Kendrick Coleman, profile picture
Uploaded byKendrick Coleman
PPTX, PDF395 views

Kubernetes for the VI Admin

This document provides an overview of Kubernetes and how it compares to VMware technologies. It begins with an analogy that containers are to operating systems what virtual machines are to server hardware. It then discusses how Kubernetes orchestrates multiple containers across nodes by splitting applications into smaller services. The remainder of the document discusses key Kubernetes concepts like pods, replica sets, deployments and services. It provides a mapping of how Kubernetes concepts compare to VMware concepts like vCenter and vSphere hosts. It also discusses considerations for installing Kubernetes and operating it at scale.

Embed presentation

Downloaded 16 times
Confidential │ ©2019 VMware, Inc. Kubernetes for the VI Admin Analogy Mapping Kenny Coleman Open Source Technical Product Manager / CNABU Twitter: @kendrickcoleman GitHub: kacole2 June 2019
2Confidential │ ©2019 VMware, Inc. but with a quicker adoption cycle. Containers are doing to operating systems what Virtual Machines did to server hardware
Confidential │ ©2019 VMware, Inc. 3 Split applications into smaller services. Allow teams to specialize in deploying and making their service available. Allow experimentation – teams can choose how to code/deploy their service. Containers become the construct Moving forward from the typical monolith… Application Progression
Confidential │ ©2019 VMware, Inc. 4 Application Operating System & App Dependencies Physical Infrastructure Application Operating System & App Dependencies Physical Infrastructure Containers and VMs – A Practical Comparison App Dependencies Compute | Net | Sec | Storage OS Abstraction Container Host OS Container Compute | Net | Sec | Storage Lots of Day2 Work Easier Ubiquitous Ubiquitous Configuration Management
Confidential │ ©2019 VMware, Inc. 5 Container Registry Repo for Container Images Anatomy of Building and Running a Container (Redis DB) FROM: Ubuntu 14.04 RUN apt-get redis EXPOSE 6379 CMD [“/user/sbin/redis..] Minimal Linux “Container Host” Docker Engine Running Container Redis DB Tools, Libs, SW From #docker build #docker push #docker run redis_img1 Redis DB Tools, Libs, SW Dockerfile Redis DB Tools, Libs, SW From Packaging the App with its Dependencies = Portability & Consistency VM
Confidential │ ©2019 VMware, Inc. Current Portfolio - Technology Assessment by Bucket Vendor provided software (ISV or COTS) or no access to source code ----------------------------------- Vendor provides PCF buildpack, docker images or Kubernetes artifacts ----------------------------------- Vendor availability to support the migration ----------------------------------- IBM Websphere, Weblogic, Mulesoft, TIBCO etc ----------------------------------- Vendor provides PCF buildpack, docker images, Kubernetes artifacts ----------------------------------- Vendor availability to support the migration ----------------------------------- 3-5 years old ----------------------------------- Access to source code, Windows Servers ----------------------------------- Limited or no Windows dependencies ----------------------------------- Java (under 7 years old) ----------------------------------- Access to source code ----------------------------------- Linux or Windows Server ----------------------------------- Java (Spring / NO Application Server Specific libraries) ----------------------------------- Access to source code ----------------------------------- Linux Server ----------------------------------- ApplicationPrioritizationCriteria Example: ISV product. Depends on MySQL DB and stores large files on disk Example: app that is built on WebSphere. No dependency on WebSphere libraries Example: app 4 services built using .NET core and uses Microsoft SQL Server Example: app uses Java EE, fronted by API gateway ISV product, uses OracleDB Example: app uses Spring Boot, 6 Microservices, some legacy data sources but behind an API Strengths and weaknesses of the existing applications
Confidential │ ©2019 VMware, Inc. 7 Business App Docker and Kubernetes Core Docker functionality is ability run containers • Manual, no fault tolerance, coordinating scale/upgrades, etc Scheduling, provisioning, service discovery and resource management of multiple containers $docker run container_web $docker run container_web $docker run container_LB $docker run container_App $kubectl create –f App.yaml The “App” Wanted: Container Orchestrator! Kubernetes Cluster Containers One at a Time Kubernetes (aka K8s) Orchestrating Multiple Containers
8Confidential │ ©2019 VMware, Inc. Architecture Mapping
Confidential │ ©2019 VMware, Inc. 9 The Control Plane API Server saves state Controller Manager / Cloud Controller Resource and Object Management Scheduler Watches for new pods Kubernetes Master The Kubernetes API server validates and configures data for the api objects which include pods, services, replicationcontrollers, and others. The API Server services REST operations and provides the frontend to the cluster’s shared state through which all other components interact
