENT • Two part auth; AWS IAM + K8s RBAC • Uses Heptio authenticator plugin • User creation steps - Create an IAM User or Role - Edit K8s config map to add to the K8s environment - Add IAM User or Role - Apply RBAC permissions
33 EKS AUTOSCALING Deployments • Scaling Control Plane • Transparently managed by AWS Worker Nodes Cluster • Same as EC2 autoscaling. • Autoscale policies (e.g. using CPU or RAM) • Pod Autoscaler (Horizontal scaling) • Needs to be designed in conjunction
34 EKS LIMITATIONS & CONSIDERATIONS • US West (Oregon) and US East (N.Virginia) only • Limitations with ELB - Native support for classic type - Beta support for the application load balancer - Alpha support for the network load balancer • Limits to secondary IPs by instance types - Impacts your Pod architecture
35 EKS LIMITATIONS & CONSIDERATIONS • No Cloudwatch for the Cluster - You can use your own plugins • Security groups work at the ENI level and not the Pod level. Limits isolation between Pods. - Plugins like Calico can help overcome this • Persistent volumes are limited to block(EBS). No EFS support. • No Fargate support - Roadmap item for 2018
36 EKS(CONTAINER) BEST PRACTICES • 12-factor app; https://12factor.net/ Best practices for micro-services • Have a logging strategy; i.e. consolidate logs from start - Send application logs to Stdout and Stderr
37 EKS BEST PRACTICES • Use separate clusters for environment separation • Design networking requirements to match EC2 limits • Autoscale models need to be careful consideration (Deployments + EC2 autoscale) • Version control Kubernetes configuration files • Use Kubernetes labels and match them with AWS tags
38 EKS FURTHER READING PLAYING • https://github.com/aws-samples/aws-workshop-for-kubernetes • https://kubernetes.io/docs/setup/minikube/
39 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
40 ECR • Very simple service • Same as Docker Hub • Highly available Docker repository • Integrated into IAM • Lifecycle policies
41 ECR • Only pay for data stored and the network transfer • Can be used with on-premise Docker setups (with AWS cli) • No public images (needs an IAM user) • No private VPC endpoints (you are accessing over a public HTTPS interface)
42 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
43 AWS CONTAINER ECOSYSTEM DIY EC2 ECS EKS Fargate Cluster management Customer managed AWS managed AWS managed AWS managed Cluster Control Full Partial Partial None Instance(worker node) Management Customer managed Customer managed Customer managed AWS managed Instance control Full Full Full None Docker control Full Full Full Limited Container orchestration You decide AWS proprietary and open source schedulers Kubernetes and open source schedulers AWS proprietary Pricing model EC2 instances, EBS volumes EC2 instances, EBS volumes EKS control plane costs, EC2 instances, EBS volumes ECS Tasks Administrative Overhead Clusters, Worker Nodes, Containers Worker Nodes, Containers Worker Nodes, Containers Containers Typical use cases • Highest degree of control • Bleeding edge options • Portable (assuming no other AWS integration) • Fully functional micro- services • Mix and Match with Fargate • Fully functional micro- services • Cross platform/clouds • On demand jobs • Small micro-services • Mix and Match with ECS • EKS support coming soon
44 RACKSPACE & CONTAINERS • ECS • Already in our spheres of management • EKS - We are working on • Finishing support enablement & internal documentation • Finalizing our spheres of management document • Managed Kubernetes • Launched managed Kubernetes on OpenStack. • Roadmap to extend that to cloud platforms • Professional Services • Application transformation services to build container-based architecture
45 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A Slides and Recording will be shared

Recommended

Kubernetes on AWS with Amazon EKS
Kubernetes on AWS with Amazon EKSKubernetes on AWS with Amazon EKS
Kubernetes on AWS with Amazon EKS
Amazon Web Services
 
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Edureka!
 
Introduction to Amazon EKS
Introduction to Amazon EKSIntroduction to Amazon EKS
Introduction to Amazon EKS
Amazon Web Services
 
Kubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShift
Kubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShiftKubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShift
Kubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShift
DevOps.com
 
EKS Workshop
EKS Workshop EKS Workshop
EKS Workshop
AWS Germany
 
Introduction to Kubernetes
Introduction to KubernetesIntroduction to Kubernetes
Introduction to Kubernetes
rajdeep
 
Amazon EKS - Elastic Container Service for Kubernetes
Amazon EKS - Elastic Container Service for KubernetesAmazon EKS - Elastic Container Service for Kubernetes
Amazon EKS - Elastic Container Service for Kubernetes
Amazon Web Services
 
Kubernetes Concepts And Architecture Powerpoint Presentation Slides
Kubernetes Concepts And Architecture Powerpoint Presentation SlidesKubernetes Concepts And Architecture Powerpoint Presentation Slides
Kubernetes Concepts And Architecture Powerpoint Presentation Slides
SlideTeam
 

Recommended

Kubernetes on AWS with Amazon EKS
Kubernetes on AWS with Amazon EKSKubernetes on AWS with Amazon EKS
Kubernetes on AWS with Amazon EKS
Amazon Web Services
 
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Edureka!
 
