Boskey Savla, profile picture
Uploaded byBoskey Savla
PPTX, PDF500 views

Enterprise pks overview

The document discusses VMware Enterprise PKS, a turnkey solution for deploying and managing Kubernetes clusters in production environments. It addresses common challenges in running Kubernetes at scale, such as complexity, networking, storage, monitoring, logging, and security. VMware Enterprise PKS provides capabilities like on-demand cluster provisioning, integration with NSX-T for networking and security, persistent storage options, and monitoring and logging tools from the VMware portfolio. The solution aims to simplify operations of Kubernetes and provide an enterprise-grade platform for running containerized workloads.

Embed presentation

Downloaded 41 times
©2019 VMware, Inc. Run and Operationalize Kubernetes in Production VMware Enterprise PKS Overview February 2019
Confidential │ ©2019 VMware, Inc. 22 Enterprises are Embracing Cloud Native Methodology Container technology is being adopted across all industries Increase Developer Productivity Deliver Better Customer Experiences Accelerate Time-to-Market Gain Operational Efficiency
Confidential │ ©2019 VMware, Inc. 33Confidential │ ©2018 VMware, Inc. Kubernetes has Become the De Facto Container Orchestrator Source: Cloud native Computing Foundation User Survey 2018 0% 10% 20% 30% 40% 50% 60% 70% 80% 90% Kubernetes Docker Mesos
Confidential │ ©2019 VMware, Inc. 44Confidential │ ©2018 VMware, Inc. Challenges of Running Kubernetes in Production Source: Cloud native Computing Foundation User Survey 2018 0% 5% 10% 15% 20% 25% 30% 35% 40% 45% VMware Enterprise PKS Addresses These Challenges
5©2019 VMware, Inc. VMware Enterprise PKS
©2019 VMware, Inc. VMware Enterprise PKS • Deploy clusters on demand • Simplified Patching, Upgrading, Scaling • Integration with platform pipeline Easy to Use and Maintain • NSX-T Micro- segmentation • Rotate, Repair, Repave • Image CVE scanning, Content Trust Highly Secure by Default • Wavefront • vRealize Log Insight • Network Insight • vRealize Automation • Prometheus, Jaeger, Grafana, Istio • Cluster as a unit of tenancy • Namespace as a unit of tenancy • LDAP/AD Integration Flexible Multi-Tenancy • Health Monitoring and Self-healing • Kubernetes manages app layer availability • BOSH manages infra/cluster layer availability Highly Available “Dial Tone” Kubernetes Highly Integrated Ecosystem VMware Enterprise PKS is a turnkey solution for organizations that want to deploy and operate an integrated, validated upstream Kubernetes footprint
©2019 VMware, Inc. 7 Kubernetes is Only One Layer of the Container Service Stack Image Registry Framework Lifecycle Management Security and Networking Persistence Virtual Infrastructure Physical Infrastructure Monitoring,Logging,Analytics Cluster Health Monitoring, Healing and Lifecycle Management Scheduling, Orchestration, Service Creation vSAN, Hatchway vSphere Physical Infrastructure NSX-T Enterprise PKS Control Plane BOSH (cluster LCM) Kubernetes Harbor vRealizeSuite
©2019 VMware, Inc. 8 BOSH NSX-T Service Brokers etcd worker etcd workermaster PKS Control Plane Kubernetes Cluster VMware Enterprise PKS Security Container Registry master Kubernetes Cluster vRealize Automation vRealize Log Insight vRealize Operations vRealize Network Insight Wavefront by VMware VMware Enterprise PKS: Marketecture vSphere vSAN Public Clouds Public Cloud Storage
Confidential │ ©2019 VMware, Inc. Who is VMware Enterprise PKS Built For? IT Operator – PRE (Platform Reliability Engineering) – Deploy, Scale, Operate VMware PKS – Physical Infrastructure is Operated – Network & Security Control Policy is defined • Developers – Writes code, code deployed using CI/CD – Focus on business problems and innovation • Application Dev/Ops owner – Automate Everything – Agile – Serve developers • Platform Reliability Engineers – Platform is Reliable – Capacity Is planned for – Platform is Secured & Controlled – Platform is Auditable Application Dev/Ops Owner Platform Reliability Engineer Developers – Develop, Deploy, Scale, Monitor Apps – Innovation of Business Capability as Cloud native Apps – Create K8s cluster, scale clusters and maintain the health customers – Provide developer access to the cluster
Confidential │ ©2019 VMware, Inc. 1010Confidential │ ©2018 VMware, Inc. A turnkey solution to provision, operate and manage enterprise grade Kubernetes clusters VMware Enterprise PKS Latest stable native Kubernetes, CNCF certified Production-grade Kubernetes based container platform Deep integration with NSX-T for networking and security Globally supported on vSphere, GCP, AWS, and Azure Secure, enterprise-grade container registry Consistent infrastructure for traditional and modern applications
11©2019 VMware, Inc. Addressing the Common Kubernetes Challenges Complexity Scaling Deployment Networking Storage Monitoring & Logging Security
Confidential │ ©2019 VMware, Inc. 1212Confidential │ ©2018 VMware, Inc. • Constant monitoring and self-healing of VMs • Easy scaling and patching for clusters • Rolling upgrades to latest Kubernetes release • High availability and multi-AZ support VMware Enterprise PKS Simplifies “Day 1” and “Day 2” of Kubernetes Clusters • Deploy Kubernetes cluster on demand • Simple API and CLI interface Day 2 “Operate” Day 1 “Build”
Confidential │ ©2019 VMware, Inc. 1313Confidential │ ©2018 VMware, Inc. IaaS Node Node Kubernetes Cluster Services API Cluster3 NSX-T vSphere VMware PKS includes: • VMWare PKS Control Plane, CFCR • NSX-T, Harbor, Service Broker • BOSH Release for Kubernetes • Configures Day 1 of - CFCR - vSphere/Public Clouds - NSX Integration - Harbor • Manages Day 2 of Kubernetes Clusters - Scaling - Patching - Upgrades - Failures CFCR Kubernetes (As a BOSH Release) BOSH (Deploys/Manages VMs & state) CPI CNI Harbor Private Container Registry The value of BOSH VMware Enterprise PKS - “How it Works” Node Node Node Kubernetes Cluster Services API Node Node Node Kubernetes Cluster Services API Node Cluster1 Cluster2 Service Broker (s) API #pks create-cluster K8s-1 -n 3#pks create-cluster K8s-2 -n 3#pks create-cluster K8s-3 -n 3#pks resize K8s-3 –n 5 VMware PKS Control Plane VM VM VM VM VM VM VM VM VM Node Node Kubernetes Cluster Services API Cluster3 Node Node Node VM VM VM VM VM
14©2019 VMware, Inc. Addressing the Common Kubernetes Challenges Complexity Scaling Deployment Networking Storage Monitoring & Logging Security