Confidential │ ©2019 VMware, Inc. 10 The Control Plane Kubernetes Master is like vCenter but for containers API Server saves state Controller Manager / Cloud Controller Resource and Object Management Scheduler Watches for new pods Kubernetes Master vCenter Database SchedulerServices +More: Web Client Inventory Licenses Syslog Health vAPI Endpoint Certificates …..
Confidential │ ©2019 VMware, Inc. 11 The Control Plane Kubernetes Master can scale API Server saves state Controller Manager / Cloud Controller Resource and Object Management Scheduler Watches for new pods Kubernetes Master Kubernetes Master Kubernetes Master
Confidential │ ©2019 VMware, Inc. 12 The Data Plane Kubernetes Workers are like ESXi hosts… but for containers Kubernetes Worker vSphere Host Operating System Container runtime Kubelet kube-proxy Pod Pod ESXi vCenter Kubernetes Master API Server
Confidential │ ©2019 VMware, Inc. 13 Access kubectl is sort of like vSphere Web Client… but not in GUI form Kubernetes vSphere vCenterKubernetes Master API Server kubectl -h
Confidential │ ©2019 VMware, Inc. 14 Access
Confidential │ ©2019 VMware, Inc. 15 Kubernetes Node (VM) Kubernetes Pod The Kubernetes Building Blocks Container – The core application Pod – Container(s) run inside Pods Node – Runs Docker Engine & Kubelet Kubernetes Cluster – Culmination of all components: Control & Data Plane Stem B Stem B Stem B Stem B Node Node Node Kubernetes Cluster Services API Kubernetes Pod App Container Redis DB Tools, Libs, SW Pod 2 Pod 1 K Docker Engine K K K ESXi App Container Redis DB Tools, Libs, SW VM VM VM VM VMs
Confidential │ ©2019 VMware, Inc. 16 Platfor m Ops Infrastructure Compute Network Monitoring Security Storage Architecting w/Specific Application Requirements Kubernetes Cluster vSphere NSX Wavefront NSX Datastores Platform Operator Focus on mapping Kubernetes constructs to a given infrastructure Load Balancer Persistent Volumes Resources / Availability Zone Security Policy Application Metrics ELK Kafka Nth App K8s API Common App Dev architects with native Kubernetes constructs the SDDC & public clouds AppDev VMware vSphere
17Confidential │ ©2019 VMware, Inc. Difficulty
Confidential │ ©2019 VMware, Inc. 18 Kubernetes is an abstraction layer that allows freedom for customization and tailoring for any platform. Run it in on your local machine, hosted in the cloud, turnkey cloud options, on-premises turnkey solutions, or completely custom to “do it yourself” (DIY). Choices And choices and choices and choices
Confidential │ ©2019 VMware, Inc. 19 Installing Kubernetes Or is there more research to do? Step 1. Choose your distro: • Ubuntu, CentOS, CoreOS, SUSE, RancherOS, Talos Etc Step 2. Make your distro configurable as a template/AMI/etc. • Countless blogs with outdated methods? • Will the template work with your environment? (ie Cloud Init vs Static IP) • Process for updating templates • Install Docker and Kubernetes components? Automate? • Sizing requirements? What container runtime do you want to use? • Docker? Rkt? Or some other CRI compatible offering? • Lessons learned from running Docker in production? • What container runtime version is supported with the version of Kubernetes? What happens after yum install docker-ce? Architecturally, single or multi-master? Stacked or separate etcd? • Different paths in the docs • Load Balancers, DNS, certificate sharing, and more to investigate
Confidential │ ©2019 VMware, Inc. 20 More research to weigh out the differences: • Is there an advantage to have overlay L2 vs L3? • kubeadm init requires special instructions for each solution. • What tools are available for troubleshooting? • How to manage at scale? • What is the scaling point? Networking More choices? Yes more!
Confidential │ ©2019 VMware, Inc. 21 Ready to Install? Not quite yet Persistent Storage • Native in-tree driver to provide persistent backing for Kubernetes applications. • Continually evolving (API, process, plugin model) • Cloud/Provider Specific Configs and Initialization • Few examples of how to locate or properly configure flags on kubelet and manifests after cluster initialization • Few examples with kubeadm exist (even for major cloud providers)
Confidential │ ©2019 VMware, Inc. 22 From The Kubernetes Documentation: Best-practice “fast paths” for creating a minimum viable cluster. Installing various nice-to-have addons, monitoring solutions, and cloud- specific addons, is not in scope. Instead, we expect higher-level and more tailored tooling to be built on top of kubeadm. Inference Kubernetes is hard. Kubeadm is a tool that builds and upgrades clusters very well. The ability to operationalize Kubernetes beyond installation is dependent upon maturity of the organization. Kubeadm Built by the community for the community
