SlideShare a Scribd company logo

How Zalando integrates Kubernetes with AWS

Download as PPTX, PDF
Uri Savelchev
Uri Savelchev

our talk at AWS Community Day in Helsinki on March, 21, 2018

Technology
1 of 42
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. NORDICS Clarion Hotel Helsinki March 21, 2018
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. HOW ZALANDO INTEGRATES KUBERNETES WITH AWS | MARCH 2018RUBEN DIAZ URI SAVELCHEV
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. WE BRING FASHION TO PEOPLE IN 15 EU COUNTRIES +2 IN 2018 2008-2009 2010 2012-2013 2011
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. > 23 million active customers ~ 2,000 brands ~4.5billion EUR revenue 2017 > 210 million visits per month > 15,000 employees in Europe > 70% of visits via mobile devices > 250,000 product choices 15 countries
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. BUILDING OUR ECOMMERCE PLATFORM AWS, Microservices, Scala, Android and iOS >110 employees Autonomous delivery teams working with modern technologies 12 29 Nationalities Our office is located in KAMPPI
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. TECH INFRASTRUCTURE
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. ZALANDO TECH PLATFORM - THE HISTORY (ABRIDGED) ZOMCATPHP STUPS KUBERNETES 2010 2015 2016 Data center WAR LXC AWS Docker Cloud Formation AWS Docker Cloud Formation Kubernetes manifest Data center PHP files 2008 CDP 2017 … same … plus git-controlled deployments
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. ISOLATED AWS ACCOUNTS Internet *.abc.zalando.net Product XYZ abc Account Load Balancer def Account Load Balancer *.def.zalando.net
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. MOTIVATION FOR KUBERNETES • Resource efficiency • Cost efficiency • Velocity • Cloud independence THIS IS AN OPPORTUNITY FOR CHANGE!
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. SCALE? 66 Clusters 329 Accounts ~10,000 EC2 30 TB (Docker images)
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. OUR KUBERNETES ARCHITECTURE
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CLUSTER COMPONENTS
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. DETAILED TRAFFIC FLOW SKIPPER
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. etcd etcd ... ... zkubectl Worker Node (3 AZs) Kubelet Pod Container Pod Container Container Master Node API Server Scheduler Controller Manager etcdUSER
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CHALLENGES • Compliance • How To Deploy • Easy Of Use
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. COMPLIANCE CHALLENGES Some of our compliance rules: ● Applications must run on certified (or whitelisted) AMIs ● All images must: ○ Come from an authorized Docker registry ○ Contain an SCM Source file to refer to a specific revision of the code ○ Be versioned ● Code changes must be peer reviewed and approved (4 eyes principle)
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CHALLENGE - HOW TO DEPLOY Options for CI/CD: • Jenkins • GoCD • Concourse • Spinnaker • Travis Enterprise • AWS CodeBuild, CodePipeline Problems: • Non reproducible builds • Not cloud ready • No automatic setup • Difficult to scale up/down • Cumbersome build configuration • Manual credential configuration • Lack of Kubernetes support
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. EASE OF USE
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. What if the developer doesn’t have to worry about those steps?* * coding not included
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH • Hands off • Compliant by default • Secure by default
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH • Hands off • Compliant by default • Secure by default  Disable manual access to Production*  Automate Setup/Deployment steps  Separate Test and Production environments * some exceptions apply
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH • Hands off • Compliant by default • Secure by default
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. HANDS OFF Back to our options for CI/CD… ● Jenkins ● GoCD ● Concourse ● Spinnaker ● Travis Enterprise ● AWS CodeBuild / CodePipeline ✓ In-house developed (CDP)
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. HANDS OFF Continuous Delivery Platform (CDP) ● Fully integrated with Kubernetes ● No need to manage CI infrastructure ● Fully integrated with GitHub Enterprise ● Triggered by code changes ● Can also deploy CloudFormation stacks
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. DEPLOYMENT PIPELINE CDP GHE abc Account deploytrigger buildpush code push build trigger depoy ...
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CONTINUOUS DELIVERY PLATFORM
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CONTINUOUS DELIVERY PLATFORM – VIEW LOGS
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. AWS INTEGRATION
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CLOUDFORMATION VIA CI/CD . ├── deploy/apply │ ├── deployment.yaml # K8s Deployment │ ├── cf-iam-role.yaml # AWS IAM Role │ ├── cf-rds.yaml # AWS RDS Database │ ├── kube-ingress.yaml # K8s Ingress │ ├── kube-secret.yaml # K8s Secret │ └── kube-service.yaml # K8s Service └── delivery.yaml # CI/CD config
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. ASSIGNING AWS IAM ROLE TO A POD kind: Deployment spec: template: metadata: annotations: # annotation for kube2iam iam.amazonaws.com/role: "app-myapp-role" spec: containers: - name: ... ...
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH  Hands off • Compliant by default • Secure by default
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. COMPLIANT BY DEFAULT Kubernetes AMIs ● Developers don’t have to choose instance type or AMI ○ Deployments result in Pods running in existing Worker Nodes ● All Kubernetes Nodes are based in compliant, whitelisted AMIs Docker Registry ● CDP only pulls images from authorized repositories ● When pushing images after build CDP automatically includes: ○ SCM Source information ○ Version tagging
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. COMPLIANT BY DEFAULT Our compliance rules are met automatically:  Applications must run on certified (or whitelisted) AMIs  All images must:  Come from an authorized Docker registry  Contain an SCM Source file to refer to a specific revision of the code  Be versioned  Code changes must be peer reviewed and approved (4 eyes principle)
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH  Hands off  Compliant by default • Secure by default
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. SECURE BY DEFAULT ● Test and Production environments are completely isolated ● A Kubernetes Test Cluster is also provisioned ○ Manual access is permitted ● OAuth Credentials are tied to either Test or Live environments ○ Different OAuth Provider in test environment ○ Communication between Test and Live services is effectively disabled
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. SO THIS SCHEMA TRANSFORMS INTO… Internet *.abc.zalando.net Product XYZ abc Account Load Balancer def Account Load Balancer *.def.zalando.net
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. ...EXPANDS TO THIS*.abc.zalando.net *.def.zalando.net def Account Load Balancerabc Account Load Balancer abc-test Account Load Balancer *.abc-test.zalando.net def-test Account Load Balancer *.def-test.zalando.net Internet
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. PUTTING IT ALL TOGETHER CDP GHE abc-test Account trigger push build trigger depoy ... abc Account deploy release
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH  Hands off  Compliant by default  Secure by default
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CONCLUSION • CDP enables hands off deployments to Kubernetes • Compliance is automatically handled by CDP and Developer Console • Test and Production are guaranteed to be separated through Credentials Isolation  Automation saves time  New features go live faster  Isolation secures environments  AWS let us run smoothly and fast  Developers focus on development
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. LINKS Zalando Cluster Configuration https://github.com/zalando-incubator/kubernetes-on-aws Kubernetes on AWS Docs http://kubernetes-on-aws.readthedocs.io/en/latest/admin-guide/kubernetes-in- production.html Skipper HTTP Ingress Router https://github.com/zalando/skipper/ Kube AWS Ingress Controller https://github.com/zalando-incubator/kube-ingress-aws-controller External DNS https://github.com/kubernetes-incubator/external-dns
© 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. THANK YOU! QUESTIONS? RUBEN DIAZ, URI SAVELCHEV HELSINKI TECH HUB ruben.diaz@zalando.fi uri.savelchev@zalando.fi Also thanks to Rodrigo Reis, Dimitrij Holev, Henning Jacobs and others MARCH 2018

