SlideShare a Scribd company logo

KubeCon 2019 Recap (Parts 1-3)

Ford Prior
Ford Prior

This is my noob recap of KubeCon 2019, which I transformed into a kubernetes bootcamp. I walked away with a bunch of learnings, so here they are for you :)

Technology
1 of 83
Download to read offline
OR: HOW I TURNED KUBECON 2019 INTO A KUBERNETES BOOTCAMP
ABOUT ME • Husband & father of 2 • English major, almost-lawyer • Cloud, CICD, resiliency, open-source • Also ’s boxing, jiu-jitsu, dendrology • Richmond AWS User Group • RVA Tech Talks Zero Kubernetes credibility 😊
DAY -1 | PREP Archiecture how does it look? “Deep dive” how does it work? Biz use case what does it solve? “Kubernetes Deep-Dive” by Nigel Poulton (A Cloud Guru) Blogs & KubeCon 2018
DAY 0 | AWS CONTAINER DAY • I already knew the ecosystem & tools • Really good docs & awesome workshops • AM - Kubeflow w/ EKS • PM - Service mesh w/ AppMesh • Felt like a quick win • Went to chill on an aircrab carrier DAY 1 | PUTTING IT TOGETHER • Context (opening keynote) • Overview (CNCF projects & updates) • More context (closing keynotes)
Party on the U.S.S. Midway
DAY 2 | SWIMMING IN DEEP WATERS • Keynotes (from hotel room) • Meet the maintainers (floor) • How to contribute (session) • Keynotes (from hotel room) DAY 3 | WHAT’S MISSING? • “Rails moment” (closing keynote) • Use cases (Reddit & Tinder) • Random topics (security & edge) • Cool down (holy moly)
MY STRATEGY | BE UBER-PRESENT • Zero pride (honest w/ myself & others) • Took a break when I needed it (lots of running) • Zero social commitments (to focus on learning) • Didn’t hang on details (e.g. during a talk) TAKEAWAYS | ENLIGHTENMENT! • Kubernetes is very different • non-intuitive paradigm shift w/ tentacles • Tech moves very fast (stupid questions galore) • Kubernetes is big on-prem (lots of running) • Interesting edge (to focus on learning)
borg @ google omega @ google Kuber- netes! 1.0 & CNCF pokemon, helm, kops 😍 service mesh & stability 🦕
nodes* cluster *e.g. namespaces on 1 or more EC2 instances
nodes* cluster node pod pod pod your app! aws your stack!
cluster myapp-container $ kubectl create –f app.yaml $ kubectl apply –f app.yaml replicas: n app: myapp app: myapp This is called a DEPLOYMENT It is an object in the API. app.yaml
myapp-container kubeletproxy api-server what should exist “This is who I am!” “Make it so!” pod scheduler x 1,000+ x 1 controller-manager
a “normal” view
another “normal” view
Let’s get weird.
CarlLarry Val Ford Seth Concho
control plane scheduler server controller fry pod grill pod salad pod x2 node
pod network 10.0.0.0/16 10.0.1.0/24 10.0.2.0/24 10.0.3.0/24 10.0.1.x 10.0.2.x 10.0.3.x 10.0.3.y node network 192.168.0.0/16 eth0 eth0 eth0 192.168.1.1 192.168.1.2 192.168.1.3 svc 172.11.250.5K8s cluster Your cloud provider will scale nodes to add pods Kubernetes will scale pods to add containers 192.168.n.n Watch KubeCon 18 talk
OR: HOW I TURNED KUBECON 2019 INTO A KUBERNETES BOOTCAMP
LIGHTNING TALKS • They were great. • Youtube playlist
HIDING IN THE DARK • His 5 y/o son was hiding from zombies • Strategy: digging into the dirt and staying very still • He hung out w/ a 7 y/o & learned to build a table, then use it to build weapons • Enterprises are like 5 year-olds, K8S is the table, community is 7 y/o
HOW CNCF PROJECTS WORK Sandbox (beta) Credibility + guidance + access to CNCF warchest (e.g. organization, marketing, staff) Incubation (alpha) Early adopters Graduation (v1) Mission critical usage Maintainer diversity Steady health
graduated
incubating
sandbox
The K8S landscape 😮 incubating graduated important
https://landscape.cncf.io CNCF projects (all stages)
WHO PAYS FOR THIS STUFF? • Kubernetes saves money. • Corporaoons love it. • Why did Google open-source it? • 90% of developers are being paid to work on CNCF projects* • CNCF is kinda like a country club
TREES & CLOUDS • Podocarpus, jacaranda, carrotwood, big figLiterally! • aws, azure, gke, etc.Providers • managed as part of K8S core • This is how it started “In-tree” cloud provider • Has its own release cycle • e.g. AWS manages it’s own set of integraoons “Out-of-tree” cloud provider • Kubernetes is truly cloud-agnostic with no native integrations for any cloud provider!Milestone!
PROJECT UPDATES •MySQL •Slack @ 100% •Crazy portability (adios Amazon) Vitess (graduated) •Bring policies all over the place •Admission Control in K8S •Web Assembly is coming… Open Policy Agent (incubaong) •Cloud-native messaging (services + streams) •Digital signing (not PPK’s) NATS (incubating) •1.16 •Better storage! •Windows support! •Better debugging! (ephemeral containers) •More reliability (affinity) •All cloud providers moved “out of tree” Kubernetes
RANDOM COOL THING: REBUILDING THE HYPERVISOR Rust – language of hypervisors. Very weird. Rebuilding KVM to be a truly “cloud native hypervisor” • Small VM’s for firecrackers • Big VM’s for legacy or ML workloads Guy from intel
How do we manage???? empire-building vendor lock-in 😵systems are complicated!
instrumentation telemetry open tracing open census tracing back-end ui front-end data mining platform jaegar client SDK’s (all major languages) new & better ways to trace
Live demo! • Slow Fibbonaci sequence in Go • Imported & added Open Telemetry • Saw where exactly slowness was occurring • Fixed it
link to pdf Open Policy Agent (OPA) deep-dive
• OPA = the best admission controller • mutation + verification This is what happens every time an API call is made on Kubernetes • E.g. What is OPA?
• OPA = the best admission controller • mutation + verification This is what happens every time an API call is made on Kubernetes • E.g.
myth of the monocluster matt silverlock, google TL;DR • 1 massive cluster = bad • Lots of small clusters = good? • Some general rules: • No pets • Map risk domains • Dedicated platform team
• Common sense: 1 massive cluster • K8S supports this kind of thing, right? • Easy to think about & interact with, right? • Bad news: • It’s always DNS (especially when you’re syncing w/ external infra) • You have just 1 apiserver & etcd (your control plame), which can scale vertically until… • A single workload can and will impact your entire cluster operations (e.g. eating IO) • More bad news: • You will inevitably move at the pace of your most risk-averse team • Inertia against security upgrades, small patches, and new features • Teams don’t really care about each other • 1 cluster / team? • Conway’s Law doesn’t work for Kubernetes • You get lots of needy pets 🐕 🐕 🐕 🐕 🐕 🐕 🐕 🐕 🐕 (poorly-trained & dangerous) • General rules: • No pets! (use cloud providers toolkits + standardized OPA & CI + sane defaults) • Map out “risk domains” along fault lines, and isolate high-risk services • Staff a dedicated platform team to: 1) own platform, and 2) help customize clusters • Getting started: • Start small • Don’t expose native K8S API’s • Don’t wait for requirements • Start small Link to pdf