Confidential │ ©2019 VMware, Inc. 1515Confidential │ ©2018 VMware, Inc. Best-in-Class Kubernetes Networking with NSX-T NSX-T is included in VMware Enterprise PKS to enable • Networking virtualization and automation for Kubernetes • Complete set of Layer 2 through Layer 7 networking services • Pod-level networking and micro-segmentation • Rich set of management and troubleshooting tools • Layer 4 load balancer (not just layer 7 load balancer) for supporting a wider range of applications • Security policy that can apply to both your containers and VMs workloads
Confidential │ ©2019 VMware, Inc. 1616Confidential │ ©2018 VMware, Inc. Canal Comparing NSX-T to Open Source Networking Options L2 L3 (North/South) L4 – Security Policy Load Balancing VM & K8s Connectivity End-to-End Configuration & troubleshooting Ops tools & central stats Flannel L2 only (East/West Pod Traffic) Calico L3/L4 (IP Tables) NGINX/HA Proxy Load balancing No End-to-End configuration & troubleshooting New ops tools + Different locations for stats NSX-T Only for Kubernetes Networking
Confidential │ ©2019 VMware, Inc. 1717 Container Networking & Security Operations NSX-T Operational Tools • Traceflow • Port Mirroring • Port Connection Tool • Spoofguard • Syslog • Port Counters • IPFIX 17 NSX-T Traceflow With NSX-T you are gain deep visibility into the container networks, and you can use the same troubleshooting tools we created for VM based workloads
18©2019 VMware, Inc. Addressing the Common Kubernetes Challenges Complexity Scaling Deployment Networking Storage Monitoring & Logging Security
Confidential │ ©2019 VMware, Inc. 19 Persistent Storage with Kubernetes • You need a storage platform with the right Cloud Provider (Storage Plugin) for Kubernetes • You must configure the Kubernetes Cluster and all the nodes – Configuration Management everywhere • Available features & functionality dictated by storage platform keeping up with Kubernetes releases • Maintaining the “Platform” over time – Update all your configuration management – End-to-end Testing (Compatibility of System) – High risk of snowflakes Must have available Kubernetes Cloud Provider Node Node Node Kubernetes Cluster Services API V V V CP CP CP CP Storage Platform VM VM VM
Confidential │ ©2019 VMware, Inc. 20 VMware Enterprise PKS Provides Persistent Storage for Running Stateful Apps on Kubernetes • Entire HCL of storage products under vSphere Supported with Kubernetes • Operational Consistency - Existing Storage Operations, Tooling, and SPBM • Self Service Storage provisioning through Storage Class Mapping to SPBM Policies • VMware Enterprise PKS delivers the consistent, repeatable configuration & maintenance of Hatchway Kubernetes Consumption • Storage Class = Regular • Storage Class = Fast • Storage Class = Encrypted • Storage Class = Dedup • Storage Class = … K8s API SPBM • Thin • SSD • Encrypted • Dedup • … vSphere Any Supported Storage on HCL vSAN|VMFS|NFS Datastore Project Hatchway https://github.com/vmware/hatchway
21©2019 VMware, Inc. Addressing the Common Kubernetes Challenges Complexity Scaling Deployment Networking Storage Monitoring & Logging Security
Confidential │ ©2019 VMware, Inc. 2222Confidential │ ©2018 VMware, Inc. Automated deployment & configuration from infrastructure to applications Monitoring & Logging at Scale with VMware Integration Infra K8s Containers Apps Application Dev/Ops Owner Platform Reliability Engineer vRLI vRops Wavefront
Confidential │ ©2019 VMware, Inc. Wavefront & VMware Enterperise PKS Integration K8s Monitoring Integration w/ Wavefront by VMware • Pre-Integrated with VMware PKS • Predefined K8s Alerts • Comprehensive Dashboards • Self-Service Metrics Analytics for both Developers and Operators Platform Reliability Engineer Application Dev/Ops Owner Troubleshoot Issues at Cloud Speed Trend & Alert on Anomalies Visualize Cloud Apps at Hyperscale
Confidential │ ©2019 VMware, Inc. 2424Confidential │ ©2018 VMware, Inc. Wavefront + VMware Enterprise PKS Dashboard
Confidential │ ©2019 VMware, Inc. vRealize Log Insight and VMware Enterprise PKS Integration K8s Logging Integration w/ vRealize Log Insight • Configured via VMware PKS Tile • Aggregates, Tags, & Ships all logs to vRLI • Searchable tags: Cluster, Pod, Namespace, Container • SSL Encryption of Data in Transit • Log Ingestion Rate Limiting vRLI Master / Worker Nodes Logs K8s Cluster Events POD StdOut & StdErr vRLI Interactive Analytics
26©2019 VMware, Inc. Addressing the Common Kubernetes Challenges Complexity Scaling Deployment Networking Storage Monitoring & Logging Security
Confidential │ ©2019 VMware, Inc. VMware Enterprise PKS Provides Container Security at all levels from infrastructure to Application Infrastructure StorageCompute Networking Container Mgmt. NameSpace vSphere Google Cloud Platform Hybrid NameSpace NameSpace NameSpace Container Mgmt. NameSpace NameSpace NameSpace Operator admin IAM • Role Based Access Control (RBAC) • Identity Management • Credential Stores Events & Monitoring • Incident Reporting • Event Management • Full Stack Monitoring Build Pipelines NameSpace Platform LCM Kubernetes Cluster Kubernetes Cluster Apps Apps Micro- service Micro- service Micro- service Micro- service Micro- service Micro- service Micro- service Micro- service Platform LCM • Repair • Repave • Rotate Container Management • Vulnerability Scanning • Content Trust • Centralized Policy Control Infrastructure • Cluster Segmentation • Flow Tracing • NameSpace Segmentation LDAP/AD Integration IAM VNFM WaveFront vRealize Operations Monitoring VNFM WaveFront App Monitoring
Confidential │ ©2019 VMware, Inc. • user management & access control • role-based access control • AD/LDAP integration • Security vulnerability scanning (Clair) • content trust - image signing • policy based image replication • audit and logs • Restful API • open-source under Apache 2 license Harbor – Enterprise Grade Private Registry Project Harbor was accepted into CNCF as its first container registry open source project
Confidential │ ©2019 VMware, Inc. 2929Confidential │ ©2018 VMware, Inc. Why VMware Enterprise PKS? Entire Lifecycle of the Kubernetes Clusters Latest Stable Open Source Kubernetes Multiple Clusters On-Demand Best-in-Class Kubernetes Networking End-to-End K8s Infrastructure Provisioning Enterprise Private Container Registry Persistent Storage Integrates With VMware SDDC & Multi-Cloud
©2019 VMware, Inc. Thank You Please email any questions to PowerPoint@vmware.com