Confidential │ ©2019 VMware, Inc. 23 Flowchart of DIY Kubeadm DIY Create Master VM 1. Disable Swap for installation 2. Implement IP Table rules or disable firewall for Kubernetes communications 3. Install Docker or CRI of choice 4. Add Kubernetes Repo to get binaries 5. Configure SELinux 6. Enable kubelet service 7. Evaluate and decide on a CNI solution for overlay network connectivity 8. kubeadm init to initialize the cluster 9. Apply CNI solution to implement networking 10.Create custom vsphere.conf file for your environment and protect passwords using Secrets or SAML 11.Add flags to kubelet config, controller manifest, and API server manifest for vSphere integration 12.Restart all services and apply a default storage class to use persistent storage Create Worker VM 1. Disable Swap for installation 2. Implement IP Table rules or disable firewall Kubernetes communications 3. Install Docker or CRI of choice 4. Add Kubernetes Repo to get binaries 5. Configure SELinux 6. Enable kubelet service 7. kubeadm to join existing cluster 8. Add flags to kubelet config for vSphere configuration 9. Restart kubelet services for vSphere integration 10.Repeat for every worker node But what about Day 2+?
Confidential │ ©2019 VMware, Inc. 24 Kubernetes Worker Move to Production? There’s more than installation Operationalize the entire stack • Logging • Monitoring • Dependency Management • Security • Upgrades • Automated Repeatability • Regression Testing • Support App App Kubernetes Control Plane Kubernetes Worker App App Infrastructure
Confidential │ ©2019 VMware, Inc. 25 Core Principals Integration and Regression Testing 3 month cycle Azure* Over every cloud you are planning to support Networking & Security OS + K8s + Docker + Automation Day 2 Operations and Support Storage and Persistence
Confidential │ ©2019 VMware, Inc. 26 Multi-Cloud Kubernetes with choice of consumption and services VMware Kubernetes Portfolio 26 Native Public Cloud (SaaS) Private & Public Clouds (Self-managed) Cloud AssemblyNSX Service Mesh Turnkey SaaSModular VMware Essential PKS BUILD VMware Enterprise PKS VMware Cloud PKS OPERATE CONSUME Beta VMware Cloud Services and Partner Solutions Choose a solution based on experience and ability Quicker ROI Verified Updates Deterministic capabilities Support becomes common instead of custom Common components create tighter integrations Manufactured repeatability A better user experience
Confidential │ ©2019 VMware, Inc. 27 Technical Breakdown
28Confidential │ ©2019 VMware, Inc. Application
Confidential │ ©2019 VMware, Inc. 29 Pod Labels Allows us to tie components within Kubernetes together Kubernetes App vSphere VM volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello datastore storage policy tags custom attributes Update policies
Confidential │ ©2019 VMware, Inc. 30 Pod ReplicaSets Make sure multiple copies of a pod is running volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Pod volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Replica Set Pod Template Replicas: 2 Selector: type=FE
Confidential │ ©2019 VMware, Inc. 31 Pod Deployments Declarative orchestration of application roll-out volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Pod volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Replica Set Pod Template Replicas: 2 Selector: type=FE Deployment
Confidential │ ©2019 VMware, Inc. 32 Pod Services Exposing pods based on labels volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Pod volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Replica Set Pod Template Replicas: 2 Selector: type=FE Deployment Service Selectors: type=FE app=hellp
Confidential │ ©2019 VMware, Inc. 33 Namespaces • Isolated workspaces for users/projects Ingress • L7 load balancing Jobs • Run to completion Autoscaling • Automatically adjust replica count DaemonSets • Run something on every node (or subset) We’ve only scratched the surface. More items that we don’t have time to cover: And so much more
34Confidential │ ©2019 VMware, Inc. Get Started
Confidential │ ©2019 VMware, Inc. 35 Kubernetes is complicated – use a pre-packaged solution that does this for you. We recommend kubeadm for installation of kubernetes. Stand up a cluster with kubeadm for free here: https://training.play-with- kubernetes.com/kubernetes-workshop/ Click to edit optional subtitle; delete or type a space if not needed Build your own vSphere Cluster
Confidential │ ©2019 VMware, Inc. 36 The best install guide that’s still a work in progress 1. Creating an Ubuntu 18.04 LTS cloud image for cloning on VMware • Reliant on DHCP 2. Setting up K8s and the vSphere Cloud Provider using kubeadm • All the little details that seem to have not made it into the actual docs. For both kubeadm and vSphere • Uses Flannel as the networking layer • Learn to automate from here 3. Using the vSphere Cloud Provider for K8s to dynamically deploy volumes • Storage Classes, apps, and the k8s dashboard. Automated Steps to Install Kubernetes on CentOS7 with Kubeadm and vSphere • https://gist.github.com/kacole2/200ae9362b010480f866d82a363 c5327 Build your own vSphere Cluster
Confidential │ ©2019 VMware, Inc. 37 Learn about the features of VMware Enterprise PKS - https://www.vmware.com/try-vmware/pks-hol-labs.html Try out our VMware PKS Hands On Lab FREE VMware HOL
Confidential │ ©2019 VMware, Inc. Thank You Kenny Coleman Open Source Technical Product Manager / CNABU Twitter: @kendrickcoleman GitHub: kacole2

