JR
Uploaded byJohannes Rudolph
PDF, PPTX179 views

Extending Kubernetes

The document discusses a Kubernetes meetup held in Frankfurt on March 25, 2019, focusing on extending Kubernetes through various tools and methods provided by meshcloud. It covers architectural components like kube-apiserver, controllers, and custom resource definitions, emphasizing their roles in managing multi-cloud environments. Key examples of extending Kubernetes, such as using Operators and custom APIs, are also presented to illustrate capabilities in orchestration and infrastructure management.

Embed presentation

Download as PDF, PPTX
Kubernetes Meetup Frankfurt @ Meshcloud, Mar 25th 2019
why, what and how Extending Kubernetes
@meshstack Motivation
@meshstack Kubernetes orchestrates Infrastructure & Containers... … meshcloud orchestrates Cloud Tenants ...Cloud Tenants? Motivation
@meshstack 81% We live in a Multi-Cloud world @meshstack
Orchestrating Clouds & Tenants Integrierte Prozesse mit meshcloud Heterogene Prozesse!
- OpenShift PaaS (OKD = “OpenShift Kubernetes Distribution”) - https://www.okd.io/ - Fission “Kubernetes-native Serverless Framework” - https://fission.io/ - Kubernetes Operators - ArangoDB - Couchbase - MySQL - … many more Extending Kubernetes - Examples
@meshstack - Control Plane - kube-apisever: provides the API - backed by etcd (& only component talking to etcd) - scales horizontally - think of it as a “dumb” object server (authn/authz, validation, defaulting etc.) - kube-controller-manager - runs the main control-loops - HA, but only a single active leader at a time - kube-scheduler - distributes pods on nodes: think “pod controller” - Workload Plane - Kubelet & kube-proxy: execute containers, report status etc. Kubernetes - Architecture recap
@meshstack 1. kubectl plugins 2. API Extensions 3. Custom Resources 4. Scheduler Extensions 5. Controllers (& Operators) 6. Network Plugins 7. Storage Plugins Goal: Provide an Overview and Examples Extending Kubernetes - Overview https://kubernetes.io/docs/concepts/extend-kubernetes/extend-cluster/
@meshstack API Groups are a way to … group APIs for - Versioning e.g. /api/v1 or /apis/extensions/v1beta1 - Extending Kubernetes with vendor or distribution-specific APIs API Extensions - Basics
@meshstack - Runs in-process with the kube-apiserver - APIService object “claims” URL path - Enables auto-discovery of APIs by clients - Checkout Kubernetes sample-apiserver - Example: OpenShift with a “dumb” kubectl client - kubectl api-resources - kubectl get apiservices - kubectl get apiservices v1.build.openshift.io -o=yaml - kubectl --v=8 get build API Extensions - Aggregation Layer
@meshstack API Extensions - when to use?
@meshstack - Intercept Kubernetes API requests in order to - validate: e.g. rate limit api access EventRateLimit - mutate: e.g. AlwaysPullImages - Kubernetes ships with default Admission Controllers that implement core functionality - e.g. NamespaceExists Admission Controllers
@meshstack - Define name and Schema for new types of K8s objects - Simpler than writing your own API for some cases - e.g. built-in validation using JSON Schema (K8s > v1.8) - Typically goes hand in hand with a Controller - Example: OpenShift with a “dumb” kubectl client - kubectl get customresourcedefinitions Learn more from the documentation Custom Resource Definitions
@meshstack - Pretty much everything is an Object in Kubernetes. Objects follow conventions - .apiVersion version of the API that produced this object - .kind what kind of Object it is, e.g. pod - .metadata common metadata like .name, .annotations etc. - .spec desired state of the Object - .status last observed state of the object - Example: OpenShift with a “dumb” kubectl client - kubectl get pods -o=yaml --namespace=openshift-web-console Learn more from the documentation Custom Resource Definitions - Objects
@meshstack - Example: Fission (sorry, no kubectl demo) Custom Resource Definitions
@meshstack CRDs vs. API
@meshstack - Controllers make the “magic” happen - Think CRDs as a way to teach kube-apiserver to store new objects - Controllers process these objects as clients of the api-server - Control Loop - watch relevant objects via kube-apiserver - compare .status and .spec - take action to converge actual to desired state - update managed object’s .status Controllers
@meshstack - Controllers make the “magic” happen - Think CRDs as a way to teach kube-apiserver to store new objects - Controllers process these objects as clients of the api-server - Control Loop - watch relevant objects via kube-apiserver - compare .status and .spec - take action to converge actual to desired state - update managed object’s .status - core control loops run in kube-controller-manager - e.g. ReplicaSetController Controllers
@meshstack Control Loops in distributed systems are hard to implement correctly. - shared state is hard - timing is hard - things go wrong™ Using Level Triggered Logic helps reducing complexity and improving correctness. Think: delta vs. full-state reconcillation Controller Basics - Loops https://hackernoon.com/level-triggering-and-reconciliation-in-kubernetes-1f17fe30333d
@meshstack Ideal conditions: - Controller observes original signal without disruptions - Controller will take correct action (i.e. process user intent) Controller Basics - Loops https://hackernoon.com/level-triggering-and-reconciliation-in-kubernetes-1f17fe30333d
@meshstack Signal is observed with disruptions (i.e. network disruption, timing issues, control plane crash...) - Edge triggered loop misses trigger (does not take action) - Level triggered loop eventually takes correct action Controller Basics - Loops https://hackernoon.com/level-triggering-and-reconciliation-in-kubernetes-1f17fe30333d
@meshstack Signal is observed with disruptions (i.e. network disruption, timing issues, control plane crash...) - Edge triggered loop accumulates incorrect state - Level triggered loop eventually converges to correct state Controller Basics - Loops https://hackernoon.com/level-triggering-and-reconciliation-in-kubernetes-1f17fe30333d
@meshstack Example: ReplicaSet Controller Basics - Loops https://hackernoon.com/level-triggering-and-reconciliation-in-kubernetes-1f17fe30333d
@meshstack Build Controllers using client-go (but can use your own logic as well): - Controllers watch() objects they’re interested in from kube-apiserver - resync period: periodically re-process all objects delivered by kube-apiserver - Delta Fifo Queue = “smart” queue - Tombstones for deleted objects - Merges duplicated updates Example: OpenShift ResourceQuota kubectl get -o=yaml resourcequota --namespace=managed-customer-demo-project Controllers - Loops in Practice
@meshstack Operators combine CRDs + Controllers to manage stateful Applications - Example: Automated Master Failover for MariaDB - … whatever “manual Ops” would do - you can automate with K8s - Operator Framework helps with building and operating operators Operators
Thank you Johannes Rudolph jrudolph@meshcloud.io www.meshcloud.io