Recommended

Introduction to React Native - Nader Dabit
Introduction to React Native - Nader DabitIntroduction to React Native - Nader Dabit
Introduction to React Native - Nader Dabit
Amazon Web Services
 
Building Mobile Apps with AWS Amplify - Nader Dabit
Building Mobile Apps with AWS Amplify - Nader DabitBuilding Mobile Apps with AWS Amplify - Nader Dabit
Building Mobile Apps with AWS Amplify - Nader Dabit
Amazon Web Services
 
Modernizing Windows Applications with Containers (WIN331) - AWS re:Invent 2018
Modernizing Windows Applications with Containers (WIN331) - AWS re:Invent 2018Modernizing Windows Applications with Containers (WIN331) - AWS re:Invent 2018
Modernizing Windows Applications with Containers (WIN331) - AWS re:Invent 2018
Amazon Web Services
 
Deploying Serverless .NET Applications (WIN323) - AWS re:Invent 2018
Deploying Serverless .NET Applications (WIN323) - AWS re:Invent 2018Deploying Serverless .NET Applications (WIN323) - AWS re:Invent 2018
Deploying Serverless .NET Applications (WIN323) - AWS re:Invent 2018
Amazon Web Services
 
CI/CD using AWS developer tools
CI/CD using AWS developer toolsCI/CD using AWS developer tools
CI/CD using AWS developer tools
AWS User Group Bengaluru
 
Deploying Microservices using AWS Fargate (CON315-R1) - AWS re:Invent 2018
Deploying Microservices using AWS Fargate (CON315-R1) - AWS re:Invent 2018Deploying Microservices using AWS Fargate (CON315-R1) - AWS re:Invent 2018
Deploying Microservices using AWS Fargate (CON315-R1) - AWS re:Invent 2018
Amazon Web Services
 
Amazon CI/CD Practices for Software Development Teams - SRV320 - Anaheim AWS ...
Amazon CI/CD Practices for Software Development Teams - SRV320 - Anaheim AWS ...Amazon CI/CD Practices for Software Development Teams - SRV320 - Anaheim AWS ...
Amazon CI/CD Practices for Software Development Teams - SRV320 - Anaheim AWS ...
Amazon Web Services
 
Mythical Mysfits: Monolith to Microservice with Docker and AWS Fargate (CON21...
Mythical Mysfits: Monolith to Microservice with Docker and AWS Fargate (CON21...Mythical Mysfits: Monolith to Microservice with Docker and AWS Fargate (CON21...
Mythical Mysfits: Monolith to Microservice with Docker and AWS Fargate (CON21...
Amazon Web Services
 