More Related Content

PPTX
Pivotal Container Service Overview
byVMware Tanzu
 
PPTX
Run Stateful Apps on Kubernetes with VMware PKS - Highlight WebLogic Server
bySimone Morellato
 
PPTX
Fabio rapposelli pks-vmug
byVMUG IT
 
PDF
Kube Your Enthusiasm - Paul Czarkowski
byVMware Tanzu
 
PDF
PKS: The What and How of Enterprise-Grade Kubernetes
byVMware Tanzu
 
PPTX
Hitting the Enterprise Sweet Spot—A Real-World View of PKS Deployment and Suc...
byVMware Tanzu
 
PDF
Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...
byconfluent
 
PDF
VMware Tanzu Introduction- June 11, 2020
byVMware Tanzu
 
Pivotal Container Service Overview
byVMware Tanzu
 
Run Stateful Apps on Kubernetes with VMware PKS - Highlight WebLogic Server
bySimone Morellato
 
Fabio rapposelli pks-vmug
byVMUG IT
 
Kube Your Enthusiasm - Paul Czarkowski
byVMware Tanzu
 
PKS: The What and How of Enterprise-Grade Kubernetes
byVMware Tanzu
 
Hitting the Enterprise Sweet Spot—A Real-World View of PKS Deployment and Suc...
byVMware Tanzu
 