More Related Content

PPTX
Run Stateful Apps on Kubernetes with VMware PKS - Highlight WebLogic Server
bySimone Morellato
 
PPTX
Pivotal Container Service Overview
byVMware Tanzu
 
PDF
Enterprise Java on Azure: From Java EE to Spring, we have you covered
byEd Burns
 
PDF
Kubernetes Architecture with Components
byAjeet Singh
 
PDF
Kube Your Enthusiasm - Paul Czarkowski
byVMware Tanzu
 
PPTX
Enterprise pks overview
byBoskey Savla
 
PDF
VMware - Snapshot sessions - Deploy and manage tomorrow's applications today
byAnnSteyaert_vmware
 
PPTX
Hitting the Enterprise Sweet Spot—A Real-World View of PKS Deployment and Suc...
byVMware Tanzu
 
Run Stateful Apps on Kubernetes with VMware PKS - Highlight WebLogic Server
bySimone Morellato
 
Pivotal Container Service Overview
byVMware Tanzu
 
Enterprise Java on Azure: From Java EE to Spring, we have you covered
byEd Burns
 
Kubernetes Architecture with Components
byAjeet Singh
 
Kube Your Enthusiasm - Paul Czarkowski
byVMware Tanzu
 
Enterprise pks overview
byBoskey Savla
 
VMware - Snapshot sessions - Deploy and manage tomorrow's applications today
byAnnSteyaert_vmware
 
Hitting the Enterprise Sweet Spot—A Real-World View of PKS Deployment and Suc...
byVMware Tanzu
 

What's hot

PDF
Pivotal Container Service (PKS) at SF Cloud Foundry Meetup
bycornelia davis
 
PPT
Developing and Deploying Microservices to IBM Cloud Private
byShikha Srivastava
 
PPTX
Fabio rapposelli pks-vmug
byVMUG IT
 
PPTX
Private Cloud with Open Stack, Docker
byDavinder Kohli
 
PDF
Devops lifecycle with Kabanero Appsody, Codewind, Tekton
byWinton Winton
 
PDF
Presentation cloud orchestration
byxKinAnx
 
PDF
Microservices, Containers, Docker and a Cloud-Native Architecture in the Midd...
byKai Wähner
 
PPTX
Kubernetes overview 101
byBoskey Savla
 
PDF
Docker up & running
byLe Thi
 
PDF
Introducing github.com/open-cluster-management – How to deliver apps across c...
byMichael Elder
 