More Related Content

PDF
Introduction of Kubernetes - Trang Nguyen
byTrang Nguyen
 
PPTX
Kubernetes for Beginners: An Introductory Guide
byBytemark
 
PDF
What is Kubernets
byEchelon Edge Pvt Ltd
 
PDF
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
byEdureka!
 
PDF
Introduction to kubernetes
byGabriel Carro
 
PDF
Kubernetes a comprehensive overview
byGabriel Carro
 
PDF
Service Mesh For Beginner
byMien Dinh
 
PDF
Read ebook Kubernetes Cookbook: Building Cloud Native Applications Full Access
byillingstabilityb
 
Introduction of Kubernetes - Trang Nguyen
byTrang Nguyen
 
Kubernetes for Beginners: An Introductory Guide
byBytemark
 
What is Kubernets
byEchelon Edge Pvt Ltd
 
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
byEdureka!
 
Introduction to kubernetes
byGabriel Carro
 
Kubernetes a comprehensive overview
byGabriel Carro
 
Service Mesh For Beginner
byMien Dinh
 
Read ebook Kubernetes Cookbook: Building Cloud Native Applications Full Access
byillingstabilityb
 

What's hot

PDF
Building Cloud-Native Applications with Kubernetes, Helm and Kubeless
byBitnami
 
PDF
Gentle introduction to containers and kubernetes
byNills Franssens
 
PPTX
Working with kubernetes
byNagaraj Shenoy
 
PPTX
Kubernetes Presentation
byCrevise Technologies
 
PPTX
Containers kuberenetes
byGayan Gunarathne
 
PDF
Containers kuberenetes
bycsegayan
 
PDF
KubeCon CloudNativeCon 2016 Seattle - a report
byKrishna-Kumar
 
PDF
Are you ready to be edgy? Bringing applications to the edge of the network
byMegan O'Keefe
 