Introduction to Amazon EKS
Introduction to Amazon EKSIntroduction to Amazon EKS
Introduction to Amazon EKS
Amazon Web Services
 
Kubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShift
Kubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShiftKubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShift
Kubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShift
DevOps.com
 
EKS Workshop
EKS Workshop EKS Workshop
EKS Workshop
AWS Germany
 
Introduction to Kubernetes
Introduction to KubernetesIntroduction to Kubernetes
Introduction to Kubernetes
rajdeep
 
Amazon EKS - Elastic Container Service for Kubernetes
Amazon EKS - Elastic Container Service for KubernetesAmazon EKS - Elastic Container Service for Kubernetes
Amazon EKS - Elastic Container Service for Kubernetes
Amazon Web Services
 
Kubernetes Concepts And Architecture Powerpoint Presentation Slides
Kubernetes Concepts And Architecture Powerpoint Presentation SlidesKubernetes Concepts And Architecture Powerpoint Presentation Slides
Kubernetes Concepts And Architecture Powerpoint Presentation Slides
SlideTeam
 
Strengthen and Scale Security Using DevSecOps - OWASP Indonesia
Strengthen and Scale Security Using DevSecOps - OWASP IndonesiaStrengthen and Scale Security Using DevSecOps - OWASP Indonesia
Strengthen and Scale Security Using DevSecOps - OWASP Indonesia
Mohammed A. Imran
 
Amazon EKS: Getting Started
Amazon EKS: Getting StartedAmazon EKS: Getting Started
Amazon EKS: Getting Started
Tanya Seno
 
AWS ECS vs EKS
AWS ECS vs EKSAWS ECS vs EKS
AWS ECS vs EKS
Norberto Enomoto
 
Intro to kubernetes
Intro to kubernetesIntro to kubernetes
Intro to kubernetes
Faculty of Technical Sciences, University of Novi Sad
 
Hands-On Introduction to Kubernetes at LISA17
Hands-On Introduction to Kubernetes at LISA17Hands-On Introduction to Kubernetes at LISA17
Hands-On Introduction to Kubernetes at LISA17
Ryan Jarvinen
 
Introduction to Kubernetes Workshop
Introduction to Kubernetes WorkshopIntroduction to Kubernetes Workshop
Introduction to Kubernetes Workshop
Bob Killen
 
Clean Infrastructure as Code
Clean Infrastructure as Code Clean Infrastructure as Code
Clean Infrastructure as Code
QAware GmbH
 
KubeVirt (Kubernetes and Cloud Native Toronto)
KubeVirt (Kubernetes and Cloud Native Toronto)KubeVirt (Kubernetes and Cloud Native Toronto)
KubeVirt (Kubernetes and Cloud Native Toronto)
Stephen Gordon
 
Getting Started on Amazon EKS
Getting Started on Amazon EKSGetting Started on Amazon EKS
Getting Started on Amazon EKS
Matthew Barlocker
 
Kubernetes or OpenShift - choosing your container platform for Dev and Ops
Kubernetes or OpenShift - choosing your container platform for Dev and OpsKubernetes or OpenShift - choosing your container platform for Dev and Ops
Kubernetes or OpenShift - choosing your container platform for Dev and Ops
Tomasz Cholewa
 
Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...
Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...
Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...
Amazon Web Services
 
Amazon EKS Deep Dive
Amazon EKS Deep DiveAmazon EKS Deep Dive
Amazon EKS Deep Dive
Andrzej Komarnicki
 
Kubernetes 101
Kubernetes 101Kubernetes 101
Kubernetes 101
Crevise Technologies
 
Azure kubernetes service (aks)
Azure kubernetes service (aks)Azure kubernetes service (aks)
Azure kubernetes service (aks)
Akash Agrawal
 
Docker and kubernetes_introduction
Docker and kubernetes_introductionDocker and kubernetes_introduction
Docker and kubernetes_introduction
Jason Hu
 
Best Practices with Azure Kubernetes Services
Best Practices with Azure Kubernetes ServicesBest Practices with Azure Kubernetes Services
Best Practices with Azure Kubernetes Services
QAware GmbH
 
Docker Ecosystem on Azure
Docker Ecosystem on AzureDocker Ecosystem on Azure
Docker Ecosystem on Azure
Patrick Chanezon
 
CI/CD on AWS
CI/CD on AWSCI/CD on AWS
CI/CD on AWS
Amazon Web Services
 
Introducing DevOps
Introducing DevOpsIntroducing DevOps
Introducing DevOps
Nishanth K Hydru
 
OpenShift 4 installation
OpenShift 4 installationOpenShift 4 installation
OpenShift 4 installation
Robert Bohne
 
aks_training_document_Azure_kuberne.pptx
aks_training_document_Azure_kuberne.pptxaks_training_document_Azure_kuberne.pptx
aks_training_document_Azure_kuberne.pptx
WaseemShare
 
ECS and Docker at Okta
ECS and Docker at OktaECS and Docker at Okta
ECS and Docker at Okta
Jon Todd
 