Recommended

Introduction to React Native - Nader Dabit
Introduction to React Native - Nader DabitIntroduction to React Native - Nader Dabit
Introduction to React Native - Nader Dabit
Amazon Web Services
 
Building Mobile Apps with AWS Amplify - Nader Dabit
Building Mobile Apps with AWS Amplify - Nader DabitBuilding Mobile Apps with AWS Amplify - Nader Dabit
Building Mobile Apps with AWS Amplify - Nader Dabit
Amazon Web Services
 
Modernizing Windows Applications with Containers (WIN331) - AWS re:Invent 2018
Modernizing Windows Applications with Containers (WIN331) - AWS re:Invent 2018Modernizing Windows Applications with Containers (WIN331) - AWS re:Invent 2018
Modernizing Windows Applications with Containers (WIN331) - AWS re:Invent 2018
Amazon Web Services
 
Deploying Serverless .NET Applications (WIN323) - AWS re:Invent 2018
Deploying Serverless .NET Applications (WIN323) - AWS re:Invent 2018Deploying Serverless .NET Applications (WIN323) - AWS re:Invent 2018
Deploying Serverless .NET Applications (WIN323) - AWS re:Invent 2018
Amazon Web Services
 
CI/CD using AWS developer tools
CI/CD using AWS developer toolsCI/CD using AWS developer tools
CI/CD using AWS developer tools
AWS User Group Bengaluru
 
Deploying Microservices using AWS Fargate (CON315-R1) - AWS re:Invent 2018
Deploying Microservices using AWS Fargate (CON315-R1) - AWS re:Invent 2018Deploying Microservices using AWS Fargate (CON315-R1) - AWS re:Invent 2018
Deploying Microservices using AWS Fargate (CON315-R1) - AWS re:Invent 2018
Amazon Web Services
 
Amazon CI/CD Practices for Software Development Teams - SRV320 - Anaheim AWS ...
Amazon CI/CD Practices for Software Development Teams - SRV320 - Anaheim AWS ...Amazon CI/CD Practices for Software Development Teams - SRV320 - Anaheim AWS ...
Amazon CI/CD Practices for Software Development Teams - SRV320 - Anaheim AWS ...
Amazon Web Services
 
Mythical Mysfits: Monolith to Microservice with Docker and AWS Fargate (CON21...
Mythical Mysfits: Monolith to Microservice with Docker and AWS Fargate (CON21...Mythical Mysfits: Monolith to Microservice with Docker and AWS Fargate (CON21...
Mythical Mysfits: Monolith to Microservice with Docker and AWS Fargate (CON21...
Amazon Web Services
 
CI-CD with AWS Developer Tools and Fargate_AWSPSSummit_Singapore
CI-CD with AWS Developer Tools and Fargate_AWSPSSummit_SingaporeCI-CD with AWS Developer Tools and Fargate_AWSPSSummit_Singapore
CI-CD with AWS Developer Tools and Fargate_AWSPSSummit_Singapore
Amazon Web Services
 
Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018
Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018
Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018
Amazon Web Services
 
Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018
Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018
Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018
Amazon Web Services
 
A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018
A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018
A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018
Amazon Web Services
 
Ci/CD for AWS Lambda Projects - JLM CTO Club
Ci/CD for AWS Lambda Projects - JLM CTO ClubCi/CD for AWS Lambda Projects - JLM CTO Club
Ci/CD for AWS Lambda Projects - JLM CTO Club
Boaz Ziniman
 
Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...
Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...
Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...
Amazon Web Services
 
Building Microservices with the Twelve Factor App Pattern on AWS
Building Microservices with the Twelve Factor App Pattern on AWSBuilding Microservices with the Twelve Factor App Pattern on AWS
Building Microservices with the Twelve Factor App Pattern on AWS
Amazon Web Services
 
CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019
CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019
CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019
Bhuvaneswari Subramani
 
Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018
Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018
Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018
Amazon Web Services
 
Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...
Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...
Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...
Amazon Web Services
 
Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018
Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018
Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018
Amazon Web Services
 
Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...
Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...
Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...
Amazon Web Services
 
Community day _aws_ci_cd_v0.2
Community day _aws_ci_cd_v0.2Community day _aws_ci_cd_v0.2
Community day _aws_ci_cd_v0.2
VijayaNirmalaGopal
 
Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...
Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...
Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...
Amazon Web Services
 
Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...
Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...
Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...
Amazon Web Services
 
Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018
Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018
Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018
Amazon Web Services
 
使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)
使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)
使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)
Amazon Web Services
 
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...
Amazon Web Services
 
Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...
Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...
Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...
Amazon Web Services
 
Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...
Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...
Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...
Amazon Web Services
 
CI/CD with AWS Developer Tools and Fargate
CI/CD with AWS Developer Tools and FargateCI/CD with AWS Developer Tools and Fargate
CI/CD with AWS Developer Tools and Fargate
Amazon Web Services
 
CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018
CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018
CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018
Bhuvaneswari Subramani
 