PPTX
Introduction to OS LEVEL Virtualization & Containers
byVaibhav Sharma
 
PDF
Deploying Kubernetes in the Enterprise (IBM #Think2019 #7678 Tech Talk)
byMichael Elder
 
PDF
PKS: The What and How of Enterprise-Grade Kubernetes
byVMware Tanzu
 
PPTX
20191201 kubernetes managed weblogic revival - part 2
bymakker_nl
 
PPTX
Docker OpenStack Cloud Foundry
byAnimesh Singh
 
PPTX
Optimizing Cloud Foundry and OpenStack for large scale deployments
byAnimesh Singh
 
PDF
Cloud Foundry Anniversary: Technical Slides
bymarklucovsky
 
PPTX
Open Stack Cloud Services
bySaurabh Gupta
 
PDF
How to Run Amazon Web Services Workloads on Your VMware vCloud®
byCloudsoft Corp
 
PDF
Container Native Development Tools - Talk by Mickey Boxell
byOracle Developers
 
Pivotal Container Service (PKS) at SF Cloud Foundry Meetup
bycornelia davis
 
Developing and Deploying Microservices to IBM Cloud Private
byShikha Srivastava
 
Fabio rapposelli pks-vmug
byVMUG IT
 
Private Cloud with Open Stack, Docker
byDavinder Kohli
 
Devops lifecycle with Kabanero Appsody, Codewind, Tekton
byWinton Winton
 
Presentation cloud orchestration
byxKinAnx
 
Microservices, Containers, Docker and a Cloud-Native Architecture in the Midd...
byKai Wähner
 
Kubernetes overview 101
byBoskey Savla
 
Docker up & running
byLe Thi
 
Introducing github.com/open-cluster-management – How to deliver apps across c...
byMichael Elder
 
Introduction to OS LEVEL Virtualization & Containers
byVaibhav Sharma
 
Deploying Kubernetes in the Enterprise (IBM #Think2019 #7678 Tech Talk)
byMichael Elder
 
PKS: The What and How of Enterprise-Grade Kubernetes
byVMware Tanzu
 
20191201 kubernetes managed weblogic revival - part 2
bymakker_nl
 
Docker OpenStack Cloud Foundry
byAnimesh Singh
 
Optimizing Cloud Foundry and OpenStack for large scale deployments
byAnimesh Singh
 
Cloud Foundry Anniversary: Technical Slides
bymarklucovsky
 
Open Stack Cloud Services
bySaurabh Gupta
 
How to Run Amazon Web Services Workloads on Your VMware vCloud®
byCloudsoft Corp
 
Container Native Development Tools - Talk by Mickey Boxell
byOracle Developers
 

Similar to Kubernetes for the VI Admin

PPTX
The Reality of DIY Kubernetes vs. PKS
byVMware Tanzu
 
PPSX
Containers Docker Kind Kubernetes Istio
byAraf Karsh Hamid
 
PDF
Kubernetes Concepts And Architecture Powerpoint Presentation Slides
bySlideTeam
 
PDF
Running and Managing Kubernetes on OpenStack
byVictor Palma
 
PDF
Introduction to kubernetes
byGabriel Carro
 
PPTX
KubernetesPPT.pptx
byRyuzaki360
 
PPTX
KubernetSADASDASDASDSADASDASDASDASDes.pptx
byMuhamedAhmed35
 
PPTX
07 Docker of emerging of emerging ETCS.pptx
byMaulikSidana
 
PPTX
Simplify Your Way To Expert Kubernetes Management
byDevOps.com
 
PDF
OSDC 2019 | KubeVirt: Converge IT infrastructure into one single Kubernetes p...
byNETWAYS
 
PDF
DEVOPS UNIT 4 docker and services commands
bybilluandtanya
 
PPTX
Kubernetes Overview 101.pptxKubernetes Overview 101.pptx
bypumipatlalun
 
PPTX
Docker and kubernetes
byDongwon Kim
 
PPTX
Docker and kubernetes
byMeiyappan Kannappa
 
PPTX
01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware
byVMUG IT
 
PDF
Introduction to containers, k8s, Microservices & Cloud Native
byTerry Wang
 
PDF
OSDC 2018 | Three years running containers with Kubernetes in Production by T...
byNETWAYS
 