More Related Content

What's hot

Strengthen and Scale Security Using DevSecOps - OWASP Indonesia
Strengthen and Scale Security Using DevSecOps - OWASP IndonesiaStrengthen and Scale Security Using DevSecOps - OWASP Indonesia
Strengthen and Scale Security Using DevSecOps - OWASP Indonesia
Mohammed A. Imran
 
Amazon EKS: Getting Started
Amazon EKS: Getting StartedAmazon EKS: Getting Started
Amazon EKS: Getting Started
Tanya Seno
 
AWS ECS vs EKS
AWS ECS vs EKSAWS ECS vs EKS
AWS ECS vs EKS
Norberto Enomoto
 
Intro to kubernetes
Intro to kubernetesIntro to kubernetes
Intro to kubernetes
Faculty of Technical Sciences, University of Novi Sad
 
Hands-On Introduction to Kubernetes at LISA17
Hands-On Introduction to Kubernetes at LISA17Hands-On Introduction to Kubernetes at LISA17
Hands-On Introduction to Kubernetes at LISA17
Ryan Jarvinen
 
Introduction to Kubernetes Workshop
Introduction to Kubernetes WorkshopIntroduction to Kubernetes Workshop
Introduction to Kubernetes Workshop
Bob Killen
 
Clean Infrastructure as Code
Clean Infrastructure as Code Clean Infrastructure as Code
Clean Infrastructure as Code
QAware GmbH
 
KubeVirt (Kubernetes and Cloud Native Toronto)
KubeVirt (Kubernetes and Cloud Native Toronto)KubeVirt (Kubernetes and Cloud Native Toronto)
KubeVirt (Kubernetes and Cloud Native Toronto)
Stephen Gordon
 
Getting Started on Amazon EKS
Getting Started on Amazon EKSGetting Started on Amazon EKS
Getting Started on Amazon EKS
Matthew Barlocker
 
Kubernetes or OpenShift - choosing your container platform for Dev and Ops
Kubernetes or OpenShift - choosing your container platform for Dev and OpsKubernetes or OpenShift - choosing your container platform for Dev and Ops
Kubernetes or OpenShift - choosing your container platform for Dev and Ops
Tomasz Cholewa
 
Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...
Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...
Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...
Amazon Web Services
 
Amazon EKS Deep Dive
Amazon EKS Deep DiveAmazon EKS Deep Dive
Amazon EKS Deep Dive
Andrzej Komarnicki
 
Kubernetes 101
Kubernetes 101Kubernetes 101
Kubernetes 101
Crevise Technologies
 
Azure kubernetes service (aks)
Azure kubernetes service (aks)Azure kubernetes service (aks)
Azure kubernetes service (aks)
Akash Agrawal
 
Docker and kubernetes_introduction
Docker and kubernetes_introductionDocker and kubernetes_introduction
Docker and kubernetes_introduction
Jason Hu
 
Best Practices with Azure Kubernetes Services
Best Practices with Azure Kubernetes ServicesBest Practices with Azure Kubernetes Services
Best Practices with Azure Kubernetes Services
QAware GmbH
 
Docker Ecosystem on Azure
Docker Ecosystem on AzureDocker Ecosystem on Azure
Docker Ecosystem on Azure
Patrick Chanezon
 
CI/CD on AWS
CI/CD on AWSCI/CD on AWS
CI/CD on AWS
Amazon Web Services
 
Introducing DevOps
Introducing DevOpsIntroducing DevOps
Introducing DevOps
Nishanth K Hydru
 
OpenShift 4 installation
OpenShift 4 installationOpenShift 4 installation
OpenShift 4 installation
Robert Bohne
 

What's hot (20)

Strengthen and Scale Security Using DevSecOps - OWASP Indonesia
Strengthen and Scale Security Using DevSecOps - OWASP IndonesiaStrengthen and Scale Security Using DevSecOps - OWASP Indonesia
Strengthen and Scale Security Using DevSecOps - OWASP Indonesia
 
Amazon EKS: Getting Started
Amazon EKS: Getting StartedAmazon EKS: Getting Started
Amazon EKS: Getting Started
 
AWS ECS vs EKS
AWS ECS vs EKSAWS ECS vs EKS
AWS ECS vs EKS
 
Intro to kubernetes
Intro to kubernetesIntro to kubernetes
Intro to kubernetes
 
Hands-On Introduction to Kubernetes at LISA17
Hands-On Introduction to Kubernetes at LISA17Hands-On Introduction to Kubernetes at LISA17
Hands-On Introduction to Kubernetes at LISA17
 
Introduction to Kubernetes Workshop
Introduction to Kubernetes WorkshopIntroduction to Kubernetes Workshop
Introduction to Kubernetes Workshop
 
Clean Infrastructure as Code
Clean Infrastructure as Code Clean Infrastructure as Code
Clean Infrastructure as Code
 
KubeVirt (Kubernetes and Cloud Native Toronto)
KubeVirt (Kubernetes and Cloud Native Toronto)KubeVirt (Kubernetes and Cloud Native Toronto)
KubeVirt (Kubernetes and Cloud Native Toronto)
 
Getting Started on Amazon EKS
Getting Started on Amazon EKSGetting Started on Amazon EKS
Getting Started on Amazon EKS
 
Kubernetes or OpenShift - choosing your container platform for Dev and Ops
Kubernetes or OpenShift - choosing your container platform for Dev and OpsKubernetes or OpenShift - choosing your container platform for Dev and Ops
Kubernetes or OpenShift - choosing your container platform for Dev and Ops
 
Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...
Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...
Webinar aws 101 a walk through the aws cloud- introduction to cloud computi...
 