PDF
Kubernetes 101
byCrevise Technologies
 
PDF
Kubernetes: https://youtu.be/KnjnQj-FvfQ
byRahul Malhotra
 
PDF
Kubernetes Requests and Limits
byAhmed AbouZaid
 
PPTX
Securing and Automating Kubernetes with Kyverno
bySaim Safder
 
PDF
Introduction to Kubernetes and Google Container Engine (GKE)
byOpsta
 
PDF
GlueCon kubernetes & container engine
bybrendandburns
 
ODP
Kubernetes Architecture
byKnoldus Inc.
 
PDF
Running and Managing Kubernetes on OpenStack
byVictor Palma
 
PDF
What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...
byEdureka!
 
PDF
Google Cloud Container Security Quick Overview
byKrishna-Kumar
 
PPTX
Introduction to helm
byJeeva Chelladhurai
 
Building Cloud-Native Applications with Kubernetes, Helm and Kubeless
byBitnami
 
Gentle introduction to containers and kubernetes
byNills Franssens
 
Working with kubernetes
byNagaraj Shenoy
 
Kubernetes Presentation
byCrevise Technologies
 
Containers kuberenetes
byGayan Gunarathne
 
Containers kuberenetes
bycsegayan
 
KubeCon CloudNativeCon 2016 Seattle - a report
byKrishna-Kumar
 
Are you ready to be edgy? Bringing applications to the edge of the network
byMegan O'Keefe
 
Kubernetes 101
byCrevise Technologies
 
Kubernetes: https://youtu.be/KnjnQj-FvfQ
byRahul Malhotra
 
Kubernetes Requests and Limits
byAhmed AbouZaid
 
Securing and Automating Kubernetes with Kyverno
bySaim Safder
 
Introduction to Kubernetes and Google Container Engine (GKE)
byOpsta
 
GlueCon kubernetes & container engine
bybrendandburns
 
Kubernetes Architecture
byKnoldus Inc.
 
Running and Managing Kubernetes on OpenStack
byVictor Palma
 
What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...
byEdureka!
 
Google Cloud Container Security Quick Overview
byKrishna-Kumar
 
Introduction to helm
byJeeva Chelladhurai
 

Similar to Extending Kubernetes

PDF
Kubernetes Architecture - beyond a black box - Part 2
byHao H. Zhang
 
PPTX
Introduction+to+Kubernetes-Details-D.pptx
bySantoshPandey160
 
PPTX
Kubernetes presentation
byGauranG Bajpai
 
PDF
Kubernetes Architecture - beyond a black box - Part 1
byHao H. Zhang
 
PPTX
Introduction to kubernetes
byRishabh Indoria
 
PDF
Kubernetes extensibility: crd & operators
byGiacomo Tirabassi
 
PDF
Kubernetes extensibility: CRDs & Operators
bySIGHUP
 
PDF
Kubernetes - A Comprehensive Overview
byBob Killen
 
PDF
Kubernetes acomprehensiveoverview
byAnkit Shukla
 
PPTX
Kubernetes PPT.pptx
byssuser0cc9131
 
PDF
(Draft) Kubernetes - A Comprehensive Overview
byBob Killen
 
PPTX
Kubernetes 101
byStanislav Pogrebnyak
 
PPTX
08 - kubernetes.pptx
byRanjithM61
 
PPTX
Kubernetes PPTghjhhjhhhhhhggjjghjgjhghjghjghghghjghghghgghghghhjghghghghj
bysolomonrajuprimedtal
 
PDF
asofphadfahsfhap hdsfoah fapohf fhsdapfhdaspohf psdfh hafpodhofhf
bymajixoc607
 
PDF
Introduction to Kubernetes Workshop
byBob Killen
 
PDF
Kube Your Enthusiasm - Paul Czarkowski
byVMware Tanzu
 
PDF
Kube Your Enthusiasm
byVMware Tanzu
 
PDF
Download full Managing Kubernetes operating Kubernetes clusters in the real w...
byduduhasikul
 