Deploying Kafka on vSphere with Kubernetes Using the Confluent Operator (Just...
byconfluent
 
VMware Tanzu Introduction- June 11, 2020
byVMware Tanzu
 

What's hot

PDF
Concourse, Spinnaker, Cloud Foundry, Oh My! Creating Sophisticated Deployment...
byVMware Tanzu
 
PDF
Pivotal Platform: A First Look at the October Release
byVMware Tanzu
 
PDF
Cloud-Native Operations with Kubernetes and CI/CD
byVMware Tanzu
 
PDF
Unlock Sustainable Kubernetes Services for TAS
byVMware Tanzu
 
PDF
Pivotal Developer-Ready Infrastructure Slides
byVMware Tanzu
 
PDF
Pivotal Platform - December Release A First Look
byVMware Tanzu
 
PDF
vSphere with Kubernetes Virtual Event- June 16, 2020
byVMware Tanzu
 
PPTX
Building Developer Pipelines with PKS, Harbor, Clair, and Concourse
byVMware Tanzu
 
PDF
Tanzu Standard
byVMware Tanzu
 
PDF
Migrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKS
byWeaveworks
 
PPTX
From Pivotal to VMware Tanzu: What you need to know
byVMware Tanzu
 
PDF
Packaging and Distributing Applications for Kubernetes
byVMware Tanzu
 
PDF
Pivotal Cloud Foundry 2.6: A First Look
byVMware Tanzu
 
PDF
Kubernetes 1.21 release
byLibbySchulze
 
PPTX
VMworld 2015: Build and Run Cloud Native Apps in your Software Defined Data C...
byVMworld
 
PPTX
Kubernetes for the VI Admin
byKendrick Coleman
 
PDF
2009-dec02_Dell
byAgora Group
 
PDF
Modern Application Configuration in Kubernetes
byVMware Tanzu
 
PDF
Devops lifecycle with Kabanero Appsody, Codewind, Tekton
byWinton Winton
 
PPTX
VMworld 2015: Containers without Compromise - Persistent Storage for Docker C...
byVMworld
 
Concourse, Spinnaker, Cloud Foundry, Oh My! Creating Sophisticated Deployment...
byVMware Tanzu
 
Pivotal Platform: A First Look at the October Release
byVMware Tanzu
 
Cloud-Native Operations with Kubernetes and CI/CD
byVMware Tanzu
 
Unlock Sustainable Kubernetes Services for TAS
byVMware Tanzu
 
Pivotal Developer-Ready Infrastructure Slides
byVMware Tanzu
 
Pivotal Platform - December Release A First Look
byVMware Tanzu
 
vSphere with Kubernetes Virtual Event- June 16, 2020
byVMware Tanzu
 
Building Developer Pipelines with PKS, Harbor, Clair, and Concourse
byVMware Tanzu
 
Tanzu Standard
byVMware Tanzu
 
Migrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKS
byWeaveworks
 
From Pivotal to VMware Tanzu: What you need to know
byVMware Tanzu
 
Packaging and Distributing Applications for Kubernetes
byVMware Tanzu
 
Pivotal Cloud Foundry 2.6: A First Look
byVMware Tanzu
 
Kubernetes 1.21 release
byLibbySchulze
 
VMworld 2015: Build and Run Cloud Native Apps in your Software Defined Data C...
byVMworld
 
Kubernetes for the VI Admin
byKendrick Coleman
 
2009-dec02_Dell
byAgora Group
 
Modern Application Configuration in Kubernetes
byVMware Tanzu
 
Devops lifecycle with Kabanero Appsody, Codewind, Tekton
byWinton Winton
 
VMworld 2015: Containers without Compromise - Persistent Storage for Docker C...
byVMworld
 

Similar to Enterprise pks overview

PDF
Pivotal Container Service : la nuova soluzione per gestire Kubernetes in azienda
byVMware Tanzu
 
PDF
Pivotal Container Service (PKS) at SF Cloud Foundry Meetup
bycornelia davis
 
PDF
雲到端的混合雲思維:K8S Anywhere, in AnyForm
byTzung-Hsien (Shawn) Ho
 
PPTX
The Reality of DIY Kubernetes vs. PKS
byVMware Tanzu
 
PPTX
VMware Tanzu Kubernetes Connect
byVMware Tanzu
 
PDF
Deploying your first application with Kubernetes
byOVHcloud
 
PPTX
Episode 1: Building Kubernetes-as-a-Service
byMesosphere Inc.
 