More Related Content

What's hot

CI-CD with AWS Developer Tools and Fargate_AWSPSSummit_Singapore
CI-CD with AWS Developer Tools and Fargate_AWSPSSummit_SingaporeCI-CD with AWS Developer Tools and Fargate_AWSPSSummit_Singapore
CI-CD with AWS Developer Tools and Fargate_AWSPSSummit_Singapore
Amazon Web Services
 
Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018
Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018
Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018
Amazon Web Services
 
Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018
Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018
Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018
Amazon Web Services
 
A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018
A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018
A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018
Amazon Web Services
 
Ci/CD for AWS Lambda Projects - JLM CTO Club
Ci/CD for AWS Lambda Projects - JLM CTO ClubCi/CD for AWS Lambda Projects - JLM CTO Club
Ci/CD for AWS Lambda Projects - JLM CTO Club
Boaz Ziniman
 
Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...
Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...
Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...
Amazon Web Services
 
Building Microservices with the Twelve Factor App Pattern on AWS
Building Microservices with the Twelve Factor App Pattern on AWSBuilding Microservices with the Twelve Factor App Pattern on AWS
Building Microservices with the Twelve Factor App Pattern on AWS
Amazon Web Services
 
CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019
CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019
CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019
Bhuvaneswari Subramani
 
Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018
Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018
Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018
Amazon Web Services
 
Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...
Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...
Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...
Amazon Web Services
 
Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018
Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018
Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018
Amazon Web Services
 
Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...
Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...
Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...
Amazon Web Services
 
Community day _aws_ci_cd_v0.2
Community day _aws_ci_cd_v0.2Community day _aws_ci_cd_v0.2
Community day _aws_ci_cd_v0.2
VijayaNirmalaGopal
 
Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...
Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...
Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...
Amazon Web Services
 
Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...
Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...
Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...
Amazon Web Services
 
Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018
Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018
Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018
Amazon Web Services
 
使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)
使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)
使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)
Amazon Web Services
 
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...
Amazon Web Services
 
Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...
Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...
Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...
Amazon Web Services
 
Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...
Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...
Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...
Amazon Web Services
 

What's hot (20)

CI-CD with AWS Developer Tools and Fargate_AWSPSSummit_Singapore
CI-CD with AWS Developer Tools and Fargate_AWSPSSummit_SingaporeCI-CD with AWS Developer Tools and Fargate_AWSPSSummit_Singapore
CI-CD with AWS Developer Tools and Fargate_AWSPSSummit_Singapore
 
Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018
Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018
Container Power Hour with Jess, Clare, and Abby (CON362) - AWS re:Invent 2018
 
Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018
Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018
Advanced Continuous Delivery Best Practices (DEV317-R1) - AWS re:Invent 2018
 
A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018
A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018
A Serverless Journey: AWS Lambda Under the Hood (SRV409-R1) - AWS re:Invent 2018
 
Ci/CD for AWS Lambda Projects - JLM CTO Club
Ci/CD for AWS Lambda Projects - JLM CTO ClubCi/CD for AWS Lambda Projects - JLM CTO Club
Ci/CD for AWS Lambda Projects - JLM CTO Club
 
Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...
Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...
Runtime Security across Kubernetes and AWS Fargate (CON317-R1) - AWS re:Inven...
 
Building Microservices with the Twelve Factor App Pattern on AWS
Building Microservices with the Twelve Factor App Pattern on AWSBuilding Microservices with the Twelve Factor App Pattern on AWS
Building Microservices with the Twelve Factor App Pattern on AWS
 
CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019
CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019
CI CD using AWS Developer Tools @ AWS Community Day Chennai 2019
 
Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018
Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018
Migrating to AWS Fargate (CON311-R1) - AWS re:Invent 2018
 
Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...
Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...
Containerize Legacy .NET Framework Web Apps for Cloud Migration (WIN305) - AW...
 
Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018
Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018
Running Kubernetes Across Multiple AWS Accounts (CON409) - AWS re:Invent 2018
 
Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...
Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...
Earn Your DevOps Black Belt: Deployment Scenarios with AWS CloudFormation (DE...
 
Community day _aws_ci_cd_v0.2
Community day _aws_ci_cd_v0.2Community day _aws_ci_cd_v0.2
Community day _aws_ci_cd_v0.2
 
Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...
Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...
Building BMW Group's Customer Engagement Platform on AWS (AMT305) - AWS re:In...
 
Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...
Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...
Build a Game for Echo Buttons - an Alexa Gadget! (ALX405-R2) - AWS re:Invent ...
 
Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018
Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018
Infrastructure as Code: AWS Best Practices (DEV411-R3) - AWS re:Invent 2018
 
使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)
使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)
使用 AWS 無伺服器化應用程式模型 (SAM) 釋放您的 "敏捷" 能量 (Level 300)
 
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...
 
Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...
Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...
Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...
 
Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...
Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...
Accelerating Development Using Custom Hardware Accelerations with Amazon EC2 ...
 