you have 1 control planeneighbors are noisy DNS is inflexible
Avoid “general purpose” …but that’s hard.
OR: HOW I TURNED KUBECON 2019 INTO A KUBERNETES BOOTCAMP
2005 DHH Ruby + Rails “Whoops! …this is NOT Kubernetes in 2019 Front-end Optimizer Back-End Ruby Rails Websites! C++/Julia/Haskel LLVM Machine Our app KubernetesYAML?????“Senior Engineer of Defaults” How might we capture the essence of Rails without diminishing the power?
Extra slide for Ed & others who love Ruby on Rails DHH used TextMates “let’s copy DHH!” devs use Macs Resurgence of text editors modern text editors modern IDE’s Macs & modern IDE’s Devs have free time! Homebrew (written in Ruby) More free time to think outside the box! “Forget web requests”Rails ecosystem rethinking Sinatra Heroku rethinking PaaS git push heroku:master thingsHelm!
👀 defenders 👀attackers kubectl auth can-i systems reflect attitudes vision organization beliefs fears K8S = open, trusong, ❤ ❤ ❤ Not always good! also: silos are for grain! Sec peeps, the other SIGs need you!
Resource attacks (CPU) Network attacks (latency) scaling dependenciesCluster + Namespace ***Not your actual environments!*** “We should do chaos testing!” “NO!” “What if it was 100% safe? “GAME DAY!” 🙂 1x/quarter 😄 1x/month 😍 On-demand 😈 All the time! 😱 OKR’s 🤖 ML insights!
X x 11,000 stores 265 million customers/week K8s cluster azure satellites slow! data availability simplify consumption observability sec & management control resiliency kafka custom orchestrator Prometheus + FluentD Vault, Sloop, & CA Store federated control plane client failover w/ Istio & Envoy sidecar How?
DAY IN THE LIFE • What’s a SIG? • Special Interest Group • <list of SIG’s> • Every Fall, 859 core people vote on the Steering Committee • How do they work under the hood? • Each is unique but follows its own norms • 100% remote • Community Meetings: streamed weekly on YouTube (e.g. Docs is Th, AWS is Friday) • PR’s reviewed by members (this is biggest pain point) sig-list.md
HOW-TO GET STARTED • Getting started: • Pick a SIG that’s 1) easy, or 2) that you’re interested in • Attend the meetings (& offer to take notes!) • Join Slack channel and introduce yourself • Take a “first pass” at PR’s • Eventually…there’s a “contributor ladder” to climb • Wait…I have a life! • Core contributors are paid, but don’t make this your goal (that’s weird) • Per-hour productivity increases over time • Careful w/ commitments! Your reputation matters. • You don’t need loads of time to get started (focus on step 1) • Don’t focus on everything productivity age
3 SUPER COOL “K8S JOURNEY” TALKS • Tinder • Reddit • DoD
REDDIT’S K8S JOURNEY Link to PPT
In 2018, Reddit built a K8S platform called InfraRed to empower service owners to do all most of the things. KubeCon 2018 deck
2019: TALES FROM PRODUCTION • Reduced blast radius + saved costs Single-AZ is better than multi-AZ? • OPA calls overwhelmed control plane Cluster policies (RBAC à OPA) caused death spiral • Helm generates “Mega Charts” that are confusing, resulting in config drift • Baseplate.py auto-generates service definitions (“now, SRE’s at least know what’s in production”) YAML drudgery for service owners • MiniKube à remote clusters • Skaffold à Tilt upgrade • Helm Mega-Charts à Baseplate service generator Local dev sucks 2020: • Self-service onboarding • Refine Dev Env story • Build out SRE org 2018: • 1 service every 2 wks • mostly worked! • “When can my team onboard?
TINDER’S K8S JOURNEY
LOOP DO; FEEDBACK; END • EC2 auto-scaling group • Code pushed to NFS mount on EC2 & triggered service restart Pre-2018 • “Builder container” to standardize image creaoon • VPC peering (AWS VPC’s to K8S VPC’s) + Route 53 balancing load Step 1: create a new K8S environment • ARP – several hours downtime (ARP cache exhaustion) – increase limit! • 250k/second - # of DNS requests to 1000 Core DNS Pods – redeployed w/ Daemon Set to cut down on HTTP requests Step 2: work out the DNS bugs • Some pods hot, even though new pods added • Enjoy sidecars used (diagram) • “Everything else is dropped”? Step 3: work out Load Balancing bugs
YouTube: link DOD’S K8S JOURNEY
THE U.S. GOVERNMENT USES K8S, TOO! • CSO of Air Force • 3-10 y SDLC, 8 mo. Procurement • Be lucky you work at Capital One • “DoD DevSecOps Initiative” • Entire stack is FOSS • Zero Trust w/ Istio • 2 teams à platform & devops • Hard to innovate on high-side
Unexpected enthusiasm for K8S.
ENOUGH STICKERS TO PATCH A BATTLESHIP HULL
How it be when Kelsey Hightower comes back.
Forget the tech for a second… Why are we here? To solve problems. To work together. To empower each other. To show up & take risks. And why not learn something? Why not include as many people as possible?
Forget the competitiveness for a second… Forget your title & what company you work for… We’re all just pace setters. Just do your own teeny tiny part. And step aside to make room for the next person. …in your own unique way.
NON-MEN IN TECH: • Ian Coldwater • Liz Rice • Liz Fong-Jones • #womenintech & non-white people NON-WHITES IN TECH: • Brian Liles • Kelsey Hightower • Stephen Augustus • #BlackTechTwitter
• Are you sleeping? Are you eating healthy? Do you have someone who can let you know? • Arrogance is dangerous. You are probably average. • “Letting people know” à so they can hold you accountable. Work-life balance: • Mental health is stigmatized. Misdiagnosed, too. • “Drugs make me feel normal” • “Burn out” is very very bad. Mental health in tech:
A SUPER INCLUSIVE CONFERENCE *EXCEPT FOR IF YOU’RE NEW TO K8S J Paw Therapy Yoga & mediation rooms Diversity Scholarship (plus low rates for individuals & academics) Diversity Hack Lunch Daycare Vegan/GF/Kosher/Halal options at all meals
noteworthy: genuine attempts at coolness
1. Kubernetes is a very good thing 2. Thank you & your welcome 3. KubeCon 2020 is in Boston!
LINKS: In Search of the Kubernetes Rails Moment – Brian Liles •https://youtu.be/ZqQTEdHVaCw?t=308 Reflections on Kubernetes - Kelsey Hightower, Google •https://www.youtube.com/watch?v=jiaLsxjBeOQ Mental Health in Tech - Dr. Jennifer Akullian, Growth Coaching Institute •https://youtu.be/G-SdeRBHc9M An Introducoon to Helm - Ma| Farina, Samsung SDS & Josh Dolitsky, Blood Orange •https://youtu.be/Zzwq9FmZdsU Cloud Provider Subproject AWS / User Group AWS - Nishi Davidson, Pulumi & Justin SB, Google •https://youtu.be/z6LlhFfFGQM Panel: State of the Kubernetes Union - Steering Committee Discussion •https://youtu.be/0Su1kKlr9q0 Panel: Improving and Managing Kubernetes at Scale - Xiang Li, Alibaba; Corin Dwyer, Netflix: •https://youtu.be/BetxFccSpxQ How the Department of Defense Moved to Kubernetes and Isoo - Nicolas Chaillan •https://youtu.be/YjZ4AZ7hRM0 Kubernetes Deconstructed: Understanding Kubernetes by Breaking It Down - Carson Anderson, DOMO •https://youtu.be/90kZRyPcRZw