PDF
Docker Madison, Introduction to Kubernetes
byTimothy St. Clair
 
Kubernetes Architecture - beyond a black box - Part 2
byHao H. Zhang
 
Introduction+to+Kubernetes-Details-D.pptx
bySantoshPandey160
 
Kubernetes presentation
byGauranG Bajpai
 
Kubernetes Architecture - beyond a black box - Part 1
byHao H. Zhang
 
Introduction to kubernetes
byRishabh Indoria
 
Kubernetes extensibility: crd & operators
byGiacomo Tirabassi
 
Kubernetes extensibility: CRDs & Operators
bySIGHUP
 
Kubernetes - A Comprehensive Overview
byBob Killen
 
Kubernetes acomprehensiveoverview
byAnkit Shukla
 
Kubernetes PPT.pptx
byssuser0cc9131
 
(Draft) Kubernetes - A Comprehensive Overview
byBob Killen
 
Kubernetes 101
byStanislav Pogrebnyak
 
08 - kubernetes.pptx
byRanjithM61
 
Kubernetes PPTghjhhjhhhhhhggjjghjgjhghjghjghghghjghghghgghghghhjghghghghj
bysolomonrajuprimedtal
 
asofphadfahsfhap hdsfoah fapohf fhsdapfhdaspohf psdfh hafpodhofhf
bymajixoc607
 
Introduction to Kubernetes Workshop
byBob Killen
 
Kube Your Enthusiasm - Paul Czarkowski
byVMware Tanzu
 
Kube Your Enthusiasm
byVMware Tanzu
 
Download full Managing Kubernetes operating Kubernetes clusters in the real w...
byduduhasikul
 
Docker Madison, Introduction to Kubernetes
byTimothy St. Clair
 

Recently uploaded

PDF
JFokus 2026 - Please pass the salt- Serve up passwords with a side of entropy...
byOrtus Solutions, Corp
 
PDF
Versnel innovatie met GitHub Enterprise - Rick Smit GitHub
byDelta-N
 
PDF
Mastering Zero-Allocation Parsers: A Deep Dive into High-Performance C#
byVineet Sharma
 
PPTX
‘Analyzing Application Logs Using AI’ Webinar
byTier1 app
 
PDF
MySQL Routing Guidelines: Designing Smarter Query Routing Together
byMiguel Araújo
 
PDF
The Ultimate Guide to Real Estate Tokenization Platforms
byDaniel Smith
 
PDF
Ontwikkel sneller en veiliger met GitHub Copilot
byDelta-N
 
PDF
The Modern Architect's Codex: Design Patterns in .NET 9
byVineet Sharma
 
PDF
Ready, Set, REST! Introducing MySQL's Built-In REST Service
byMiguel Araújo
 
PDF
Routing Guidelines: Unlocking Smarter Query Routing in MySQL Architectures
byMiguel Araújo
 
PDF
Ecommerce Website Development Services - Web Panel Solutions.pdf
byWEB PANEL SOLUTIONS
 
PPTX
Installing Python in Visual Studio Code
bydabydcatahanibmcom
 
PDF
HuemanAI Platform Overview.pptx (1) (2).pdf
byAnkur Handoo
 
PDF
Jira, Powered by Enterprise-Grade Intelligence from NeoroTalks.pdf
byNeoro Talks
 
PDF
On Demand Massage Therapist Booking App Development
byV3CUBE TECHNOLABS
 
PDF
Complete iOS Delivery App Features & Admin Tools
byShiv Technolabs Pvt. Ltd.
 
PPTX
Best Digital Marketing Company in Lucknow
bydigitallearning9277
 
PDF
Prompt Engineering vs Content Engineering vs RAG.pdf
byVineet Sharma
 
PDF
Build Modern Applications with Amazon Aurora DSQL- AWS User Group Bonn 2026
byVadym Kazulkin
 
PPTX
Pitch Deck for MEVIA OS - No Apps, Infinite, Decentralized Operating System
byDr. Edwin Hernandez
 
JFokus 2026 - Please pass the salt- Serve up passwords with a side of entropy...
byOrtus Solutions, Corp
 