Amazon EKS Deep Dive
Amazon EKS Deep DiveAmazon EKS Deep Dive
Amazon EKS Deep Dive
 
Kubernetes 101
Kubernetes 101Kubernetes 101
Kubernetes 101
 
Azure kubernetes service (aks)
Azure kubernetes service (aks)Azure kubernetes service (aks)
Azure kubernetes service (aks)
 
Docker and kubernetes_introduction
Docker and kubernetes_introductionDocker and kubernetes_introduction
Docker and kubernetes_introduction
 
Best Practices with Azure Kubernetes Services
Best Practices with Azure Kubernetes ServicesBest Practices with Azure Kubernetes Services
Best Practices with Azure Kubernetes Services
 
Docker Ecosystem on Azure
Docker Ecosystem on AzureDocker Ecosystem on Azure
Docker Ecosystem on Azure
 
CI/CD on AWS
CI/CD on AWSCI/CD on AWS
CI/CD on AWS
 
Introducing DevOps
Introducing DevOpsIntroducing DevOps
Introducing DevOps
 
OpenShift 4 installation
OpenShift 4 installationOpenShift 4 installation
OpenShift 4 installation
 

Similar to Elastic Kubernetes Services (EKS)

aks_training_document_Azure_kuberne.pptx
aks_training_document_Azure_kuberne.pptxaks_training_document_Azure_kuberne.pptx
aks_training_document_Azure_kuberne.pptx
WaseemShare
 
ECS and Docker at Okta
ECS and Docker at OktaECS and Docker at Okta
ECS and Docker at Okta
Jon Todd
 
Kubernetes on aws
Kubernetes on awsKubernetes on aws
Kubernetes on aws
Yousun Jeong
 
Docker clusters on AWS with Amazon ECS and Kubernetes
Docker clusters on AWS with Amazon ECS and KubernetesDocker clusters on AWS with Amazon ECS and Kubernetes
Docker clusters on AWS with Amazon ECS and Kubernetes
Julien SIMON
 
EKS New features - Re:invent 2022 recap at AWSUGNL Benelux
EKS New features - Re:invent 2022 recap at AWSUGNL BeneluxEKS New features - Re:invent 2022 recap at AWSUGNL Benelux
EKS New features - Re:invent 2022 recap at AWSUGNL Benelux
Masoom Tulsiani
 
Kubernetes integration with ODL
Kubernetes integration with ODLKubernetes integration with ODL
Kubernetes integration with ODL
Prem Sankar Gopannan
 
01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware
01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware
01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware
VMUG IT
 
DevJam 2019 - Introduction to Kubernetes
DevJam 2019 - Introduction to KubernetesDevJam 2019 - Introduction to Kubernetes
DevJam 2019 - Introduction to Kubernetes
Ronny Trommer
 
Kubernetes Basics - ICP Workshop Batch II
Kubernetes Basics - ICP Workshop Batch IIKubernetes Basics - ICP Workshop Batch II
Kubernetes Basics - ICP Workshop Batch II
PT Datacomm Diangraha
 
Kubernetes for Enterprise DevOps
Kubernetes for Enterprise DevOpsKubernetes for Enterprise DevOps
Kubernetes for Enterprise DevOps
Jim Bugwadia
 
Container orchestration k8s azure kubernetes services
Container orchestration k8s azure kubernetes servicesContainer orchestration k8s azure kubernetes services
Container orchestration k8s azure kubernetes services
Rajesh Kolla
 
Eks and fargate
Eks and fargateEks and fargate
Eks and fargate
Asaf Abres
 
AKS
AKSAKS
AKS
girish goudar
 
Kubernetes Introduction & Whats new in Kubernetes 1.6
Kubernetes Introduction & Whats new in Kubernetes 1.6Kubernetes Introduction & Whats new in Kubernetes 1.6
Kubernetes Introduction & Whats new in Kubernetes 1.6
Opcito Technologies
 
Application portability with kubernetes
Application portability with kubernetesApplication portability with kubernetes
Application portability with kubernetes
Oleg Chunikhin
 
Pro2516 10 things about oracle and k8s.pptx-final
Pro2516 10 things about oracle and k8s.pptx-finalPro2516 10 things about oracle and k8s.pptx-final
Pro2516 10 things about oracle and k8s.pptx-final
Michel Schildmeijer
 
DevConf.cz - Introduction to Kubernetes Operators for Databases
DevConf.cz - Introduction to Kubernetes Operators for DatabasesDevConf.cz - Introduction to Kubernetes Operators for Databases
DevConf.cz - Introduction to Kubernetes Operators for Databases
Juarez Junior
 
Centralizing Kubernetes and Container Operations
Centralizing Kubernetes and Container OperationsCentralizing Kubernetes and Container Operations
Centralizing Kubernetes and Container Operations
Kublr
 