Similar to How Zalando integrates Kubernetes with AWS

CI/CD with AWS Developer Tools and Fargate
CI/CD with AWS Developer Tools and FargateCI/CD with AWS Developer Tools and Fargate
CI/CD with AWS Developer Tools and Fargate
Amazon Web Services
 
CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018
CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018
CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018
Bhuvaneswari Subramani
 
From Code to a Running Container | AWS Floor28
From Code to a Running Container | AWS Floor28From Code to a Running Container | AWS Floor28
From Code to a Running Container | AWS Floor28
Amazon Web Services
 
Safeguard the Integrity of Your Code for Fast and Secure Deployments (DEV349-...
Safeguard the Integrity of Your Code for Fast and Secure Deployments (DEV349-...Safeguard the Integrity of Your Code for Fast and Secure Deployments (DEV349-...
Safeguard the Integrity of Your Code for Fast and Secure Deployments (DEV349-...
Amazon Web Services
 
[REPEAT 1] Safeguard the Integrity of Your Code for Fast and Secure Deploymen...
[REPEAT 1] Safeguard the Integrity of Your Code for Fast and Secure Deploymen...[REPEAT 1] Safeguard the Integrity of Your Code for Fast and Secure Deploymen...
[REPEAT 1] Safeguard the Integrity of Your Code for Fast and Secure Deploymen...
Amazon Web Services
 
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
AWS Summits
 
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
Amazon Web Services
 
Set Up a CI/CD Pipeline for Deploying Containers Using the AWS Developer Tool...
Set Up a CI/CD Pipeline for Deploying Containers Using the AWS Developer Tool...Set Up a CI/CD Pipeline for Deploying Containers Using the AWS Developer Tool...
Set Up a CI/CD Pipeline for Deploying Containers Using the AWS Developer Tool...
Amazon Web Services
 
AWS 기반 Microservice 운영을 위한 데브옵스 사례와 Spinnaker 소개::김영욱::AWS Summit Seoul 2018
AWS 기반 Microservice 운영을 위한 데브옵스 사례와 Spinnaker 소개::김영욱::AWS Summit Seoul 2018AWS 기반 Microservice 운영을 위한 데브옵스 사례와 Spinnaker 소개::김영욱::AWS Summit Seoul 2018
AWS 기반 Microservice 운영을 위한 데브옵스 사례와 Spinnaker 소개::김영욱::AWS Summit Seoul 2018Amazon Web Services Korea
 
Scaling and Automating DevOps with CloudBees and Spot Instances (GPSTEC310) -...
Scaling and Automating DevOps with CloudBees and Spot Instances (GPSTEC310) -...Scaling and Automating DevOps with CloudBees and Spot Instances (GPSTEC310) -...
Scaling and Automating DevOps with CloudBees and Spot Instances (GPSTEC310) -...
Amazon Web Services
 
DevSecOps 的規模化實踐 (Level: 300-400)
DevSecOps 的規模化實踐 (Level: 300-400)DevSecOps 的規模化實踐 (Level: 300-400)
DevSecOps 的規模化實踐 (Level: 300-400)
Amazon Web Services
 
Remove Undifferentiated Heavy Lifting from CI/CD Toolsets with Corteva Agrisc...
Remove Undifferentiated Heavy Lifting from CI/CD Toolsets with Corteva Agrisc...Remove Undifferentiated Heavy Lifting from CI/CD Toolsets with Corteva Agrisc...
Remove Undifferentiated Heavy Lifting from CI/CD Toolsets with Corteva Agrisc...
Amazon Web Services
 
Architect Your Legacy Microsoft Apps into Modern Cloud Workloads
Architect Your Legacy Microsoft Apps into Modern Cloud Workloads Architect Your Legacy Microsoft Apps into Modern Cloud Workloads
Architect Your Legacy Microsoft Apps into Modern Cloud Workloads
Amazon Web Services
 
Building Secure Services using Containers
Building Secure Services using ContainersBuilding Secure Services using Containers
Building Secure Services using Containers
Amazon Web Services
 
CI/CD@Scale
CI/CD@ScaleCI/CD@Scale
CI/CD@Scale
Amazon Web Services
 
Build CICD Pipeline for Container Presentation Slides
Build CICD Pipeline for Container Presentation SlidesBuild CICD Pipeline for Container Presentation Slides
Build CICD Pipeline for Container Presentation Slides
Amazon Web Services
 
Microservices for Startups
Microservices for StartupsMicroservices for Startups
Microservices for Startups
Amazon Web Services
 
Building and Moving Live Broadcasting to AWS (CTD305) - AWS re:Invent 2018
Building and Moving Live Broadcasting to AWS (CTD305) - AWS re:Invent 2018Building and Moving Live Broadcasting to AWS (CTD305) - AWS re:Invent 2018
Building and Moving Live Broadcasting to AWS (CTD305) - AWS re:Invent 2018
Amazon Web Services
 
Build a Social News App with Android and AWS (MOB307) - AWS re:Invent 2018
Build a Social News App with Android and AWS (MOB307) - AWS re:Invent 2018Build a Social News App with Android and AWS (MOB307) - AWS re:Invent 2018
Build a Social News App with Android and AWS (MOB307) - AWS re:Invent 2018
Amazon Web Services
 
Introduction to Serverless computing and AWS Lambda - Floor28
Introduction to Serverless computing and AWS Lambda - Floor28Introduction to Serverless computing and AWS Lambda - Floor28
Introduction to Serverless computing and AWS Lambda - Floor28
Boaz Ziniman
 