PPTX
Infrastructure design for Kubernetes
byGuillaume Morini
 
PPT
Google does containers: Hello Kubernetes - Steve Wong and Vladimir Vivien - D...
by{code} by Dell EMC
 
PPTX
Application Modernization with PKS / Kubernetes
byPaul Czarkowski
 
PPTX
01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware
byVMUG IT
 
PDF
Data protection in a kubernetes-native world
byLibbySchulze
 
PDF
6 Things You Need to Know to Safely Run Kubernetes
byVMware Tanzu
 
PDF
MayaData Datastax webinar - Operating Cassandra on Kubernetes with the help ...
byMayaData Inc
 
PDF
20200113 - IBM Cloud Côte d'Azur - DeepDive Kubernetes
byIBM France Lab
 
PPTX
Vmware Tanzu Kubernetes Connect(Spanish)
byGabrielaRodriguez182401
 
PDF
Developer Secure Containers for the Cyberspace Battlefield
byVMware Tanzu
 
PDF
Evolve or Fall Behind: Driving Transformation with Containers - Sai Vennam - ...
byCodeOps Technologies LLP
 
PPTX
Kubernetes 101 VMworld 2019 workshop slides
bySimone Morellato
 
PDF
Containers and Kubernetes without limits
byAntje Barth
 
Pivotal Container Service : la nuova soluzione per gestire Kubernetes in azienda
byVMware Tanzu
 
Pivotal Container Service (PKS) at SF Cloud Foundry Meetup
bycornelia davis
 
雲到端的混合雲思維:K8S Anywhere, in AnyForm
byTzung-Hsien (Shawn) Ho
 
The Reality of DIY Kubernetes vs. PKS
byVMware Tanzu
 
VMware Tanzu Kubernetes Connect
byVMware Tanzu
 
Deploying your first application with Kubernetes
byOVHcloud
 
Episode 1: Building Kubernetes-as-a-Service
byMesosphere Inc.
 
Infrastructure design for Kubernetes
byGuillaume Morini
 
Google does containers: Hello Kubernetes - Steve Wong and Vladimir Vivien - D...
by{code} by Dell EMC
 
Application Modernization with PKS / Kubernetes
byPaul Czarkowski
 
01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware
byVMUG IT
 
Data protection in a kubernetes-native world
byLibbySchulze
 
6 Things You Need to Know to Safely Run Kubernetes
byVMware Tanzu
 
MayaData Datastax webinar - Operating Cassandra on Kubernetes with the help ...
byMayaData Inc
 
20200113 - IBM Cloud Côte d'Azur - DeepDive Kubernetes
byIBM France Lab
 
Vmware Tanzu Kubernetes Connect(Spanish)
byGabrielaRodriguez182401
 
Developer Secure Containers for the Cyberspace Battlefield
byVMware Tanzu
 
Evolve or Fall Behind: Driving Transformation with Containers - Sai Vennam - ...
byCodeOps Technologies LLP
 
Kubernetes 101 VMworld 2019 workshop slides
bySimone Morellato
 
Containers and Kubernetes without limits
byAntje Barth
 

Recently uploaded

PDF
MySQL Routing Guidelines: Designing Smarter Query Routing Together
byMiguel Araújo
 
PDF
Lost Android Phone Recovery_ Steps That Work Fast.pdf
byIsabella Reed
 
PDF
Clean Architecture with Vertical Slice Architecture in .NET 8
byVineet Sharma
 
PPTX
Pitch Deck for MEVIA OS - No Apps, Infinite, Decentralized Operating System
byDr. Edwin Hernandez
 
PPTX
Prime Teams – Real-Time Employee Monitoring & Project Management Software
byPrime Teams
 
PDF
Introduction to Modern Artificial Intelligence.pdf
byAI n Dot Net
 
PDF
Ontwikkel sneller en veiliger met GitHub Copilot
byDelta-N
 
PPTX
How CFD Simulations Support Sustainable Data Center Design Optimization
byWeb Synergies
 
PPTX
‘Analyzing Application Logs Using AI’ Webinar
byTier1 app
 
PPTX
40m_wAIred_DigitalPlatformRabobank_10022026.pptx
bySimonedeGijt
 
PDF
The Modern Architect's Codex: Design Patterns in .NET 9
byVineet Sharma
 
PPTX
Connecting to MCP Servers in OutSystems Platform
byOzanCali
 
PDF
Building Smarter AI: 16 RAG Approaches for Accuracy, Memory, and Reasoning Vi...
byVineet Sharma
 
DOCX
A Comprehensive Guide To Buy Verified PayPal Accounts_.docx
bysmartusapva.com
 
PDF
Routing Guidelines: Unlocking Smarter Query Routing in MySQL Architectures
byMiguel Araújo
 
PDF
Powering Spring AI with Model Context Protocol Integration
byJuarez Junior
 
PDF
Versnel innovatie met GitHub Enterprise - Rick Smit GitHub
byDelta-N
 
PDF
ACE Aarhus February 2026: Atlassian news
byDanielEriksen5
 
PDF
Prompt Engineering vs Content Engineering vs RAG.pdf
byVineet Sharma
 
PDF
Langchain4J – An Introduction for Impatient Developers
byJuarez Junior
 
MySQL Routing Guidelines: Designing Smarter Query Routing Together
byMiguel Araújo
 
Lost Android Phone Recovery_ Steps That Work Fast.pdf
byIsabella Reed
 
Clean Architecture with Vertical Slice Architecture in .NET 8
byVineet Sharma
 
Pitch Deck for MEVIA OS - No Apps, Infinite, Decentralized Operating System
byDr. Edwin Hernandez
 