DevNetCreate - ACI and Kubernetes Integration
DevNetCreate - ACI and Kubernetes IntegrationDevNetCreate - ACI and Kubernetes Integration
DevNetCreate - ACI and Kubernetes Integration
Hank Preston
 
Aws container webinar day 1
Aws container webinar day 1Aws container webinar day 1
Aws container webinar day 1
HoseokSeo7
 

Similar to Elastic Kubernetes Services (EKS) (20)

aks_training_document_Azure_kuberne.pptx
aks_training_document_Azure_kuberne.pptxaks_training_document_Azure_kuberne.pptx
aks_training_document_Azure_kuberne.pptx
 
ECS and Docker at Okta
ECS and Docker at OktaECS and Docker at Okta
ECS and Docker at Okta
 
Kubernetes on aws
Kubernetes on awsKubernetes on aws
Kubernetes on aws
 
Docker clusters on AWS with Amazon ECS and Kubernetes
Docker clusters on AWS with Amazon ECS and KubernetesDocker clusters on AWS with Amazon ECS and Kubernetes
Docker clusters on AWS with Amazon ECS and Kubernetes
 
EKS New features - Re:invent 2022 recap at AWSUGNL Benelux
EKS New features - Re:invent 2022 recap at AWSUGNL BeneluxEKS New features - Re:invent 2022 recap at AWSUGNL Benelux
EKS New features - Re:invent 2022 recap at AWSUGNL Benelux
 
Kubernetes integration with ODL
Kubernetes integration with ODLKubernetes integration with ODL
Kubernetes integration with ODL
 
01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware
01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware
01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware
 
DevJam 2019 - Introduction to Kubernetes
DevJam 2019 - Introduction to KubernetesDevJam 2019 - Introduction to Kubernetes
DevJam 2019 - Introduction to Kubernetes
 
Kubernetes Basics - ICP Workshop Batch II
Kubernetes Basics - ICP Workshop Batch IIKubernetes Basics - ICP Workshop Batch II
Kubernetes Basics - ICP Workshop Batch II
 
Kubernetes for Enterprise DevOps
Kubernetes for Enterprise DevOpsKubernetes for Enterprise DevOps
Kubernetes for Enterprise DevOps
 
Container orchestration k8s azure kubernetes services
Container orchestration k8s azure kubernetes servicesContainer orchestration k8s azure kubernetes services
Container orchestration k8s azure kubernetes services
 
Eks and fargate
Eks and fargateEks and fargate
Eks and fargate
 
AKS
AKSAKS
AKS
 
Kubernetes Introduction & Whats new in Kubernetes 1.6
Kubernetes Introduction & Whats new in Kubernetes 1.6Kubernetes Introduction & Whats new in Kubernetes 1.6
Kubernetes Introduction & Whats new in Kubernetes 1.6
 
Application portability with kubernetes
Application portability with kubernetesApplication portability with kubernetes
Application portability with kubernetes
 
Pro2516 10 things about oracle and k8s.pptx-final
Pro2516 10 things about oracle and k8s.pptx-finalPro2516 10 things about oracle and k8s.pptx-final
Pro2516 10 things about oracle and k8s.pptx-final
 
DevConf.cz - Introduction to Kubernetes Operators for Databases
DevConf.cz - Introduction to Kubernetes Operators for DatabasesDevConf.cz - Introduction to Kubernetes Operators for Databases
DevConf.cz - Introduction to Kubernetes Operators for Databases
 
Centralizing Kubernetes and Container Operations
Centralizing Kubernetes and Container OperationsCentralizing Kubernetes and Container Operations
Centralizing Kubernetes and Container Operations
 
DevNetCreate - ACI and Kubernetes Integration
DevNetCreate - ACI and Kubernetes IntegrationDevNetCreate - ACI and Kubernetes Integration
DevNetCreate - ACI and Kubernetes Integration
 
Aws container webinar day 1
Aws container webinar day 1Aws container webinar day 1
Aws container webinar day 1
 

More from sriram_rajan

Containers and security
Containers and securityContainers and security
Containers and security
sriram_rajan
 
Cloudinit
CloudinitCloudinit
Cloudinit
sriram_rajan
 
Unlocked 2014 onmetal and docker
Unlocked 2014 onmetal and dockerUnlocked 2014 onmetal and docker
Unlocked 2014 onmetal and docker
sriram_rajan
 
DevOps Toolbox: Infrastructure as code
DevOps Toolbox: Infrastructure as codeDevOps Toolbox: Infrastructure as code
DevOps Toolbox: Infrastructure as code
sriram_rajan
 
DevOps Toolbox: Application monitoring and insights
DevOps Toolbox: Application monitoring and insightsDevOps Toolbox: Application monitoring and insights
DevOps Toolbox: Application monitoring and insights
sriram_rajan
 
DevOps Meetup ansible
DevOps Meetup ansibleDevOps Meetup ansible
DevOps Meetup ansible
sriram_rajan
 
Openstack & rackspace – yesterday, today and tomorrow
Openstack & rackspace – yesterday, today and tomorrow Openstack & rackspace – yesterday, today and tomorrow
Openstack & rackspace – yesterday, today and tomorrowsriram_rajan
 