Similar to How Zalando integrates Kubernetes with AWS (20)

CI/CD with AWS Developer Tools and Fargate
CI/CD with AWS Developer Tools and FargateCI/CD with AWS Developer Tools and Fargate
CI/CD with AWS Developer Tools and Fargate
 
CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018
CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018
CI CD using AWS Developer Tools @ AWS Community Day Bengaluru 2018
 
From Code to a Running Container | AWS Floor28
From Code to a Running Container | AWS Floor28From Code to a Running Container | AWS Floor28
From Code to a Running Container | AWS Floor28
 
Safeguard the Integrity of Your Code for Fast and Secure Deployments (DEV349-...
Safeguard the Integrity of Your Code for Fast and Secure Deployments (DEV349-...Safeguard the Integrity of Your Code for Fast and Secure Deployments (DEV349-...
Safeguard the Integrity of Your Code for Fast and Secure Deployments (DEV349-...
 
[REPEAT 1] Safeguard the Integrity of Your Code for Fast and Secure Deploymen...
[REPEAT 1] Safeguard the Integrity of Your Code for Fast and Secure Deploymen...[REPEAT 1] Safeguard the Integrity of Your Code for Fast and Secure Deploymen...
[REPEAT 1] Safeguard the Integrity of Your Code for Fast and Secure Deploymen...
 
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
 
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
Orchestrating containers on AWS | AWS Summit Tel Aviv 2019
 
Set Up a CI/CD Pipeline for Deploying Containers Using the AWS Developer Tool...
Set Up a CI/CD Pipeline for Deploying Containers Using the AWS Developer Tool...Set Up a CI/CD Pipeline for Deploying Containers Using the AWS Developer Tool...
Set Up a CI/CD Pipeline for Deploying Containers Using the AWS Developer Tool...
 
AWS 기반 Microservice 운영을 위한 데브옵스 사례와 Spinnaker 소개::김영욱::AWS Summit Seoul 2018
AWS 기반 Microservice 운영을 위한 데브옵스 사례와 Spinnaker 소개::김영욱::AWS Summit Seoul 2018AWS 기반 Microservice 운영을 위한 데브옵스 사례와 Spinnaker 소개::김영욱::AWS Summit Seoul 2018
AWS 기반 Microservice 운영을 위한 데브옵스 사례와 Spinnaker 소개::김영욱::AWS Summit Seoul 2018
 
Scaling and Automating DevOps with CloudBees and Spot Instances (GPSTEC310) -...
Scaling and Automating DevOps with CloudBees and Spot Instances (GPSTEC310) -...Scaling and Automating DevOps with CloudBees and Spot Instances (GPSTEC310) -...
Scaling and Automating DevOps with CloudBees and Spot Instances (GPSTEC310) -...
 
DevSecOps 的規模化實踐 (Level: 300-400)
DevSecOps 的規模化實踐 (Level: 300-400)DevSecOps 的規模化實踐 (Level: 300-400)
DevSecOps 的規模化實踐 (Level: 300-400)
 
Remove Undifferentiated Heavy Lifting from CI/CD Toolsets with Corteva Agrisc...
Remove Undifferentiated Heavy Lifting from CI/CD Toolsets with Corteva Agrisc...Remove Undifferentiated Heavy Lifting from CI/CD Toolsets with Corteva Agrisc...
Remove Undifferentiated Heavy Lifting from CI/CD Toolsets with Corteva Agrisc...
 
Architect Your Legacy Microsoft Apps into Modern Cloud Workloads
Architect Your Legacy Microsoft Apps into Modern Cloud Workloads Architect Your Legacy Microsoft Apps into Modern Cloud Workloads
Architect Your Legacy Microsoft Apps into Modern Cloud Workloads
 
Building Secure Services using Containers
Building Secure Services using ContainersBuilding Secure Services using Containers
Building Secure Services using Containers
 
CI/CD@Scale
CI/CD@ScaleCI/CD@Scale
CI/CD@Scale
 
Build CICD Pipeline for Container Presentation Slides
Build CICD Pipeline for Container Presentation SlidesBuild CICD Pipeline for Container Presentation Slides
Build CICD Pipeline for Container Presentation Slides
 
Microservices for Startups
Microservices for StartupsMicroservices for Startups
Microservices for Startups
 
Building and Moving Live Broadcasting to AWS (CTD305) - AWS re:Invent 2018
Building and Moving Live Broadcasting to AWS (CTD305) - AWS re:Invent 2018Building and Moving Live Broadcasting to AWS (CTD305) - AWS re:Invent 2018
Building and Moving Live Broadcasting to AWS (CTD305) - AWS re:Invent 2018
 
Build a Social News App with Android and AWS (MOB307) - AWS re:Invent 2018
Build a Social News App with Android and AWS (MOB307) - AWS re:Invent 2018Build a Social News App with Android and AWS (MOB307) - AWS re:Invent 2018
Build a Social News App with Android and AWS (MOB307) - AWS re:Invent 2018
 