Prime Teams – Real-Time Employee Monitoring & Project Management Software
byPrime Teams
 
Introduction to Modern Artificial Intelligence.pdf
byAI n Dot Net
 
Ontwikkel sneller en veiliger met GitHub Copilot
byDelta-N
 
How CFD Simulations Support Sustainable Data Center Design Optimization
byWeb Synergies
 
‘Analyzing Application Logs Using AI’ Webinar
byTier1 app
 
40m_wAIred_DigitalPlatformRabobank_10022026.pptx
bySimonedeGijt
 
The Modern Architect's Codex: Design Patterns in .NET 9
byVineet Sharma
 
Connecting to MCP Servers in OutSystems Platform
byOzanCali
 
Building Smarter AI: 16 RAG Approaches for Accuracy, Memory, and Reasoning Vi...
byVineet Sharma
 
A Comprehensive Guide To Buy Verified PayPal Accounts_.docx
bysmartusapva.com
 
Routing Guidelines: Unlocking Smarter Query Routing in MySQL Architectures
byMiguel Araújo
 
Powering Spring AI with Model Context Protocol Integration
byJuarez Junior
 
Versnel innovatie met GitHub Enterprise - Rick Smit GitHub
byDelta-N
 
ACE Aarhus February 2026: Atlassian news
byDanielEriksen5
 
Prompt Engineering vs Content Engineering vs RAG.pdf
byVineet Sharma
 
Langchain4J – An Introduction for Impatient Developers
byJuarez Junior
 

Enterprise pks overview

  • 1.
    ©2019 VMware, Inc. Runand Operationalize Kubernetes in Production VMware Enterprise PKS Overview February 2019
  • 2.
    Confidential │ ©2019VMware, Inc. 22 Enterprises are Embracing Cloud Native Methodology Container technology is being adopted across all industries Increase Developer Productivity Deliver Better Customer Experiences Accelerate Time-to-Market Gain Operational Efficiency
  • 3.
    Confidential │ ©2019VMware, Inc. 33Confidential │ ©2018 VMware, Inc. Kubernetes has Become the De Facto Container Orchestrator Source: Cloud native Computing Foundation User Survey 2018 0% 10% 20% 30% 40% 50% 60% 70% 80% 90% Kubernetes Docker Mesos
  • 4.
    Confidential │ ©2019VMware, Inc. 44Confidential │ ©2018 VMware, Inc. Challenges of Running Kubernetes in Production Source: Cloud native Computing Foundation User Survey 2018 0% 5% 10% 15% 20% 25% 30% 35% 40% 45% VMware Enterprise PKS Addresses These Challenges
  • 5.
  • 6.
    ©2019 VMware, Inc. VMwareEnterprise PKS • Deploy clusters on demand • Simplified Patching, Upgrading, Scaling • Integration with platform pipeline Easy to Use and Maintain • NSX-T Micro- segmentation • Rotate, Repair, Repave • Image CVE scanning, Content Trust Highly Secure by Default • Wavefront • vRealize Log Insight • Network Insight • vRealize Automation • Prometheus, Jaeger, Grafana, Istio • Cluster as a unit of tenancy • Namespace as a unit of tenancy • LDAP/AD Integration Flexible Multi-Tenancy • Health Monitoring and Self-healing • Kubernetes manages app layer availability • BOSH manages infra/cluster layer availability Highly Available “Dial Tone” Kubernetes Highly Integrated Ecosystem VMware Enterprise PKS is a turnkey solution for organizations that want to deploy and operate an integrated, validated upstream Kubernetes footprint
  • 7.
    ©2019 VMware, Inc.7 Kubernetes is Only One Layer of the Container Service Stack Image Registry Framework Lifecycle Management Security and Networking Persistence Virtual Infrastructure Physical Infrastructure Monitoring,Logging,Analytics Cluster Health Monitoring, Healing and Lifecycle Management Scheduling, Orchestration, Service Creation vSAN, Hatchway vSphere Physical Infrastructure NSX-T Enterprise PKS Control Plane BOSH (cluster LCM) Kubernetes Harbor vRealizeSuite
  • 8.
    ©2019 VMware, Inc.8 BOSH NSX-T Service Brokers etcd worker etcd workermaster PKS Control Plane Kubernetes Cluster VMware Enterprise PKS Security Container Registry master Kubernetes Cluster vRealize Automation vRealize Log Insight vRealize Operations vRealize Network Insight Wavefront by VMware VMware Enterprise PKS: Marketecture vSphere vSAN Public Clouds Public Cloud Storage
  • 9.
    Confidential │ ©2019VMware, Inc. Who is VMware Enterprise PKS Built For? IT Operator – PRE (Platform Reliability Engineering) – Deploy, Scale, Operate VMware PKS – Physical Infrastructure is Operated – Network & Security Control Policy is defined • Developers – Writes code, code deployed using CI/CD – Focus on business problems and innovation • Application Dev/Ops owner – Automate Everything – Agile – Serve developers • Platform Reliability Engineers – Platform is Reliable – Capacity Is planned for – Platform is Secured & Controlled – Platform is Auditable Application Dev/Ops Owner Platform Reliability Engineer Developers – Develop, Deploy, Scale, Monitor Apps – Innovation of Business Capability as Cloud native Apps – Create K8s cluster, scale clusters and maintain the health customers – Provide developer access to the cluster