More from sriram_rajan (7)

Containers and security
Containers and securityContainers and security
Containers and security
 
Cloudinit
CloudinitCloudinit
Cloudinit
 
Unlocked 2014 onmetal and docker
Unlocked 2014 onmetal and dockerUnlocked 2014 onmetal and docker
Unlocked 2014 onmetal and docker
 
DevOps Toolbox: Infrastructure as code
DevOps Toolbox: Infrastructure as codeDevOps Toolbox: Infrastructure as code
DevOps Toolbox: Infrastructure as code
 
DevOps Toolbox: Application monitoring and insights
DevOps Toolbox: Application monitoring and insightsDevOps Toolbox: Application monitoring and insights
DevOps Toolbox: Application monitoring and insights
 
DevOps Meetup ansible
DevOps Meetup ansibleDevOps Meetup ansible
DevOps Meetup ansible
 
Openstack & rackspace – yesterday, today and tomorrow
Openstack & rackspace – yesterday, today and tomorrow Openstack & rackspace – yesterday, today and tomorrow
Openstack & rackspace – yesterday, today and tomorrow
 

Recently uploaded

UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
DianaGray10
 
Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
Alan Dix
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Albert Hoitingh
 
PCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase TeamPCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase Team
ControlCase
 
How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...
Product School
 
The Future of Platform Engineering
The Future of Platform EngineeringThe Future of Platform Engineering
The Future of Platform Engineering
Jemma Hussein Allen
 
GraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge GraphGraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge Graph
Guy Korland
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
DianaGray10
 
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
BookNet Canada
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
91mobiles
 
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Product School
 
Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !
KatiaHIMEUR1
 
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
Product School
 
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualitySoftware Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Inflectra
 
The Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and SalesThe Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and Sales
Laura Byrne
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
OnBoard
 
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
UiPathCommunity
 
Generating a custom Ruby SDK for your web service or Rails API using Smithy
Generating a custom Ruby SDK for your web service or Rails API using SmithyGenerating a custom Ruby SDK for your web service or Rails API using Smithy
Generating a custom Ruby SDK for your web service or Rails API using Smithy
g2nightmarescribd
 
Knowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and backKnowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and back
Elena Simperl
 
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
Product School
 

Recently uploaded (20)

UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
 
Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
 
PCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase TeamPCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase Team
 
How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...
 
The Future of Platform Engineering
The Future of Platform EngineeringThe Future of Platform Engineering
The Future of Platform Engineering
 
GraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge GraphGraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge Graph
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
 
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
 
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...
 
Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !
 
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
 
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualitySoftware Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
 
The Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and SalesThe Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and Sales
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
 
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
 
Generating a custom Ruby SDK for your web service or Rails API using Smithy
Generating a custom Ruby SDK for your web service or Rails API using SmithyGenerating a custom Ruby SDK for your web service or Rails API using Smithy
Generating a custom Ruby SDK for your web service or Rails API using Smithy
 
Knowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and backKnowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and back
 
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
 

Elastic Kubernetes Services (EKS)