Versnel innovatie met GitHub Enterprise - Rick Smit GitHub
byDelta-N
 
Mastering Zero-Allocation Parsers: A Deep Dive into High-Performance C#
byVineet Sharma
 
‘Analyzing Application Logs Using AI’ Webinar
byTier1 app
 
MySQL Routing Guidelines: Designing Smarter Query Routing Together
byMiguel Araújo
 
The Ultimate Guide to Real Estate Tokenization Platforms
byDaniel Smith
 
Ontwikkel sneller en veiliger met GitHub Copilot
byDelta-N
 
The Modern Architect's Codex: Design Patterns in .NET 9
byVineet Sharma
 
Ready, Set, REST! Introducing MySQL's Built-In REST Service
byMiguel Araújo
 
Routing Guidelines: Unlocking Smarter Query Routing in MySQL Architectures
byMiguel Araújo
 
Ecommerce Website Development Services - Web Panel Solutions.pdf
byWEB PANEL SOLUTIONS
 
Installing Python in Visual Studio Code
bydabydcatahanibmcom
 
HuemanAI Platform Overview.pptx (1) (2).pdf
byAnkur Handoo
 
Jira, Powered by Enterprise-Grade Intelligence from NeoroTalks.pdf
byNeoro Talks
 
On Demand Massage Therapist Booking App Development
byV3CUBE TECHNOLABS
 
Complete iOS Delivery App Features & Admin Tools
byShiv Technolabs Pvt. Ltd.
 
Best Digital Marketing Company in Lucknow
bydigitallearning9277
 
Prompt Engineering vs Content Engineering vs RAG.pdf
byVineet Sharma
 
Build Modern Applications with Amazon Aurora DSQL- AWS User Group Bonn 2026
byVadym Kazulkin
 
Pitch Deck for MEVIA OS - No Apps, Infinite, Decentralized Operating System
byDr. Edwin Hernandez
 