Recommended

Kubernetes at NU.nl (Kubernetes meetup 2019-09-05)
Kubernetes at NU.nl (Kubernetes meetup 2019-09-05)Kubernetes at NU.nl (Kubernetes meetup 2019-09-05)
Kubernetes at NU.nl (Kubernetes meetup 2019-09-05)Tibo Beijen
 
Greenfields tech decisions
Greenfields tech decisionsGreenfields tech decisions
Greenfields tech decisionsTrent Hornibrook
 
Ciso executive summit 2012
Ciso executive summit 2012Ciso executive summit 2012
Ciso executive summit 2012Bill Burns
 
Devops at Netflix (re:Invent)
Devops at Netflix (re:Invent)Devops at Netflix (re:Invent)
Devops at Netflix (re:Invent)Jeremy Edberg
 
Innovating faster with SBT, Continuous Delivery, and LXC
Innovating faster with SBT, Continuous Delivery, and LXCInnovating faster with SBT, Continuous Delivery, and LXC
Innovating faster with SBT, Continuous Delivery, and LXCkscaldef
 
Accelerating Innovation and Time-to-Market @ Camp Devops Houston 2015
Accelerating Innovation and Time-to-Market @ Camp Devops Houston 2015 Accelerating Innovation and Time-to-Market @ Camp Devops Houston 2015
Accelerating Innovation and Time-to-Market @ Camp Devops Houston 2015 Ariel Tseitlin
 
DefCore: The Interoperability Standard for OpenStack
DefCore: The Interoperability Standard for OpenStackDefCore: The Interoperability Standard for OpenStack
DefCore: The Interoperability Standard for OpenStackMark Voelker
 
OpenStack: Toward a More Resilient Cloud
OpenStack: Toward a More Resilient CloudOpenStack: Toward a More Resilient Cloud
OpenStack: Toward a More Resilient CloudMark Voelker
 

Recommended

Kubernetes at NU.nl (Kubernetes meetup 2019-09-05)
Kubernetes at NU.nl (Kubernetes meetup 2019-09-05)Kubernetes at NU.nl (Kubernetes meetup 2019-09-05)
Kubernetes at NU.nl (Kubernetes meetup 2019-09-05)Tibo Beijen
 
Greenfields tech decisions
Greenfields tech decisionsGreenfields tech decisions
Greenfields tech decisionsTrent Hornibrook
 
Ciso executive summit 2012
Ciso executive summit 2012Ciso executive summit 2012
Ciso executive summit 2012Bill Burns
 
Devops at Netflix (re:Invent)
Devops at Netflix (re:Invent)Devops at Netflix (re:Invent)
Devops at Netflix (re:Invent)Jeremy Edberg
 
Innovating faster with SBT, Continuous Delivery, and LXC
Innovating faster with SBT, Continuous Delivery, and LXCInnovating faster with SBT, Continuous Delivery, and LXC
Innovating faster with SBT, Continuous Delivery, and LXCkscaldef
 
Accelerating Innovation and Time-to-Market @ Camp Devops Houston 2015
Accelerating Innovation and Time-to-Market @ Camp Devops Houston 2015 Accelerating Innovation and Time-to-Market @ Camp Devops Houston 2015
Accelerating Innovation and Time-to-Market @ Camp Devops Houston 2015 Ariel Tseitlin
 
DefCore: The Interoperability Standard for OpenStack
DefCore: The Interoperability Standard for OpenStackDefCore: The Interoperability Standard for OpenStack
DefCore: The Interoperability Standard for OpenStackMark Voelker
 
OpenStack: Toward a More Resilient Cloud
OpenStack: Toward a More Resilient CloudOpenStack: Toward a More Resilient Cloud
OpenStack: Toward a More Resilient CloudMark Voelker
 
OpenStack 101 - All Things Open 2015
OpenStack 101 - All Things Open 2015OpenStack 101 - All Things Open 2015
OpenStack 101 - All Things Open 2015Mark Voelker
 
I Don't Test Often ...
I Don't Test Often ...I Don't Test Often ...
I Don't Test Often ...Gareth Bowles
 
Infrastructure for Decision Makers
Infrastructure for Decision MakersInfrastructure for Decision Makers
Infrastructure for Decision MakersEric Lubow
 
Integration in the Age of DevOps
Integration in the Age of DevOpsIntegration in the Age of DevOps
Integration in the Age of DevOpsBrian Ashburn
 
Chef Actions: Delightful near real-time activity tracking!
Chef Actions: Delightful near real-time activity tracking!Chef Actions: Delightful near real-time activity tracking!
Chef Actions: Delightful near real-time activity tracking!James Casey
 
How Events Are Reshaping Modern Systems
How Events Are Reshaping Modern SystemsHow Events Are Reshaping Modern Systems
How Events Are Reshaping Modern SystemsJonas Bonér
 
Splunk user group - automating Splunk with Ansible
Splunk user group - automating Splunk with AnsibleSplunk user group - automating Splunk with Ansible
Splunk user group - automating Splunk with AnsibleMark Phillips
 
Erlang as a cloud citizen, a fractal approach to throughput
Erlang as a cloud citizen, a fractal approach to throughputErlang as a cloud citizen, a fractal approach to throughput
Erlang as a cloud citizen, a fractal approach to throughputPaolo Negri
 
Getting a Neural Network Up and Running with OpenLab
Getting a Neural Network Up and Running with OpenLabGetting a Neural Network Up and Running with OpenLab
Getting a Neural Network Up and Running with OpenLabMelvin Hillsman
 
Building a smarter application stack - service discovery and wiring for Docker
Building a smarter application stack - service discovery and wiring for DockerBuilding a smarter application stack - service discovery and wiring for Docker
Building a smarter application stack - service discovery and wiring for DockerTomas Doran
 
20140708 - Jeremy Edberg: How Netflix Delivers Software
20140708 - Jeremy Edberg: How Netflix Delivers Software20140708 - Jeremy Edberg: How Netflix Delivers Software
20140708 - Jeremy Edberg: How Netflix Delivers SoftwareDevOps Chicago
 
Capacity Planning with Free Tools
Capacity Planning with Free ToolsCapacity Planning with Free Tools
Capacity Planning with Free ToolsAdrian Cockcroft
 
HA SOA Application with GlusterFS
HA SOA Application with GlusterFSHA SOA Application with GlusterFS
HA SOA Application with GlusterFSzeridon
 
What we talk about when we talk about DevOps
What we talk about when we talk about DevOpsWhat we talk about when we talk about DevOps
What we talk about when we talk about DevOpsRicard Clau
 
Migrating big data
Migrating big dataMigrating big data
Migrating big datalauraxthomson
 
How DreamHost builds a Public Cloud with OpenStack
How DreamHost builds a Public Cloud with OpenStackHow DreamHost builds a Public Cloud with OpenStack
How DreamHost builds a Public Cloud with OpenStackCarl Perry
 
Fuse integration-services
Fuse integration-servicesFuse integration-services
Fuse integration-servicesChristian Posta
 
Crash Course in Open Source Cloud Computing
Crash Course in Open Source Cloud Computing Crash Course in Open Source Cloud Computing
Crash Course in Open Source Cloud Computing Mark Hinkle
 
Release the Monkeys ! Testing in the Wild at Netflix
Release the Monkeys ! Testing in the Wild at NetflixRelease the Monkeys ! Testing in the Wild at Netflix
Release the Monkeys ! Testing in the Wild at NetflixGareth Bowles
 
Go Reactive: Building Responsive, Resilient, Elastic & Message-Driven Systems
Go Reactive: Building Responsive, Resilient, Elastic & Message-Driven SystemsGo Reactive: Building Responsive, Resilient, Elastic & Message-Driven Systems
Go Reactive: Building Responsive, Resilient, Elastic & Message-Driven SystemsJonas Bonér
 
Kubernetes Security
Kubernetes SecurityKubernetes Security
Kubernetes SecurityKarthik Gaekwad
 
DoxLon | Life with kube, containers and microservices
DoxLon | Life with kube, containers and microservicesDoxLon | Life with kube, containers and microservices
DoxLon | Life with kube, containers and microservicesRichard Marshall
 

More Related Content

What's hot

OpenStack 101 - All Things Open 2015
OpenStack 101 - All Things Open 2015OpenStack 101 - All Things Open 2015
OpenStack 101 - All Things Open 2015Mark Voelker
 
I Don't Test Often ...
I Don't Test Often ...I Don't Test Often ...
I Don't Test Often ...Gareth Bowles
 