  • 1. JUNE FANATICAL SUPPORT FOR AWS CUSTOMER WEBINAR: AMAZON EKS
  • 2. • WARNING : This session will be recorded !
  • 4. 4 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
  • 5. 5 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
  • 6. 6 CONTAINER VS VM Host OS Hypervisor App A Binaries Guest OS (Windows) App B Binaries Guest OS (Linux) Host OS Container Engine App A Binaries OS Image (Ubuntu) App B Binaries OS image (Red Hat) The same Host Kernel VM CONTAINER Hardware Emulation
  • 7. 7 THE ECOSYSTEM Container PaaS A software package that contains everything the software needs to run; executables system tools, libraries, and settings. • Docker • LXC Container Orchestration Container Automating the process of deploying multiple containers to implement an application • Docker Swarm • Apache Mesos • Kubernetes A platform as-a-service that provides a fully managed container platform • AWS EKS • GKE (Google Kubernetes Engine) • RedHat OpenShift
  • 8. 8 THE CONTAINER BENEFITS • Look Cool – The cool kids are doing this. • Consistency - Predictable environments that include software dependencies such as specific versions of programming language runtimes and other software • Portability – Consistency drives the portability no matter where the application is ultimately deployed • Faster – Low overhead ensures faster boot time (order of seconds) • Better Economics – Lower overhead than a VM ensures better hardware use
  • 9. 9 DOCKER BASICS Docker Client docker pull Dockerfile docker build docker run Docker Registry Docker Hub docker push Docker Host docker daemon docker API Running containers
  • 11. 11 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
  • 12. 12 WHAT IS KUBERNETES § K.1.2.3.4.5.6.7.8.s (k8s) § Ancient Greek for “Pilot” or ”Helmsman” § Google’s opinionated Container management framework
  • 13. 13 IT IS MORE THAN GOOGLE • Open source (Apache 2.0 license) • Part of CNCF (Cloud Native Computing Foundation) • RedHat , IBM, Vmware, Pivotal & Microsoft are contributing to it
  • 14. 14 AND IS WINNING… § The Container Management Battle • Google has support for K8s • Docker has support for K8s • AWS has support for K8s • Azure has support for K8s • Red Hat Openshift uses K8s
  • 15. 15 KUBERNETES DESIGN GOALS § Primary goal is distributed micro services § But can cater for more traditional or stateful services • Concept of statefulsets in 1.9/1.10 (persistent storage, graceful deployment and termination, network identifiers)
  • 16. 16 KUBERNETES DESIGN PRINCIPLES § Application defines/declares desired state, K8s maintains it § Lots of primitives to help with container-centric infrastructure • Scheduling • Auto-restarting/Auto-healing • Application monitoring • Service discovery & naming • Secret management • Storage
  • 17. 17 EXTENSIBLE • Extensible – API for Plugins • Calico/Flannel – Overlay networks • CoreDNS – Service discovery using DNS
  • 18. 18 K8S DESIGN 18 Good to know but not critical if you are an end user consuming a K8s PaaS like Google GKE or AWS EKS API SERVER etcd SCHEDULER CONTROLLER MANAGER Master KUBELET KUBEPROXY CADVISOR Node PLUGINS KUBELET KUBEPROXY CADVISOR Node PLUGINS Cluster Architecture KUBECTL Developer Operator KOPS
  • 19. 19 KUBERNETES CLUSTER ARCHITECTURE § Master – Runs the control plane and is the heart of the system • Etcd – Configuration and metadata store • API server – REST based API • Scheduler – Schedules Activites (Pods etc) • Controller Manager server – Cluster operations (adding nodes) • Minion – The worker nodes • Cluster – Master + Minions
  • 20. 20 KUBERNETES CLUSTER ARCHITECTURE § Kubelet - Agent that runs on nodes and provides the execution arm for activities (e.g deploying pods) § Kube-proxy – Network proxy for load balancing, port mapping § cAdvisor – Container advisor. Resource usage and performance characteristics of running containers § Kubectl – Kubernetes CLI (cluster management and deployment) § Kops – Kubernetes cluster manager
  • 21. 21 21 KUBERNETES CONCEPTS & TERMINOLOGY Deployment: auth Image - auth:stable Replicas - 10 Container Port - 10080 Label -app:auth Pod: auth-fm8lzPod: auth-qwc4df Deployments - Declares desired state for Pods & ReplicaSets. Pods - Runs of one or more containers. Basic building block ReplicaSets - Ensures that a specified number of pods are running Service: auth Port: 80 Node Port: <service> Target Port : 10080 DNS: auth.default.cluster.local IP: X.X.X.X or LoadBalancer :a469bd69f-XXXXX.us-west- 2.elb.amazonaws.com Services – Services binds deployments into a “service” • Creates Endpoints or load balancer • Auto-update service with DNS Names and SRV records • Updates resources whenever Pods in it change Labels & Label Selectors - Labels are key value pairs for identifying objects. Label sector matches labels to rules E.g. environment = production && application = auth
  • 22. 22 22 Deployment: auth Image - auth:stable Replicas - 10 Container Port - 10080 Label -app:auth Pod: auth-fm8lzPod: auth-qwc4df Service: auth IP: 1.1.1.1 or LoadBalancer :a469bd69f-XXXXX.us-west- 2.elb.amazonaws.com Namespace: dev Deployment: auth Image - auth:stable Replicas - 10 Container Port - 10080 Label -app:auth Pod: auth-fm8lzPod: auth-qwc4df Service: auth Port: 80 Node Port: <service> Target Port : 10080 DNS: auth.prod.cluster.local IP: 2.2.2.2 or LoadBalancer :6rtfj5i9bd69f-XXXXX.us-west- 2.elb.amazonaws.com Namespace: prod Port: 80 Node Port: <service> Target Port : 10080 DNS: auth.dev.cluster.local Namespaces –Logical environments inside the same physical cluster Typically used with different teams or different environments (staging/production) Services can have same names across namespaces DNS entries are updated in relation to namespaces KUBERNETES CONCEPTS & TERMINOLOGY
  • 23. 23 KUBERNETES CONCEPTS & TERMINOLOGY § StatefulSet - Introduced in version 1.10 and is like a deployment but provides guarantees about the ordering and uniqueness of these Pods (Sticky identity) § DaemonSets – Run something on every node. E.g Log collection or storage daemon § Job – Creates one of more Pods and ensures a specified number are successful. Can be used to run multiple pods in parallel