Introduction to Serverless computing and AWS Lambda - Floor28
Introduction to Serverless computing and AWS Lambda - Floor28Introduction to Serverless computing and AWS Lambda - Floor28
Introduction to Serverless computing and AWS Lambda - Floor28
 

Recently uploaded

GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
Sri Ambati
 
DevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA ConnectDevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA Connect
Kari Kakkonen
 
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Jeffrey Haguewood
 
FIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdfFIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance
 
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdfFIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance
 
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
BookNet Canada
 
"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor Turskyi"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor Turskyi
Fwdays
 
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Tobias Schneck
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
Product School
 
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Product School
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
DianaGray10
 
Connector Corner: Automate dynamic content and events by pushing a button
Connector Corner: Automate dynamic content and events by pushing a buttonConnector Corner: Automate dynamic content and events by pushing a button
Connector Corner: Automate dynamic content and events by pushing a button
DianaGray10
 
When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...
Elena Simperl
 
ODC, Data Fabric and Architecture User Group
ODC, Data Fabric and Architecture User GroupODC, Data Fabric and Architecture User Group
ODC, Data Fabric and Architecture User Group
CatarinaPereira64715
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
91mobiles
 
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptxIOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
Abida Shariff
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
Alison B. Lowndes
 
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
UiPathCommunity
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
ThousandEyes
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Product School
 

Recently uploaded (20)

GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
 
DevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA ConnectDevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA Connect
 
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
 
FIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdfFIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdf
 
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdfFIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
 
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
 
"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor Turskyi"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor Turskyi
 
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
 
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
 
Connector Corner: Automate dynamic content and events by pushing a button
Connector Corner: Automate dynamic content and events by pushing a buttonConnector Corner: Automate dynamic content and events by pushing a button
Connector Corner: Automate dynamic content and events by pushing a button
 
When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...
 
ODC, Data Fabric and Architecture User Group
ODC, Data Fabric and Architecture User GroupODC, Data Fabric and Architecture User Group
ODC, Data Fabric and Architecture User Group
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
 
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptxIOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
 