Infrastructure for Decision Makers
Infrastructure for Decision MakersInfrastructure for Decision Makers
Infrastructure for Decision MakersEric Lubow
 
Integration in the Age of DevOps
Integration in the Age of DevOpsIntegration in the Age of DevOps
Integration in the Age of DevOpsBrian Ashburn
 
Chef Actions: Delightful near real-time activity tracking!
Chef Actions: Delightful near real-time activity tracking!Chef Actions: Delightful near real-time activity tracking!
Chef Actions: Delightful near real-time activity tracking!James Casey
 
How Events Are Reshaping Modern Systems
How Events Are Reshaping Modern SystemsHow Events Are Reshaping Modern Systems
How Events Are Reshaping Modern SystemsJonas Bonér
 
Splunk user group - automating Splunk with Ansible
Splunk user group - automating Splunk with AnsibleSplunk user group - automating Splunk with Ansible
Splunk user group - automating Splunk with AnsibleMark Phillips
 
Erlang as a cloud citizen, a fractal approach to throughput
Erlang as a cloud citizen, a fractal approach to throughputErlang as a cloud citizen, a fractal approach to throughput
Erlang as a cloud citizen, a fractal approach to throughputPaolo Negri
 
Getting a Neural Network Up and Running with OpenLab
Getting a Neural Network Up and Running with OpenLabGetting a Neural Network Up and Running with OpenLab
Getting a Neural Network Up and Running with OpenLabMelvin Hillsman
 
Building a smarter application stack - service discovery and wiring for Docker
Building a smarter application stack - service discovery and wiring for DockerBuilding a smarter application stack - service discovery and wiring for Docker
Building a smarter application stack - service discovery and wiring for DockerTomas Doran
 
20140708 - Jeremy Edberg: How Netflix Delivers Software
20140708 - Jeremy Edberg: How Netflix Delivers Software20140708 - Jeremy Edberg: How Netflix Delivers Software
20140708 - Jeremy Edberg: How Netflix Delivers SoftwareDevOps Chicago
 
Capacity Planning with Free Tools
Capacity Planning with Free ToolsCapacity Planning with Free Tools
Capacity Planning with Free ToolsAdrian Cockcroft
 
HA SOA Application with GlusterFS
HA SOA Application with GlusterFSHA SOA Application with GlusterFS
HA SOA Application with GlusterFSzeridon
 
What we talk about when we talk about DevOps
What we talk about when we talk about DevOpsWhat we talk about when we talk about DevOps
What we talk about when we talk about DevOpsRicard Clau
 
How DreamHost builds a Public Cloud with OpenStack
How DreamHost builds a Public Cloud with OpenStackHow DreamHost builds a Public Cloud with OpenStack
How DreamHost builds a Public Cloud with OpenStackCarl Perry
 
Fuse integration-services
Fuse integration-servicesFuse integration-services
Fuse integration-servicesChristian Posta
 
Crash Course in Open Source Cloud Computing
Crash Course in Open Source Cloud Computing Crash Course in Open Source Cloud Computing
Crash Course in Open Source Cloud Computing Mark Hinkle
 
Release the Monkeys ! Testing in the Wild at Netflix
Release the Monkeys ! Testing in the Wild at NetflixRelease the Monkeys ! Testing in the Wild at Netflix
Release the Monkeys ! Testing in the Wild at NetflixGareth Bowles
 
Go Reactive: Building Responsive, Resilient, Elastic & Message-Driven Systems
Go Reactive: Building Responsive, Resilient, Elastic & Message-Driven SystemsGo Reactive: Building Responsive, Resilient, Elastic & Message-Driven Systems
Go Reactive: Building Responsive, Resilient, Elastic & Message-Driven SystemsJonas Bonér
 

What's hot (20)

OpenStack 101 - All Things Open 2015
OpenStack 101 - All Things Open 2015OpenStack 101 - All Things Open 2015
OpenStack 101 - All Things Open 2015
 
I Don't Test Often ...
I Don't Test Often ...I Don't Test Often ...
I Don't Test Often ...
 
Infrastructure for Decision Makers
Infrastructure for Decision MakersInfrastructure for Decision Makers
Infrastructure for Decision Makers
 
Integration in the Age of DevOps
Integration in the Age of DevOpsIntegration in the Age of DevOps
Integration in the Age of DevOps
 
Chef Actions: Delightful near real-time activity tracking!
Chef Actions: Delightful near real-time activity tracking!Chef Actions: Delightful near real-time activity tracking!
Chef Actions: Delightful near real-time activity tracking!
 
How Events Are Reshaping Modern Systems
How Events Are Reshaping Modern SystemsHow Events Are Reshaping Modern Systems
How Events Are Reshaping Modern Systems
 
Splunk user group - automating Splunk with Ansible
Splunk user group - automating Splunk with AnsibleSplunk user group - automating Splunk with Ansible
Splunk user group - automating Splunk with Ansible
 
Erlang as a cloud citizen, a fractal approach to throughput
Erlang as a cloud citizen, a fractal approach to throughputErlang as a cloud citizen, a fractal approach to throughput
Erlang as a cloud citizen, a fractal approach to throughput
 
Getting a Neural Network Up and Running with OpenLab
Getting a Neural Network Up and Running with OpenLabGetting a Neural Network Up and Running with OpenLab
Getting a Neural Network Up and Running with OpenLab
 
Building a smarter application stack - service discovery and wiring for Docker
Building a smarter application stack - service discovery and wiring for DockerBuilding a smarter application stack - service discovery and wiring for Docker
Building a smarter application stack - service discovery and wiring for Docker
 
20140708 - Jeremy Edberg: How Netflix Delivers Software
20140708 - Jeremy Edberg: How Netflix Delivers Software20140708 - Jeremy Edberg: How Netflix Delivers Software
20140708 - Jeremy Edberg: How Netflix Delivers Software
 
Capacity Planning with Free Tools
Capacity Planning with Free ToolsCapacity Planning with Free Tools
Capacity Planning with Free Tools
 
HA SOA Application with GlusterFS
HA SOA Application with GlusterFSHA SOA Application with GlusterFS
HA SOA Application with GlusterFS
 
What we talk about when we talk about DevOps
What we talk about when we talk about DevOpsWhat we talk about when we talk about DevOps
What we talk about when we talk about DevOps
 
Migrating big data
Migrating big dataMigrating big data
Migrating big data
 
How DreamHost builds a Public Cloud with OpenStack
How DreamHost builds a Public Cloud with OpenStackHow DreamHost builds a Public Cloud with OpenStack
How DreamHost builds a Public Cloud with OpenStack
 
Fuse integration-services
Fuse integration-servicesFuse integration-services
Fuse integration-services
 
Crash Course in Open Source Cloud Computing
Crash Course in Open Source Cloud Computing Crash Course in Open Source Cloud Computing
Crash Course in Open Source Cloud Computing
 
Release the Monkeys ! Testing in the Wild at Netflix
Release the Monkeys ! Testing in the Wild at NetflixRelease the Monkeys ! Testing in the Wild at Netflix
Release the Monkeys ! Testing in the Wild at Netflix
 
Go Reactive: Building Responsive, Resilient, Elastic & Message-Driven Systems
Go Reactive: Building Responsive, Resilient, Elastic & Message-Driven SystemsGo Reactive: Building Responsive, Resilient, Elastic & Message-Driven Systems
Go Reactive: Building Responsive, Resilient, Elastic & Message-Driven Systems
 

Similar to KubeCon 2019 Recap (Parts 1-3)

DoxLon | Life with kube, containers and microservices
DoxLon | Life with kube, containers and microservicesDoxLon | Life with kube, containers and microservices
DoxLon | Life with kube, containers and microservicesRichard Marshall
 
10 tips for Cloud Native Security
10 tips for Cloud Native Security10 tips for Cloud Native Security
10 tips for Cloud Native SecurityKarthik Gaekwad
 