PDF
Kubernetes
byLinjith Kunnon
 
PPTX
Working with kubernetes
byNagaraj Shenoy
 
PDF
Docker's Jérôme Petazzoni: Best Practices in Dev to Production Parity for Con...
byHeavybit
 
The Reality of DIY Kubernetes vs. PKS
byVMware Tanzu
 
Containers Docker Kind Kubernetes Istio
byAraf Karsh Hamid
 
Kubernetes Concepts And Architecture Powerpoint Presentation Slides
bySlideTeam
 
Running and Managing Kubernetes on OpenStack
byVictor Palma
 
Introduction to kubernetes
byGabriel Carro
 
KubernetesPPT.pptx
byRyuzaki360
 
KubernetSADASDASDASDSADASDASDASDASDes.pptx
byMuhamedAhmed35
 
07 Docker of emerging of emerging ETCS.pptx
byMaulikSidana
 
Simplify Your Way To Expert Kubernetes Management
byDevOps.com
 
OSDC 2019 | KubeVirt: Converge IT infrastructure into one single Kubernetes p...
byNETWAYS
 
DEVOPS UNIT 4 docker and services commands
bybilluandtanya
 
Kubernetes Overview 101.pptxKubernetes Overview 101.pptx
bypumipatlalun
 
Docker and kubernetes
byDongwon Kim
 
Docker and kubernetes
byMeiyappan Kannappa
 
01 - VMUGIT - Lecce 2018 - Fabio Rapposelli, VMware
byVMUG IT
 
Introduction to containers, k8s, Microservices & Cloud Native
byTerry Wang
 
OSDC 2018 | Three years running containers with Kubernetes in Production by T...
byNETWAYS
 
Kubernetes
byLinjith Kunnon
 
Working with kubernetes
byNagaraj Shenoy
 
Docker's Jérôme Petazzoni: Best Practices in Dev to Production Parity for Con...
byHeavybit
 

Recently uploaded

PDF
December Patch Tuesday
byIvanti
 
PDF
Day 1 - Cloud Security Strategy and Planning ~ 2nd Sight Lab ~ Cloud Security...
by2nd Sight Lab
 
PDF
The year in review - MarvelClient in 2025
bypanagenda
 
PDF
Hybrid Cloud vs Multi-Cloud Strategy 2025
byTeleglobal International
 
PDF
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
PDF
Eredità digitale sugli smartphone: cosa resta di noi nei dispositivi mobili
bySpeck&Tech
 
PDF
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
PDF
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
PDF
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
PDF
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
PDF
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
PDF
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PPTX
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
PPTX
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PPTX
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
PPTX
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
PDF
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
PPTX
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
December Patch Tuesday
byIvanti
 
Day 1 - Cloud Security Strategy and Planning ~ 2nd Sight Lab ~ Cloud Security...
by2nd Sight Lab
 
The year in review - MarvelClient in 2025
bypanagenda
 
Hybrid Cloud vs Multi-Cloud Strategy 2025
byTeleglobal International
 
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
Eredità digitale sugli smartphone: cosa resta di noi nei dispositivi mobili
bySpeck&Tech
 