  • 10.
    Confidential │ ©2019VMware, Inc. 1010Confidential │ ©2018 VMware, Inc. A turnkey solution to provision, operate and manage enterprise grade Kubernetes clusters VMware Enterprise PKS Latest stable native Kubernetes, CNCF certified Production-grade Kubernetes based container platform Deep integration with NSX-T for networking and security Globally supported on vSphere, GCP, AWS, and Azure Secure, enterprise-grade container registry Consistent infrastructure for traditional and modern applications
  • 11.
    11©2019 VMware, Inc. Addressingthe Common Kubernetes Challenges Complexity Scaling Deployment Networking Storage Monitoring & Logging Security
  • 12.
    Confidential │ ©2019VMware, Inc. 1212Confidential │ ©2018 VMware, Inc. • Constant monitoring and self-healing of VMs • Easy scaling and patching for clusters • Rolling upgrades to latest Kubernetes release • High availability and multi-AZ support VMware Enterprise PKS Simplifies “Day 1” and “Day 2” of Kubernetes Clusters • Deploy Kubernetes cluster on demand • Simple API and CLI interface Day 2 “Operate” Day 1 “Build”
  • 13.
    Confidential │ ©2019VMware, Inc. 1313Confidential │ ©2018 VMware, Inc. IaaS Node Node Kubernetes Cluster Services API Cluster3 NSX-T vSphere VMware PKS includes: • VMWare PKS Control Plane, CFCR • NSX-T, Harbor, Service Broker • BOSH Release for Kubernetes • Configures Day 1 of - CFCR - vSphere/Public Clouds - NSX Integration - Harbor • Manages Day 2 of Kubernetes Clusters - Scaling - Patching - Upgrades - Failures CFCR Kubernetes (As a BOSH Release) BOSH (Deploys/Manages VMs & state) CPI CNI Harbor Private Container Registry The value of BOSH VMware Enterprise PKS - “How it Works” Node Node Node Kubernetes Cluster Services API Node Node Node Kubernetes Cluster Services API Node Cluster1 Cluster2 Service Broker (s) API #pks create-cluster K8s-1 -n 3#pks create-cluster K8s-2 -n 3#pks create-cluster K8s-3 -n 3#pks resize K8s-3 –n 5 VMware PKS Control Plane VM VM VM VM VM VM VM VM VM Node Node Kubernetes Cluster Services API Cluster3 Node Node Node VM VM VM VM VM
  • 14.
    14©2019 VMware, Inc. Addressingthe Common Kubernetes Challenges Complexity Scaling Deployment Networking Storage Monitoring & Logging Security
  • 15.
    Confidential │ ©2019VMware, Inc. 1515Confidential │ ©2018 VMware, Inc. Best-in-Class Kubernetes Networking with NSX-T NSX-T is included in VMware Enterprise PKS to enable • Networking virtualization and automation for Kubernetes • Complete set of Layer 2 through Layer 7 networking services • Pod-level networking and micro-segmentation • Rich set of management and troubleshooting tools • Layer 4 load balancer (not just layer 7 load balancer) for supporting a wider range of applications • Security policy that can apply to both your containers and VMs workloads
  • 16.
    Confidential │ ©2019VMware, Inc. 1616Confidential │ ©2018 VMware, Inc. Canal Comparing NSX-T to Open Source Networking Options L2 L3 (North/South) L4 – Security Policy Load Balancing VM & K8s Connectivity End-to-End Configuration & troubleshooting Ops tools & central stats Flannel L2 only (East/West Pod Traffic) Calico L3/L4 (IP Tables) NGINX/HA Proxy Load balancing No End-to-End configuration & troubleshooting New ops tools + Different locations for stats NSX-T Only for Kubernetes Networking
  • 17.
    Confidential │ ©2019VMware, Inc. 1717 Container Networking & Security Operations NSX-T Operational Tools • Traceflow • Port Mirroring • Port Connection Tool • Spoofguard • Syslog • Port Counters • IPFIX 17 NSX-T Traceflow With NSX-T you are gain deep visibility into the container networks, and you can use the same troubleshooting tools we created for VM based workloads
  • 18.
    18©2019 VMware, Inc. Addressingthe Common Kubernetes Challenges Complexity Scaling Deployment Networking Storage Monitoring & Logging Security
  • 19.
    Confidential │ ©2019VMware, Inc. 19 Persistent Storage with Kubernetes • You need a storage platform with the right Cloud Provider (Storage Plugin) for Kubernetes • You must configure the Kubernetes Cluster and all the nodes – Configuration Management everywhere • Available features & functionality dictated by storage platform keeping up with Kubernetes releases • Maintaining the “Platform” over time – Update all your configuration management – End-to-end Testing (Compatibility of System) – High risk of snowflakes Must have available Kubernetes Cloud Provider Node Node Node Kubernetes Cluster Services API V V V CP CP CP CP Storage Platform VM VM VM