Platform Clouds, Containers, Immutable Infrastructure Oh My!
Platform Clouds, Containers, Immutable Infrastructure Oh My!Platform Clouds, Containers, Immutable Infrastructure Oh My!
Platform Clouds, Containers, Immutable Infrastructure Oh My!Stuart Charlton
 
DevSecOps in a cloudnative world
DevSecOps in a cloudnative worldDevSecOps in a cloudnative world
DevSecOps in a cloudnative worldKarthik Gaekwad
 
Kuby, ActiveDeployment for Rails Apps
Kuby, ActiveDeployment for Rails AppsKuby, ActiveDeployment for Rails Apps
Kuby, ActiveDeployment for Rails AppsCameron Dutro
 
Kubecon seattle 2018 recap - Application Deployment aspects
Kubecon seattle 2018 recap - Application Deployment aspectsKubecon seattle 2018 recap - Application Deployment aspects
Kubecon seattle 2018 recap - Application Deployment aspectsKrishna-Kumar
 
Kubernetes Manchester - 6th December 2018
Kubernetes Manchester - 6th December 2018Kubernetes Manchester - 6th December 2018
Kubernetes Manchester - 6th December 2018David Stockton
 
Cloud 2.0: Containers, Microservices and Cloud Hybridization
Cloud 2.0: Containers, Microservices and Cloud HybridizationCloud 2.0: Containers, Microservices and Cloud Hybridization
Cloud 2.0: Containers, Microservices and Cloud HybridizationMark Hinkle
 
DockerCon 15 Keynote - Day 2
DockerCon 15 Keynote - Day 2DockerCon 15 Keynote - Day 2
DockerCon 15 Keynote - Day 2Docker, Inc.
 
Docker-N-Beyond
Docker-N-BeyondDocker-N-Beyond
Docker-N-Beyondsantosh007
 
Cloud Native Camel Riding
Cloud Native Camel RidingCloud Native Camel Riding
Cloud Native Camel RidingChristian Posta
 
Kubernetes deep dive - - Huawei 2015-10
Kubernetes deep dive - - Huawei 2015-10Kubernetes deep dive - - Huawei 2015-10
Kubernetes deep dive - - Huawei 2015-10Vishnu Kannan
 
Database as a Service (DBaaS) on Kubernetes
Database as a Service (DBaaS) on KubernetesDatabase as a Service (DBaaS) on Kubernetes
Database as a Service (DBaaS) on KubernetesObjectRocket
 
The Need of Cloud-Native Application
The Need of Cloud-Native ApplicationThe Need of Cloud-Native Application
The Need of Cloud-Native ApplicationEmiliano Pecis
 
How to avoid microservice pitfalls
How to avoid microservice pitfallsHow to avoid microservice pitfalls
How to avoid microservice pitfallsParticular Software
 
Disenchantment: Netflix Titus, Its Feisty Team, and Daemons
Disenchantment: Netflix Titus, Its Feisty Team, and DaemonsDisenchantment: Netflix Titus, Its Feisty Team, and Daemons
Disenchantment: Netflix Titus, Its Feisty Team, and DaemonsC4Media
 

Similar to KubeCon 2019 Recap (Parts 1-3) (20)

Kubernetes Security
Kubernetes SecurityKubernetes Security
Kubernetes Security
 
DoxLon | Life with kube, containers and microservices
DoxLon | Life with kube, containers and microservicesDoxLon | Life with kube, containers and microservices
DoxLon | Life with kube, containers and microservices
 
10 tips for Cloud Native Security
10 tips for Cloud Native Security10 tips for Cloud Native Security
10 tips for Cloud Native Security
 
Platform Clouds, Containers, Immutable Infrastructure Oh My!
Platform Clouds, Containers, Immutable Infrastructure Oh My!Platform Clouds, Containers, Immutable Infrastructure Oh My!
Platform Clouds, Containers, Immutable Infrastructure Oh My!
 
DevSecOps in a cloudnative world
DevSecOps in a cloudnative worldDevSecOps in a cloudnative world
DevSecOps in a cloudnative world
 
Kuby, ActiveDeployment for Rails Apps
Kuby, ActiveDeployment for Rails AppsKuby, ActiveDeployment for Rails Apps
Kuby, ActiveDeployment for Rails Apps
 
Kubecon seattle 2018 recap - Application Deployment aspects
Kubecon seattle 2018 recap - Application Deployment aspectsKubecon seattle 2018 recap - Application Deployment aspects
Kubecon seattle 2018 recap - Application Deployment aspects
 
Dev Ops without the Ops
Dev Ops without the OpsDev Ops without the Ops
Dev Ops without the Ops
 
Kubernetes Manchester - 6th December 2018
Kubernetes Manchester - 6th December 2018Kubernetes Manchester - 6th December 2018
Kubernetes Manchester - 6th December 2018
 
Cloud 2.0: Containers, Microservices and Cloud Hybridization
Cloud 2.0: Containers, Microservices and Cloud HybridizationCloud 2.0: Containers, Microservices and Cloud Hybridization
Cloud 2.0: Containers, Microservices and Cloud Hybridization
 
DevOps Days Ohio
DevOps Days OhioDevOps Days Ohio
DevOps Days Ohio
 
DockerCon 15 Keynote - Day 2
DockerCon 15 Keynote - Day 2DockerCon 15 Keynote - Day 2
DockerCon 15 Keynote - Day 2
 
Docker-N-Beyond
Docker-N-BeyondDocker-N-Beyond
Docker-N-Beyond
 
Kubernetes
KubernetesKubernetes
Kubernetes
 
Cloud Native Camel Riding
Cloud Native Camel RidingCloud Native Camel Riding
Cloud Native Camel Riding
 
Kubernetes deep dive - - Huawei 2015-10
Kubernetes deep dive - - Huawei 2015-10Kubernetes deep dive - - Huawei 2015-10
Kubernetes deep dive - - Huawei 2015-10
 
Database as a Service (DBaaS) on Kubernetes
Database as a Service (DBaaS) on KubernetesDatabase as a Service (DBaaS) on Kubernetes
Database as a Service (DBaaS) on Kubernetes
 
The Need of Cloud-Native Application
The Need of Cloud-Native ApplicationThe Need of Cloud-Native Application
The Need of Cloud-Native Application
 
How to avoid microservice pitfalls
How to avoid microservice pitfallsHow to avoid microservice pitfalls
How to avoid microservice pitfalls
 
Disenchantment: Netflix Titus, Its Feisty Team, and Daemons
Disenchantment: Netflix Titus, Its Feisty Team, and DaemonsDisenchantment: Netflix Titus, Its Feisty Team, and Daemons
Disenchantment: Netflix Titus, Its Feisty Team, and Daemons
 

More from Ford Prior

This Month in Cloud - March 2022
This Month in Cloud - March 2022This Month in Cloud - March 2022
This Month in Cloud - March 2022Ford Prior
 
Get a-job-richmond-va
Get a-job-richmond-vaGet a-job-richmond-va
Get a-job-richmond-vaFord Prior
 
Ford's AWS Service Update - April 2020 (Richmond AWS User Group)
Ford's AWS Service Update - April 2020 (Richmond AWS User Group)Ford's AWS Service Update - April 2020 (Richmond AWS User Group)
Ford's AWS Service Update - April 2020 (Richmond AWS User Group)Ford Prior
 
Ford's AWS Service Update - May 2020 (Richmond AWS User Group)
Ford's AWS Service Update - May 2020 (Richmond AWS User Group)Ford's AWS Service Update - May 2020 (Richmond AWS User Group)
Ford's AWS Service Update - May 2020 (Richmond AWS User Group)Ford Prior
 
Ford's AWS Service Update - March 2020 (Richmond AWS User Group)
Ford's AWS Service Update - March 2020 (Richmond AWS User Group)Ford's AWS Service Update - March 2020 (Richmond AWS User Group)
Ford's AWS Service Update - March 2020 (Richmond AWS User Group)Ford Prior
 