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
 

How Zalando integrates Kubernetes with AWS

  • 1. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. NORDICS Clarion Hotel Helsinki March 21, 2018
  • 2. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. HOW ZALANDO INTEGRATES KUBERNETES WITH AWS | MARCH 2018RUBEN DIAZ URI SAVELCHEV
  • 3. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. WE BRING FASHION TO PEOPLE IN 15 EU COUNTRIES +2 IN 2018 2008-2009 2010 2012-2013 2011
  • 4. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. > 23 million active customers ~ 2,000 brands ~4.5billion EUR revenue 2017 > 210 million visits per month > 15,000 employees in Europe > 70% of visits via mobile devices > 250,000 product choices 15 countries
  • 5. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. BUILDING OUR ECOMMERCE PLATFORM AWS, Microservices, Scala, Android and iOS >110 employees Autonomous delivery teams working with modern technologies 12 29 Nationalities Our office is located in KAMPPI
  • 6. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. TECH INFRASTRUCTURE
  • 7. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. ZALANDO TECH PLATFORM - THE HISTORY (ABRIDGED) ZOMCATPHP STUPS KUBERNETES 2010 2015 2016 Data center WAR LXC AWS Docker Cloud Formation AWS Docker Cloud Formation Kubernetes manifest Data center PHP files 2008 CDP 2017 … same … plus git-controlled deployments
  • 8. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. ISOLATED AWS ACCOUNTS Internet *.abc.zalando.net Product XYZ abc Account Load Balancer def Account Load Balancer *.def.zalando.net
  • 9. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. MOTIVATION FOR KUBERNETES • Resource efficiency • Cost efficiency • Velocity • Cloud independence THIS IS AN OPPORTUNITY FOR CHANGE!
  • 10. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. SCALE? 66 Clusters 329 Accounts ~10,000 EC2 30 TB (Docker images)
  • 11. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. OUR KUBERNETES ARCHITECTURE
  • 12. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CLUSTER COMPONENTS
  • 13. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. DETAILED TRAFFIC FLOW SKIPPER
  • 14. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. etcd etcd ... ... zkubectl Worker Node (3 AZs) Kubelet Pod Container Pod Container Container Master Node API Server Scheduler Controller Manager etcdUSER
  • 15. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CHALLENGES • Compliance • How To Deploy • Easy Of Use
  • 16. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. COMPLIANCE CHALLENGES Some of our compliance rules: ● Applications must run on certified (or whitelisted) AMIs ● All images must: ○ Come from an authorized Docker registry ○ Contain an SCM Source file to refer to a specific revision of the code ○ Be versioned ● Code changes must be peer reviewed and approved (4 eyes principle)
  • 17. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CHALLENGE - HOW TO DEPLOY Options for CI/CD: • Jenkins • GoCD • Concourse • Spinnaker • Travis Enterprise • AWS CodeBuild, CodePipeline Problems: • Non reproducible builds • Not cloud ready • No automatic setup • Difficult to scale up/down • Cumbersome build configuration • Manual credential configuration • Lack of Kubernetes support
  • 18. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. EASE OF USE
  • 19. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. What if the developer doesn’t have to worry about those steps?* * coding not included
  • 20. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH • Hands off • Compliant by default • Secure by default
  • 21. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH • Hands off • Compliant by default • Secure by default  Disable manual access to Production*  Automate Setup/Deployment steps  Separate Test and Production environments * some exceptions apply
  • 22. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH • Hands off • Compliant by default • Secure by default
  • 23. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. HANDS OFF Back to our options for CI/CD… ● Jenkins ● GoCD ● Concourse ● Spinnaker ● Travis Enterprise ● AWS CodeBuild / CodePipeline ✓ In-house developed (CDP)
  • 24. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. HANDS OFF Continuous Delivery Platform (CDP) ● Fully integrated with Kubernetes ● No need to manage CI infrastructure ● Fully integrated with GitHub Enterprise ● Triggered by code changes ● Can also deploy CloudFormation stacks
  • 25. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. DEPLOYMENT PIPELINE CDP GHE abc Account deploytrigger buildpush code push build trigger depoy ...
  • 26. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CONTINUOUS DELIVERY PLATFORM
  • 27. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CONTINUOUS DELIVERY PLATFORM – VIEW LOGS
  • 28. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. AWS INTEGRATION
  • 29. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CLOUDFORMATION VIA CI/CD . ├── deploy/apply │ ├── deployment.yaml # K8s Deployment │ ├── cf-iam-role.yaml # AWS IAM Role │ ├── cf-rds.yaml # AWS RDS Database │ ├── kube-ingress.yaml # K8s Ingress │ ├── kube-secret.yaml # K8s Secret │ └── kube-service.yaml # K8s Service └── delivery.yaml # CI/CD config
  • 30. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. ASSIGNING AWS IAM ROLE TO A POD kind: Deployment spec: template: metadata: annotations: # annotation for kube2iam iam.amazonaws.com/role: "app-myapp-role" spec: containers: - name: ... ...
  • 31. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH  Hands off • Compliant by default • Secure by default
  • 32. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. COMPLIANT BY DEFAULT Kubernetes AMIs ● Developers don’t have to choose instance type or AMI ○ Deployments result in Pods running in existing Worker Nodes ● All Kubernetes Nodes are based in compliant, whitelisted AMIs Docker Registry ● CDP only pulls images from authorized repositories ● When pushing images after build CDP automatically includes: ○ SCM Source information ○ Version tagging
  • 33. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. COMPLIANT BY DEFAULT Our compliance rules are met automatically:  Applications must run on certified (or whitelisted) AMIs  All images must:  Come from an authorized Docker registry  Contain an SCM Source file to refer to a specific revision of the code  Be versioned  Code changes must be peer reviewed and approved (4 eyes principle)
  • 34. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH  Hands off  Compliant by default • Secure by default
  • 35. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. SECURE BY DEFAULT ● Test and Production environments are completely isolated ● A Kubernetes Test Cluster is also provisioned ○ Manual access is permitted ● OAuth Credentials are tied to either Test or Live environments ○ Different OAuth Provider in test environment ○ Communication between Test and Live services is effectively disabled
  • 36. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. SO THIS SCHEMA TRANSFORMS INTO… Internet *.abc.zalando.net Product XYZ abc Account Load Balancer def Account Load Balancer *.def.zalando.net
  • 37. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. ...EXPANDS TO THIS*.abc.zalando.net *.def.zalando.net def Account Load Balancerabc Account Load Balancer abc-test Account Load Balancer *.abc-test.zalando.net def-test Account Load Balancer *.def-test.zalando.net Internet
  • 38. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. PUTTING IT ALL TOGETHER CDP GHE abc-test Account trigger push build trigger depoy ... abc Account deploy release
  • 39. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. A DIFFERENT APPROACH  Hands off  Compliant by default  Secure by default
  • 40. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. CONCLUSION • CDP enables hands off deployments to Kubernetes • Compliance is automatically handled by CDP and Developer Console • Test and Production are guaranteed to be separated through Credentials Isolation  Automation saves time  New features go live faster  Isolation secures environments  AWS let us run smoothly and fast  Developers focus on development
  • 41. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. LINKS Zalando Cluster Configuration https://github.com/zalando-incubator/kubernetes-on-aws Kubernetes on AWS Docs http://kubernetes-on-aws.readthedocs.io/en/latest/admin-guide/kubernetes-in- production.html Skipper HTTP Ingress Router https://github.com/zalando/skipper/ Kube AWS Ingress Controller https://github.com/zalando-incubator/kube-ingress-aws-controller External DNS https://github.com/kubernetes-incubator/external-dns
  • 42. © 2018, Amazon Web Services, Inc. or its Affiliates. All rights reserved. THANK YOU! QUESTIONS? RUBEN DIAZ, URI SAVELCHEV HELSINKI TECH HUB ruben.diaz@zalando.fi uri.savelchev@zalando.fi Also thanks to Rodrigo Reis, Dimitrij Holev, Henning Jacobs and others MARCH 2018