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 

Kubernetes for the VI Admin

  • 1.
    Confidential │ ©2019VMware, Inc. Kubernetes for the VI Admin Analogy Mapping Kenny Coleman Open Source Technical Product Manager / CNABU Twitter: @kendrickcoleman GitHub: kacole2 June 2019
  • 2.
    2Confidential │ ©2019VMware, Inc. but with a quicker adoption cycle. Containers are doing to operating systems what Virtual Machines did to server hardware
  • 3.
    Confidential │ ©2019VMware, Inc. 3 Split applications into smaller services. Allow teams to specialize in deploying and making their service available. Allow experimentation – teams can choose how to code/deploy their service. Containers become the construct Moving forward from the typical monolith… Application Progression
  • 4.
    Confidential │ ©2019VMware, Inc. 4 Application Operating System & App Dependencies Physical Infrastructure Application Operating System & App Dependencies Physical Infrastructure Containers and VMs – A Practical Comparison App Dependencies Compute | Net | Sec | Storage OS Abstraction Container Host OS Container Compute | Net | Sec | Storage Lots of Day2 Work Easier Ubiquitous Ubiquitous Configuration Management
  • 5.
    Confidential │ ©2019VMware, Inc. 5 Container Registry Repo for Container Images Anatomy of Building and Running a Container (Redis DB) FROM: Ubuntu 14.04 RUN apt-get redis EXPOSE 6379 CMD [“/user/sbin/redis..] Minimal Linux “Container Host” Docker Engine Running Container Redis DB Tools, Libs, SW From #docker build #docker push #docker run redis_img1 Redis DB Tools, Libs, SW Dockerfile Redis DB Tools, Libs, SW From Packaging the App with its Dependencies = Portability & Consistency VM
  • 6.
    Confidential │ ©2019VMware, Inc. Current Portfolio - Technology Assessment by Bucket Vendor provided software (ISV or COTS) or no access to source code ----------------------------------- Vendor provides PCF buildpack, docker images or Kubernetes artifacts ----------------------------------- Vendor availability to support the migration ----------------------------------- IBM Websphere, Weblogic, Mulesoft, TIBCO etc ----------------------------------- Vendor provides PCF buildpack, docker images, Kubernetes artifacts ----------------------------------- Vendor availability to support the migration ----------------------------------- 3-5 years old ----------------------------------- Access to source code, Windows Servers ----------------------------------- Limited or no Windows dependencies ----------------------------------- Java (under 7 years old) ----------------------------------- Access to source code ----------------------------------- Linux or Windows Server ----------------------------------- Java (Spring / NO Application Server Specific libraries) ----------------------------------- Access to source code ----------------------------------- Linux Server ----------------------------------- ApplicationPrioritizationCriteria Example: ISV product. Depends on MySQL DB and stores large files on disk Example: app that is built on WebSphere. No dependency on WebSphere libraries Example: app 4 services built using .NET core and uses Microsoft SQL Server Example: app uses Java EE, fronted by API gateway ISV product, uses OracleDB Example: app uses Spring Boot, 6 Microservices, some legacy data sources but behind an API Strengths and weaknesses of the existing applications
  • 7.
    Confidential │ ©2019VMware, Inc. 7 Business App Docker and Kubernetes Core Docker functionality is ability run containers • Manual, no fault tolerance, coordinating scale/upgrades, etc Scheduling, provisioning, service discovery and resource management of multiple containers $docker run container_web $docker run container_web $docker run container_LB $docker run container_App $kubectl create –f App.yaml The “App” Wanted: Container Orchestrator! Kubernetes Cluster Containers One at a Time Kubernetes (aka K8s) Orchestrating Multiple Containers
  • 8.
    8Confidential │ ©2019VMware, Inc. Architecture Mapping
  • 9.
    Confidential │ ©2019VMware, Inc. 9 The Control Plane API Server saves state Controller Manager / Cloud Controller Resource and Object Management Scheduler Watches for new pods Kubernetes Master The Kubernetes API server validates and configures data for the api objects which include pods, services, replicationcontrollers, and others. The API Server services REST operations and provides the frontend to the cluster’s shared state through which all other components interact
  • 10.
    Confidential │ ©2019VMware, Inc. 10 The Control Plane Kubernetes Master is like vCenter but for containers API Server saves state Controller Manager / Cloud Controller Resource and Object Management Scheduler Watches for new pods Kubernetes Master vCenter Database SchedulerServices +More: Web Client Inventory Licenses Syslog Health vAPI Endpoint Certificates …..
  • 11.