Ford's AWS Service Update - February 2020 (Richmond AWS User Group)
Ford's AWS Service Update - February 2020 (Richmond AWS User Group)Ford's AWS Service Update - February 2020 (Richmond AWS User Group)
Ford's AWS Service Update - February 2020 (Richmond AWS User Group)Ford Prior
 
Ford's AWS Service Update - January 2020 (Richmond AWS User Group)
Ford's AWS Service Update - January 2020 (Richmond AWS User Group)Ford's AWS Service Update - January 2020 (Richmond AWS User Group)
Ford's AWS Service Update - January 2020 (Richmond AWS User Group)Ford Prior
 
re:Cap RVA - A Recap of AWS re:Invent 2019
re:Cap RVA - A Recap of AWS re:Invent 2019re:Cap RVA - A Recap of AWS re:Invent 2019
re:Cap RVA - A Recap of AWS re:Invent 2019Ford Prior
 
BDD & Beyond: The Past, Present, & Future of Test Automation
BDD & Beyond: The Past, Present, & Future of Test AutomationBDD & Beyond: The Past, Present, & Future of Test Automation
BDD & Beyond: The Past, Present, & Future of Test AutomationFord Prior
 
Agile QA: Redefining Quality in the Wild West
Agile QA: Redefining Quality in the Wild WestAgile QA: Redefining Quality in the Wild West
Agile QA: Redefining Quality in the Wild WestFord Prior
 
Testing API's: Tools & Tips & Tricks (Oh My!)
Testing API's: Tools & Tips & Tricks (Oh My!)Testing API's: Tools & Tips & Tricks (Oh My!)
Testing API's: Tools & Tips & Tricks (Oh My!)Ford Prior
 
RVA QA Meetup #2: The Wild West of Agile QA
RVA QA Meetup #2: The Wild West of Agile QARVA QA Meetup #2: The Wild West of Agile QA
RVA QA Meetup #2: The Wild West of Agile QAFord Prior
 

More from Ford Prior (12)

This Month in Cloud - March 2022
This Month in Cloud - March 2022This Month in Cloud - March 2022
This Month in Cloud - March 2022
 
Get a-job-richmond-va
Get a-job-richmond-vaGet a-job-richmond-va
Get a-job-richmond-va
 
Ford's AWS Service Update - April 2020 (Richmond AWS User Group)
Ford's AWS Service Update - April 2020 (Richmond AWS User Group)Ford's AWS Service Update - April 2020 (Richmond AWS User Group)
Ford's AWS Service Update - April 2020 (Richmond AWS User Group)
 
Ford's AWS Service Update - May 2020 (Richmond AWS User Group)
Ford's AWS Service Update - May 2020 (Richmond AWS User Group)Ford's AWS Service Update - May 2020 (Richmond AWS User Group)
Ford's AWS Service Update - May 2020 (Richmond AWS User Group)
 
Ford's AWS Service Update - March 2020 (Richmond AWS User Group)
Ford's AWS Service Update - March 2020 (Richmond AWS User Group)Ford's AWS Service Update - March 2020 (Richmond AWS User Group)
Ford's AWS Service Update - March 2020 (Richmond AWS User Group)
 
Ford's AWS Service Update - February 2020 (Richmond AWS User Group)
Ford's AWS Service Update - February 2020 (Richmond AWS User Group)Ford's AWS Service Update - February 2020 (Richmond AWS User Group)
Ford's AWS Service Update - February 2020 (Richmond AWS User Group)
 
Ford's AWS Service Update - January 2020 (Richmond AWS User Group)
Ford's AWS Service Update - January 2020 (Richmond AWS User Group)Ford's AWS Service Update - January 2020 (Richmond AWS User Group)
Ford's AWS Service Update - January 2020 (Richmond AWS User Group)
 
re:Cap RVA - A Recap of AWS re:Invent 2019
re:Cap RVA - A Recap of AWS re:Invent 2019re:Cap RVA - A Recap of AWS re:Invent 2019
re:Cap RVA - A Recap of AWS re:Invent 2019
 
BDD & Beyond: The Past, Present, & Future of Test Automation
BDD & Beyond: The Past, Present, & Future of Test AutomationBDD & Beyond: The Past, Present, & Future of Test Automation
BDD & Beyond: The Past, Present, & Future of Test Automation
 
Agile QA: Redefining Quality in the Wild West
Agile QA: Redefining Quality in the Wild WestAgile QA: Redefining Quality in the Wild West
Agile QA: Redefining Quality in the Wild West
 
Testing API's: Tools & Tips & Tricks (Oh My!)
Testing API's: Tools & Tips & Tricks (Oh My!)Testing API's: Tools & Tips & Tricks (Oh My!)
Testing API's: Tools & Tips & Tricks (Oh My!)
 
RVA QA Meetup #2: The Wild West of Agile QA
RVA QA Meetup #2: The Wild West of Agile QARVA QA Meetup #2: The Wild West of Agile QA
RVA QA Meetup #2: The Wild West of Agile QA
 

Recently uploaded

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
 
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Product School
 
In-Depth Performance Testing Guide for IT Professionals
In-Depth Performance Testing Guide for IT ProfessionalsIn-Depth Performance Testing Guide for IT Professionals
In-Depth Performance Testing Guide for IT ProfessionalsExpeed Software
 
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdfFIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdfFIDO Alliance
 
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...Sri Ambati
 
When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...Elena Simperl
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
 
FIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdfFIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdfFIDO Alliance
 
UiPath Test Automation using UiPath Test Suite series, part 2
UiPath Test Automation using UiPath Test Suite series, part 2UiPath Test Automation using UiPath Test Suite series, part 2
UiPath Test Automation using UiPath Test Suite series, part 2DianaGray10
 
"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor Turskyi"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor TurskyiFwdays
 
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...Product School
 
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...Product School
 
НАДІЯ ФЕДЮШКО БАЦ «Професійне зростання QA спеціаліста»
НАДІЯ ФЕДЮШКО БАЦ «Професійне зростання QA спеціаліста»НАДІЯ ФЕДЮШКО БАЦ «Професійне зростання QA спеціаліста»
НАДІЯ ФЕДЮШКО БАЦ «Професійне зростання QA спеціаліста»QADay
 
JMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and GrafanaJMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and GrafanaRTTS
 
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...Thierry Lestable
 
Key Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfKey Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
 
Exploring UiPath Orchestrator API: updates and limits in 2024 🚀
Exploring UiPath Orchestrator API: updates and limits in 2024 🚀Exploring UiPath Orchestrator API: updates and limits in 2024 🚀
Exploring UiPath Orchestrator API: updates and limits in 2024 🚀DianaGray10
 
Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptx
Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptxUnpacking Value Delivery - Agile Oxford Meetup - May 2024.pptx
Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptxDavid Michel
 

Recently uploaded (20)

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
 
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
 
In-Depth Performance Testing Guide for IT Professionals
In-Depth Performance Testing Guide for IT ProfessionalsIn-Depth Performance Testing Guide for IT Professionals
In-Depth Performance Testing Guide for IT Professionals
 
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdfFIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
 
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
 
When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
 
FIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdfFIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdf
 
UiPath Test Automation using UiPath Test Suite series, part 2
UiPath Test Automation using UiPath Test Suite series, part 2UiPath Test Automation using UiPath Test Suite series, part 2
UiPath Test Automation using UiPath Test Suite series, part 2
 
"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor Turskyi"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor Turskyi
 
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
 
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
 
НАДІЯ ФЕДЮШКО БАЦ «Професійне зростання QA спеціаліста»
НАДІЯ ФЕДЮШКО БАЦ «Професійне зростання QA спеціаліста»НАДІЯ ФЕДЮШКО БАЦ «Професійне зростання QA спеціаліста»
НАДІЯ ФЕДЮШКО БАЦ «Професійне зростання QA спеціаліста»
 
JMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and GrafanaJMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and Grafana
 
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
 
Key Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfKey Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdf
 
Exploring UiPath Orchestrator API: updates and limits in 2024 🚀
Exploring UiPath Orchestrator API: updates and limits in 2024 🚀Exploring UiPath Orchestrator API: updates and limits in 2024 🚀
Exploring UiPath Orchestrator API: updates and limits in 2024 🚀
 
Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptx
Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptxUnpacking Value Delivery - Agile Oxford Meetup - May 2024.pptx
Unpacking Value Delivery - Agile Oxford Meetup - May 2024.pptx
 

KubeCon 2019 Recap (Parts 1-3)

  • 1. OR: HOW I TURNED KUBECON 2019 INTO A KUBERNETES BOOTCAMP
  • 2. ABOUT ME • Husband & father of 2 • English major, almost-lawyer • Cloud, CICD, resiliency, open-source • Also ’s boxing, jiu-jitsu, dendrology • Richmond AWS User Group • RVA Tech Talks Zero Kubernetes credibility 😊
  • 3.
  • 4. DAY -1 | PREP Archiecture how does it look? “Deep dive” how does it work? Biz use case what does it solve? “Kubernetes Deep-Dive” by Nigel Poulton (A Cloud Guru) Blogs & KubeCon 2018
  • 5. DAY 0 | AWS CONTAINER DAY • I already knew the ecosystem & tools • Really good docs & awesome workshops • AM - Kubeflow w/ EKS • PM - Service mesh w/ AppMesh • Felt like a quick win • Went to chill on an aircrab carrier DAY 1 | PUTTING IT TOGETHER • Context (opening keynote) • Overview (CNCF projects & updates) • More context (closing keynotes)
  • 7. DAY 2 | SWIMMING IN DEEP WATERS • Keynotes (from hotel room) • Meet the maintainers (floor) • How to contribute (session) • Keynotes (from hotel room) DAY 3 | WHAT’S MISSING? • “Rails moment” (closing keynote) • Use cases (Reddit & Tinder) • Random topics (security & edge) • Cool down (holy moly)
  • 8. MY STRATEGY | BE UBER-PRESENT • Zero pride (honest w/ myself & others) • Took a break when I needed it (lots of running) • Zero social commitments (to focus on learning) • Didn’t hang on details (e.g. during a talk) TAKEAWAYS | ENLIGHTENMENT! • Kubernetes is very different • non-intuitive paradigm shift w/ tentacles • Tech moves very fast (stupid questions galore) • Kubernetes is big on-prem (lots of running) • Interesting edge (to focus on learning)
  • 9. borg @ google omega @ google Kuber- netes! 1.0 & CNCF pokemon, helm, kops 😍 service mesh & stability 🦕
  • 10.
  • 11.
  • 12.
  • 13.
  • 14. nodes* cluster *e.g. namespaces on 1 or more EC2 instances
  • 16. cluster myapp-container $ kubectl create –f app.yaml $ kubectl apply –f app.yaml replicas: n app: myapp app: myapp This is called a DEPLOYMENT It is an object in the API. app.yaml
  • 17. myapp-container kubeletproxy api-server what should exist “This is who I am!” “Make it so!” pod scheduler x 1,000+ x 1 controller-manager
  • 23. pod network 10.0.0.0/16 10.0.1.0/24 10.0.2.0/24 10.0.3.0/24 10.0.1.x 10.0.2.x 10.0.3.x 10.0.3.y node network 192.168.0.0/16 eth0 eth0 eth0 192.168.1.1 192.168.1.2 192.168.1.3 svc 172.11.250.5K8s cluster Your cloud provider will scale nodes to add pods Kubernetes will scale pods to add containers 192.168.n.n Watch KubeCon 18 talk
  • 24. OR: HOW I TURNED KUBECON 2019 INTO A KUBERNETES BOOTCAMP
  • 25. LIGHTNING TALKS • They were great. • Youtube playlist
  • 26. HIDING IN THE DARK • His 5 y/o son was hiding from zombies • Strategy: digging into the dirt and staying very still • He hung out w/ a 7 y/o & learned to build a table, then use it to build weapons • Enterprises are like 5 year-olds, K8S is the table, community is 7 y/o
  • 27. HOW CNCF PROJECTS WORK Sandbox (beta) Credibility + guidance + access to CNCF warchest (e.g. organization, marketing, staff) Incubation (alpha) Early adopters Graduation (v1) Mission critical usage Maintainer diversity Steady health
  • 28.
  • 29.
  • 35. WHO PAYS FOR THIS STUFF? • Kubernetes saves money. • Corporaoons love it. • Why did Google open-source it? • 90% of developers are being paid to work on CNCF projects* • CNCF is kinda like a country club
  • 36. TREES & CLOUDS • Podocarpus, jacaranda, carrotwood, big figLiterally! • aws, azure, gke, etc.Providers • managed as part of K8S core • This is how it started “In-tree” cloud provider • Has its own release cycle • e.g. AWS manages it’s own set of integraoons “Out-of-tree” cloud provider • Kubernetes is truly cloud-agnostic with no native integrations for any cloud provider!Milestone!
  • 37. PROJECT UPDATES •MySQL •Slack @ 100% •Crazy portability (adios Amazon) Vitess (graduated) •Bring policies all over the place •Admission Control in K8S •Web Assembly is coming… Open Policy Agent (incubaong) •Cloud-native messaging (services + streams) •Digital signing (not PPK’s) NATS (incubating) •1.16 •Better storage! •Windows support! •Better debugging! (ephemeral containers) •More reliability (affinity) •All cloud providers moved “out of tree” Kubernetes
  • 38. RANDOM COOL THING: REBUILDING THE HYPERVISOR Rust – language of hypervisors. Very weird. Rebuilding KVM to be a truly “cloud native hypervisor” • Small VM’s for firecrackers • Big VM’s for legacy or ML workloads Guy from intel
  • 39. How do we manage???? empire-building vendor lock-in 😵systems are complicated!
  • 40. instrumentation telemetry open tracing open census tracing back-end ui front-end data mining platform jaegar client SDK’s (all major languages) new & better ways to trace
  • 41.
  • 42. Live demo! • Slow Fibbonaci sequence in Go • Imported & added Open Telemetry • Saw where exactly slowness was occurring • Fixed it
  • 43.
  • 44. link to pdf Open Policy Agent (OPA) deep-dive
  • 45. • OPA = the best admission controller • mutation + verification This is what happens every time an API call is made on Kubernetes • E.g. What is OPA?
  • 46. • OPA = the best admission controller • mutation + verification This is what happens every time an API call is made on Kubernetes • E.g.
  • 47.
  • 48. myth of the monocluster matt silverlock, google TL;DR • 1 massive cluster = bad • Lots of small clusters = good? • Some general rules: • No pets • Map risk domains • Dedicated platform team
  • 49. • Common sense: 1 massive cluster • K8S supports this kind of thing, right? • Easy to think about & interact with, right? • Bad news: • It’s always DNS (especially when you’re syncing w/ external infra) • You have just 1 apiserver & etcd (your control plame), which can scale vertically until… • A single workload can and will impact your entire cluster operations (e.g. eating IO) • More bad news: • You will inevitably move at the pace of your most risk-averse team • Inertia against security upgrades, small patches, and new features • Teams don’t really care about each other • 1 cluster / team? • Conway’s Law doesn’t work for Kubernetes • You get lots of needy pets 🐕 🐕 🐕 🐕 🐕 🐕 🐕 🐕 🐕 (poorly-trained & dangerous) • General rules: • No pets! (use cloud providers toolkits + standardized OPA & CI + sane defaults) • Map out “risk domains” along fault lines, and isolate high-risk services • Staff a dedicated platform team to: 1) own platform, and 2) help customize clusters • Getting started: • Start small • Don’t expose native K8S API’s • Don’t wait for requirements • Start small Link to pdf