Extending Kubernetes

  • 1.
    Kubernetes Meetup Frankfurt @Meshcloud, Mar 25th 2019
  • 2.
    why, what andhow Extending Kubernetes
  • 3.
  • 4.
    @meshstack Kubernetes orchestrates Infrastructure& Containers... … meshcloud orchestrates Cloud Tenants ...Cloud Tenants? Motivation
  • 5.
    @meshstack 81% We live ina Multi-Cloud world @meshstack
  • 6.
    Orchestrating Clouds &Tenants Integrierte Prozesse mit meshcloud Heterogene Prozesse!
  • 7.
    - OpenShift PaaS(OKD = “OpenShift Kubernetes Distribution”) - https://www.okd.io/ - Fission “Kubernetes-native Serverless Framework” - https://fission.io/ - Kubernetes Operators - ArangoDB - Couchbase - MySQL - … many more Extending Kubernetes - Examples
  • 8.
    @meshstack - Control Plane -kube-apisever: provides the API - backed by etcd (& only component talking to etcd) - scales horizontally - think of it as a “dumb” object server (authn/authz, validation, defaulting etc.) - kube-controller-manager - runs the main control-loops - HA, but only a single active leader at a time - kube-scheduler - distributes pods on nodes: think “pod controller” - Workload Plane - Kubelet & kube-proxy: execute containers, report status etc. Kubernetes - Architecture recap
  • 9.
    @meshstack 1. kubectl plugins 2.API Extensions 3. Custom Resources 4. Scheduler Extensions 5. Controllers (& Operators) 6. Network Plugins 7. Storage Plugins Goal: Provide an Overview and Examples Extending Kubernetes - Overview https://kubernetes.io/docs/concepts/extend-kubernetes/extend-cluster/
  • 10.
    @meshstack API Groups area way to … group APIs for - Versioning e.g. /api/v1 or /apis/extensions/v1beta1 - Extending Kubernetes with vendor or distribution-specific APIs API Extensions - Basics
  • 11.
    @meshstack - Runs in-processwith the kube-apiserver - APIService object “claims” URL path - Enables auto-discovery of APIs by clients - Checkout Kubernetes sample-apiserver - Example: OpenShift with a “dumb” kubectl client - kubectl api-resources - kubectl get apiservices - kubectl get apiservices v1.build.openshift.io -o=yaml - kubectl --v=8 get build API Extensions - Aggregation Layer
  • 12.
  • 13.
    @meshstack - Intercept KubernetesAPI requests in order to - validate: e.g. rate limit api access EventRateLimit - mutate: e.g. AlwaysPullImages - Kubernetes ships with default Admission Controllers that implement core functionality - e.g. NamespaceExists Admission Controllers
  • 14.
    @meshstack - Define nameand Schema for new types of K8s objects - Simpler than writing your own API for some cases - e.g. built-in validation using JSON Schema (K8s > v1.8) - Typically goes hand in hand with a Controller - Example: OpenShift with a “dumb” kubectl client - kubectl get customresourcedefinitions Learn more from the documentation Custom Resource Definitions
  • 15.
    @meshstack - Pretty mucheverything is an Object in Kubernetes. Objects follow conventions - .apiVersion version of the API that produced this object - .kind what kind of Object it is, e.g. pod - .metadata common metadata like .name, .annotations etc. - .spec desired state of the Object - .status last observed state of the object - Example: OpenShift with a “dumb” kubectl client - kubectl get pods -o=yaml --namespace=openshift-web-console Learn more from the documentation Custom Resource Definitions - Objects
  • 16.
    @meshstack - Example: Fission(sorry, no kubectl demo) Custom Resource Definitions
  • 17.
  • 18.
    @meshstack - Controllers makethe “magic” happen - Think CRDs as a way to teach kube-apiserver to store new objects - Controllers process these objects as clients of the api-server - Control Loop - watch relevant objects via kube-apiserver - compare .status and .spec - take action to converge actual to desired state - update managed object’s .status Controllers
  • 19.
    @meshstack - Controllers makethe “magic” happen - Think CRDs as a way to teach kube-apiserver to store new objects - Controllers process these objects as clients of the api-server - Control Loop - watch relevant objects via kube-apiserver - compare .status and .spec - take action to converge actual to desired state - update managed object’s .status - core control loops run in kube-controller-manager - e.g. ReplicaSetController Controllers
  • 20.
    @meshstack Control Loops indistributed systems are hard to implement correctly. - shared state is hard - timing is hard - things go wrong™ Using Level Triggered Logic helps reducing complexity and improving correctness. Think: delta vs. full-state reconcillation Controller Basics - Loops https://hackernoon.com/level-triggering-and-reconciliation-in-kubernetes-1f17fe30333d
  • 21.
    @meshstack Ideal conditions: - Controllerobserves original signal without disruptions - Controller will take correct action (i.e. process user intent) Controller Basics - Loops https://hackernoon.com/level-triggering-and-reconciliation-in-kubernetes-1f17fe30333d
  • 22.
    @meshstack Signal is observedwith disruptions (i.e. network disruption, timing issues, control plane crash...) - Edge triggered loop misses trigger (does not take action) - Level triggered loop eventually takes correct action Controller Basics - Loops https://hackernoon.com/level-triggering-and-reconciliation-in-kubernetes-1f17fe30333d
  • 23.
    @meshstack Signal is observedwith disruptions (i.e. network disruption, timing issues, control plane crash...) - Edge triggered loop accumulates incorrect state - Level triggered loop eventually converges to correct state Controller Basics - Loops https://hackernoon.com/level-triggering-and-reconciliation-in-kubernetes-1f17fe30333d
  • 24.
    @meshstack Example: ReplicaSet Controller Basics- Loops https://hackernoon.com/level-triggering-and-reconciliation-in-kubernetes-1f17fe30333d
  • 25.
    @meshstack Build Controllers usingclient-go (but can use your own logic as well): - Controllers watch() objects they’re interested in from kube-apiserver - resync period: periodically re-process all objects delivered by kube-apiserver - Delta Fifo Queue = “smart” queue - Tombstones for deleted objects - Merges duplicated updates Example: OpenShift ResourceQuota kubectl get -o=yaml resourcequota --namespace=managed-customer-demo-project Controllers - Loops in Practice
  • 26.
    @meshstack Operators combine CRDs+ Controllers to manage stateful Applications - Example: Automated Master Failover for MariaDB - … whatever “manual Ops” would do - you can automate with K8s - Operator Framework helps with building and operating operators Operators
  • 27.