  • 24. 24 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
  • 25. 25 EKS (MANAGED KUBERNETES) § Fully managed Kubernetes cluster § High availability § Managed Upgrades § Automatically detects and replaces unhealthy masters § Integrated § IAM Support § VPC Support § Autoscale models § Cloudwatch & Cloudtrail support
  • 26. 26 EKS (MANAGED KUBERNETES) § Certified Kubernetes Conformant § https://github.com/cncf/k8s-conformance § Kubernetes versions • Currently 1.10 • Choice of 3 most recent versions (going forward) • All the existing plugins and tooling from the Kubernetes community supported on your workers § Open source theme § Many components are open source
  • 27. 27 EKS PRICING • $0.20 per hour per cluster (About 144 per month) • You also pay for worker node resources - EC2 (instance sizes, reserved instances) - EBS (Elastic Block Storage) - Load balancer - Bandwidth
  • 28. 28 EKS CLUSTER CREATION Prerequisites Provision cluster Provision worker nodes Node Registration Add-ons - IAM Role for EKS - VPC with two AZs - Public + private subnets - Security group - Kubectl - Cluster name - Version - IAM role - VPC and Subnets - Security Groups - EC2 instances - Count - Autoscale configuration - VPC and Subnets - Security Groups - Apply configuration map - Network plugins - Storage profiles - etc
  • 29. 30 EKS NETWORKING • A new open source VPC plugin – CNI (Container Network Interface) - Allows pods to have the same IP address as they do on the VPC network - Can be used with EC2 based K8s • This plugin does the following - Attaches network interfaces and allocates IPs to the K8s nodes - Maintains a "warm pool" of IP addresses for assignment - Configures networking on each node - Use Iptables at the host level for NAT etc (yes, it does)
  • 30. 31 EKS NETWORKING - CALICO • Support for Calico, a network policy engine for Kubernetes • Enables the implementation of network segmentation and tenant isolation - E.g. To separate the same cluster from different environments • Works similar to security groups - Create network ingress and egress rules, - Assign network policies - But applies to pods using pod selectors and labels
  • 31. 32 EKS USER MANAGEMENT • Two part auth; AWS IAM + K8s RBAC • Uses Heptio authenticator plugin • User creation steps - Create an IAM User or Role - Edit K8s config map to add to the K8s environment - Add IAM User or Role - Apply RBAC permissions
  • 32. 33 EKS AUTOSCALING Deployments • Scaling Control Plane • Transparently managed by AWS Worker Nodes Cluster • Same as EC2 autoscaling. • Autoscale policies (e.g. using CPU or RAM) • Pod Autoscaler (Horizontal scaling) • Needs to be designed in conjunction
  • 33. 34 EKS LIMITATIONS & CONSIDERATIONS • US West (Oregon) and US East (N.Virginia) only • Limitations with ELB - Native support for classic type - Beta support for the application load balancer - Alpha support for the network load balancer • Limits to secondary IPs by instance types - Impacts your Pod architecture
  • 34. 35 EKS LIMITATIONS & CONSIDERATIONS • No Cloudwatch for the Cluster - You can use your own plugins • Security groups work at the ENI level and not the Pod level. Limits isolation between Pods. - Plugins like Calico can help overcome this • Persistent volumes are limited to block(EBS). No EFS support. • No Fargate support - Roadmap item for 2018
  • 35. 36 EKS(CONTAINER) BEST PRACTICES • 12-factor app; https://12factor.net/ Best practices for micro-services • Have a logging strategy; i.e. consolidate logs from start - Send application logs to Stdout and Stderr
  • 36. 37 EKS BEST PRACTICES • Use separate clusters for environment separation • Design networking requirements to match EC2 limits • Autoscale models need to be careful consideration (Deployments + EC2 autoscale) • Version control Kubernetes configuration files • Use Kubernetes labels and match them with AWS tags
  • 37. 38 EKS FURTHER READING PLAYING • https://github.com/aws-samples/aws-workshop-for-kubernetes • https://kubernetes.io/docs/setup/minikube/
  • 38. 39 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
  • 39. 40 ECR • Very simple service • Same as Docker Hub • Highly available Docker repository • Integrated into IAM • Lifecycle policies
  • 40. 41 ECR • Only pay for data stored and the network transfer • Can be used with on-premise Docker setups (with AWS cli) • No public images (needs an IAM user) • No private VPC endpoints (you are accessing over a public HTTPS interface)
  • 41. 42 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A (You can ask questions in chat at anytime)
  • 42. 43 AWS CONTAINER ECOSYSTEM DIY EC2 ECS EKS Fargate Cluster management Customer managed AWS managed AWS managed AWS managed Cluster Control Full Partial Partial None Instance(worker node) Management Customer managed Customer managed Customer managed AWS managed Instance control Full Full Full None Docker control Full Full Full Limited Container orchestration You decide AWS proprietary and open source schedulers Kubernetes and open source schedulers AWS proprietary Pricing model EC2 instances, EBS volumes EC2 instances, EBS volumes EKS control plane costs, EC2 instances, EBS volumes ECS Tasks Administrative Overhead Clusters, Worker Nodes, Containers Worker Nodes, Containers Worker Nodes, Containers Containers Typical use cases • Highest degree of control • Bleeding edge options • Portable (assuming no other AWS integration) • Fully functional micro- services • Mix and Match with Fargate • Fully functional micro- services • Cross platform/clouds • On demand jobs • Small micro-services • Mix and Match with ECS • EKS support coming soon
  • 43. 44 RACKSPACE & CONTAINERS • ECS • Already in our spheres of management • EKS - We are working on • Finishing support enablement & internal documentation • Finalizing our spheres of management document • Managed Kubernetes • Launched managed Kubernetes on OpenStack. • Roadmap to extend that to cloud platforms • Professional Services • Application transformation services to build container-based architecture
  • 44. 45 AGENDA • Introduction & Recap • Kubernetes • EKS • ECR • AWS & CONTAINERS • Q & A Slides and Recording will be shared