  • 50. you have 1 control planeneighbors are noisy DNS is inflexible
  • 52. OR: HOW I TURNED KUBECON 2019 INTO A KUBERNETES BOOTCAMP
  • 53. 2005 DHH Ruby + Rails “Whoops! …this is NOT Kubernetes in 2019 Front-end Optimizer Back-End Ruby Rails Websites! C++/Julia/Haskel LLVM Machine Our app KubernetesYAML?????“Senior Engineer of Defaults” How might we capture the essence of Rails without diminishing the power?
  • 54.
  • 55. Extra slide for Ed & others who love Ruby on Rails DHH used TextMates “let’s copy DHH!” devs use Macs Resurgence of text editors modern text editors modern IDE’s Macs & modern IDE’s Devs have free time! Homebrew (written in Ruby) More free time to think outside the box! “Forget web requests”Rails ecosystem rethinking Sinatra Heroku rethinking PaaS git push heroku:master thingsHelm!
  • 56. 👀 defenders 👀attackers kubectl auth can-i systems reflect attitudes vision organization beliefs fears K8S = open, trusong, ❤ ❤ ❤ Not always good! also: silos are for grain! Sec peeps, the other SIGs need you!
  • 57.
  • 58. Resource attacks (CPU) Network attacks (latency) scaling dependenciesCluster + Namespace ***Not your actual environments!*** “We should do chaos testing!” “NO!” “What if it was 100% safe? “GAME DAY!” 🙂 1x/quarter 😄 1x/month 😍 On-demand 😈 All the time! 😱 OKR’s 🤖 ML insights!
  • 59.
  • 60.
  • 61. X x 11,000 stores 265 million customers/week K8s cluster azure satellites slow! data availability simplify consumption observability sec & management control resiliency kafka custom orchestrator Prometheus + FluentD Vault, Sloop, & CA Store federated control plane client failover w/ Istio & Envoy sidecar How?
  • 62. DAY IN THE LIFE • What’s a SIG? • Special Interest Group • <list of SIG’s> • Every Fall, 859 core people vote on the Steering Committee • How do they work under the hood? • Each is unique but follows its own norms • 100% remote • Community Meetings: streamed weekly on YouTube (e.g. Docs is Th, AWS is Friday) • PR’s reviewed by members (this is biggest pain point) sig-list.md
  • 63. HOW-TO GET STARTED • Getting started: • Pick a SIG that’s 1) easy, or 2) that you’re interested in • Attend the meetings (& offer to take notes!) • Join Slack channel and introduce yourself • Take a “first pass” at PR’s • Eventually…there’s a “contributor ladder” to climb • Wait…I have a life! • Core contributors are paid, but don’t make this your goal (that’s weird) • Per-hour productivity increases over time • Careful w/ commitments! Your reputation matters. • You don’t need loads of time to get started (focus on step 1) • Don’t focus on everything productivity age
  • 64. 3 SUPER COOL “K8S JOURNEY” TALKS • Tinder • Reddit • DoD
  • 66. In 2018, Reddit built a K8S platform called InfraRed to empower service owners to do all most of the things. KubeCon 2018 deck
  • 67. 2019: TALES FROM PRODUCTION • Reduced blast radius + saved costs Single-AZ is better than multi-AZ? • OPA calls overwhelmed control plane Cluster policies (RBAC à OPA) caused death spiral • Helm generates “Mega Charts” that are confusing, resulting in config drift • Baseplate.py auto-generates service definitions (“now, SRE’s at least know what’s in production”) YAML drudgery for service owners • MiniKube à remote clusters • Skaffold à Tilt upgrade • Helm Mega-Charts à Baseplate service generator Local dev sucks 2020: • Self-service onboarding • Refine Dev Env story • Build out SRE org 2018: • 1 service every 2 wks • mostly worked! • “When can my team onboard?
  • 69. LOOP DO; FEEDBACK; END • EC2 auto-scaling group • Code pushed to NFS mount on EC2 & triggered service restart Pre-2018 • “Builder container” to standardize image creaoon • VPC peering (AWS VPC’s to K8S VPC’s) + Route 53 balancing load Step 1: create a new K8S environment • ARP – several hours downtime (ARP cache exhaustion) – increase limit! • 250k/second - # of DNS requests to 1000 Core DNS Pods – redeployed w/ Daemon Set to cut down on HTTP requests Step 2: work out the DNS bugs • Some pods hot, even though new pods added • Enjoy sidecars used (diagram) • “Everything else is dropped”? Step 3: work out Load Balancing bugs
  • 71. THE U.S. GOVERNMENT USES K8S, TOO! • CSO of Air Force • 3-10 y SDLC, 8 mo. Procurement • Be lucky you work at Capital One • “DoD DevSecOps Initiative” • Entire stack is FOSS • Zero Trust w/ Istio • 2 teams à platform & devops • Hard to innovate on high-side
  • 73. ENOUGH STICKERS TO PATCH A BATTLESHIP HULL
  • 74. How it be when Kelsey Hightower comes back.
  • 75.
  • 76. Forget the tech for a second… Why are we here? To solve problems. To work together. To empower each other. To show up & take risks. And why not learn something? Why not include as many people as possible?
  • 77. Forget the competitiveness for a second… Forget your title & what company you work for… We’re all just pace setters. Just do your own teeny tiny part. And step aside to make room for the next person. …in your own unique way.
  • 78. NON-MEN IN TECH: • Ian Coldwater • Liz Rice • Liz Fong-Jones • #womenintech & non-white people NON-WHITES IN TECH: • Brian Liles • Kelsey Hightower • Stephen Augustus • #BlackTechTwitter
  • 79. • Are you sleeping? Are you eating healthy? Do you have someone who can let you know? • Arrogance is dangerous. You are probably average. • “Letting people know” à so they can hold you accountable. Work-life balance: • Mental health is stigmatized. Misdiagnosed, too. • “Drugs make me feel normal” • “Burn out” is very very bad. Mental health in tech:
  • 80. A SUPER INCLUSIVE CONFERENCE *EXCEPT FOR IF YOU’RE NEW TO K8S J Paw Therapy Yoga & mediation rooms Diversity Scholarship (plus low rates for individuals & academics) Diversity Hack Lunch Daycare Vegan/GF/Kosher/Halal options at all meals
  • 82. 1. Kubernetes is a very good thing 2. Thank you & your welcome 3. KubeCon 2020 is in Boston!
  • 83. LINKS: In Search of the Kubernetes Rails Moment – Brian Liles •https://youtu.be/ZqQTEdHVaCw?t=308 Reflections on Kubernetes - Kelsey Hightower, Google •https://www.youtube.com/watch?v=jiaLsxjBeOQ Mental Health in Tech - Dr. Jennifer Akullian, Growth Coaching Institute •https://youtu.be/G-SdeRBHc9M An Introducoon to Helm - Ma| Farina, Samsung SDS & Josh Dolitsky, Blood Orange •https://youtu.be/Zzwq9FmZdsU Cloud Provider Subproject AWS / User Group AWS - Nishi Davidson, Pulumi & Justin SB, Google •https://youtu.be/z6LlhFfFGQM Panel: State of the Kubernetes Union - Steering Committee Discussion •https://youtu.be/0Su1kKlr9q0 Panel: Improving and Managing Kubernetes at Scale - Xiang Li, Alibaba; Corin Dwyer, Netflix: •https://youtu.be/BetxFccSpxQ How the Department of Defense Moved to Kubernetes and Isoo - Nicolas Chaillan •https://youtu.be/YjZ4AZ7hRM0 Kubernetes Deconstructed: Understanding Kubernetes by Breaking It Down - Carson Anderson, DOMO •https://youtu.be/90kZRyPcRZw