  • 20.
    Confidential │ ©2019VMware, Inc. 20 VMware Enterprise PKS Provides Persistent Storage for Running Stateful Apps on Kubernetes • Entire HCL of storage products under vSphere Supported with Kubernetes • Operational Consistency - Existing Storage Operations, Tooling, and SPBM • Self Service Storage provisioning through Storage Class Mapping to SPBM Policies • VMware Enterprise PKS delivers the consistent, repeatable configuration & maintenance of Hatchway Kubernetes Consumption • Storage Class = Regular • Storage Class = Fast • Storage Class = Encrypted • Storage Class = Dedup • Storage Class = … K8s API SPBM • Thin • SSD • Encrypted • Dedup • … vSphere Any Supported Storage on HCL vSAN|VMFS|NFS Datastore Project Hatchway https://github.com/vmware/hatchway
  • 21.
    21©2019 VMware, Inc. Addressingthe Common Kubernetes Challenges Complexity Scaling Deployment Networking Storage Monitoring & Logging Security
  • 22.
    Confidential │ ©2019VMware, Inc. 2222Confidential │ ©2018 VMware, Inc. Automated deployment & configuration from infrastructure to applications Monitoring & Logging at Scale with VMware Integration Infra K8s Containers Apps Application Dev/Ops Owner Platform Reliability Engineer vRLI vRops Wavefront
  • 23.
    Confidential │ ©2019VMware, Inc. Wavefront & VMware Enterperise PKS Integration K8s Monitoring Integration w/ Wavefront by VMware • Pre-Integrated with VMware PKS • Predefined K8s Alerts • Comprehensive Dashboards • Self-Service Metrics Analytics for both Developers and Operators Platform Reliability Engineer Application Dev/Ops Owner Troubleshoot Issues at Cloud Speed Trend & Alert on Anomalies Visualize Cloud Apps at Hyperscale
  • 24.
    Confidential │ ©2019VMware, Inc. 2424Confidential │ ©2018 VMware, Inc. Wavefront + VMware Enterprise PKS Dashboard
  • 25.
    Confidential │ ©2019VMware, Inc. vRealize Log Insight and VMware Enterprise PKS Integration K8s Logging Integration w/ vRealize Log Insight • Configured via VMware PKS Tile • Aggregates, Tags, & Ships all logs to vRLI • Searchable tags: Cluster, Pod, Namespace, Container • SSL Encryption of Data in Transit • Log Ingestion Rate Limiting vRLI Master / Worker Nodes Logs K8s Cluster Events POD StdOut & StdErr vRLI Interactive Analytics
  • 26.
    26©2019 VMware, Inc. Addressingthe Common Kubernetes Challenges Complexity Scaling Deployment Networking Storage Monitoring & Logging Security
  • 27.
    Confidential │ ©2019VMware, Inc. VMware Enterprise PKS Provides Container Security at all levels from infrastructure to Application Infrastructure StorageCompute Networking Container Mgmt. NameSpace vSphere Google Cloud Platform Hybrid NameSpace NameSpace NameSpace Container Mgmt. NameSpace NameSpace NameSpace Operator admin IAM • Role Based Access Control (RBAC) • Identity Management • Credential Stores Events & Monitoring • Incident Reporting • Event Management • Full Stack Monitoring Build Pipelines NameSpace Platform LCM Kubernetes Cluster Kubernetes Cluster Apps Apps Micro- service Micro- service Micro- service Micro- service Micro- service Micro- service Micro- service Micro- service Platform LCM • Repair • Repave • Rotate Container Management • Vulnerability Scanning • Content Trust • Centralized Policy Control Infrastructure • Cluster Segmentation • Flow Tracing • NameSpace Segmentation LDAP/AD Integration IAM VNFM WaveFront vRealize Operations Monitoring VNFM WaveFront App Monitoring
  • 28.
    Confidential │ ©2019VMware, Inc. • user management & access control • role-based access control • AD/LDAP integration • Security vulnerability scanning (Clair) • content trust - image signing • policy based image replication • audit and logs • Restful API • open-source under Apache 2 license Harbor – Enterprise Grade Private Registry Project Harbor was accepted into CNCF as its first container registry open source project
  • 29.
    Confidential │ ©2019VMware, Inc. 2929Confidential │ ©2018 VMware, Inc. Why VMware Enterprise PKS? Entire Lifecycle of the Kubernetes Clusters Latest Stable Open Source Kubernetes Multiple Clusters On-Demand Best-in-Class Kubernetes Networking End-to-End K8s Infrastructure Provisioning Enterprise Private Container Registry Persistent Storage Integrates With VMware SDDC & Multi-Cloud
  • 30.
    ©2019 VMware, Inc. ThankYou Please email any questions to PowerPoint@vmware.com