    Confidential │ ©2019VMware, Inc. 11 The Control Plane Kubernetes Master can scale API Server saves state Controller Manager / Cloud Controller Resource and Object Management Scheduler Watches for new pods Kubernetes Master Kubernetes Master Kubernetes Master
  • 12.
    Confidential │ ©2019VMware, Inc. 12 The Data Plane Kubernetes Workers are like ESXi hosts… but for containers Kubernetes Worker vSphere Host Operating System Container runtime Kubelet kube-proxy Pod Pod ESXi vCenter Kubernetes Master API Server
  • 13.
    Confidential │ ©2019VMware, Inc. 13 Access kubectl is sort of like vSphere Web Client… but not in GUI form Kubernetes vSphere vCenterKubernetes Master API Server kubectl -h
  • 14.
    Confidential │ ©2019VMware, Inc. 14 Access
  • 15.
    Confidential │ ©2019VMware, Inc. 15 Kubernetes Node (VM) Kubernetes Pod The Kubernetes Building Blocks Container – The core application Pod – Container(s) run inside Pods Node – Runs Docker Engine & Kubelet Kubernetes Cluster – Culmination of all components: Control & Data Plane Stem B Stem B Stem B Stem B Node Node Node Kubernetes Cluster Services API Kubernetes Pod App Container Redis DB Tools, Libs, SW Pod 2 Pod 1 K Docker Engine K K K ESXi App Container Redis DB Tools, Libs, SW VM VM VM VM VMs
  • 16.
    Confidential │ ©2019VMware, Inc. 16 Platfor m Ops Infrastructure Compute Network Monitoring Security Storage Architecting w/Specific Application Requirements Kubernetes Cluster vSphere NSX Wavefront NSX Datastores Platform Operator Focus on mapping Kubernetes constructs to a given infrastructure Load Balancer Persistent Volumes Resources / Availability Zone Security Policy Application Metrics ELK Kafka Nth App K8s API Common App Dev architects with native Kubernetes constructs the SDDC & public clouds AppDev VMware vSphere
  • 17.
    17Confidential │ ©2019VMware, Inc. Difficulty
  • 18.
    Confidential │ ©2019VMware, Inc. 18 Kubernetes is an abstraction layer that allows freedom for customization and tailoring for any platform. Run it in on your local machine, hosted in the cloud, turnkey cloud options, on-premises turnkey solutions, or completely custom to “do it yourself” (DIY). Choices And choices and choices and choices
  • 19.
    Confidential │ ©2019VMware, Inc. 19 Installing Kubernetes Or is there more research to do? Step 1. Choose your distro: • Ubuntu, CentOS, CoreOS, SUSE, RancherOS, Talos Etc Step 2. Make your distro configurable as a template/AMI/etc. • Countless blogs with outdated methods? • Will the template work with your environment? (ie Cloud Init vs Static IP) • Process for updating templates • Install Docker and Kubernetes components? Automate? • Sizing requirements? What container runtime do you want to use? • Docker? Rkt? Or some other CRI compatible offering? • Lessons learned from running Docker in production? • What container runtime version is supported with the version of Kubernetes? What happens after yum install docker-ce? Architecturally, single or multi-master? Stacked or separate etcd? • Different paths in the docs • Load Balancers, DNS, certificate sharing, and more to investigate
  • 20.
    Confidential │ ©2019VMware, Inc. 20 More research to weigh out the differences: • Is there an advantage to have overlay L2 vs L3? • kubeadm init requires special instructions for each solution. • What tools are available for troubleshooting? • How to manage at scale? • What is the scaling point? Networking More choices? Yes more!
  • 21.
    Confidential │ ©2019VMware, Inc. 21 Ready to Install? Not quite yet Persistent Storage • Native in-tree driver to provide persistent backing for Kubernetes applications. • Continually evolving (API, process, plugin model) • Cloud/Provider Specific Configs and Initialization • Few examples of how to locate or properly configure flags on kubelet and manifests after cluster initialization • Few examples with kubeadm exist (even for major cloud providers)
  • 22.
    Confidential │ ©2019VMware, Inc. 22 From The Kubernetes Documentation: Best-practice “fast paths” for creating a minimum viable cluster. Installing various nice-to-have addons, monitoring solutions, and cloud- specific addons, is not in scope. Instead, we expect higher-level and more tailored tooling to be built on top of kubeadm. Inference Kubernetes is hard. Kubeadm is a tool that builds and upgrades clusters very well. The ability to operationalize Kubernetes beyond installation is dependent upon maturity of the organization. Kubeadm Built by the community for the community
  • 23.
    Confidential │ ©2019VMware, Inc. 23 Flowchart of DIY Kubeadm DIY Create Master VM 1. Disable Swap for installation 2. Implement IP Table rules or disable firewall for Kubernetes communications 3. Install Docker or CRI of choice 4. Add Kubernetes Repo to get binaries 5. Configure SELinux 6. Enable kubelet service 7. Evaluate and decide on a CNI solution for overlay network connectivity 8. kubeadm init to initialize the cluster 9. Apply CNI solution to implement networking 10.Create custom vsphere.conf file for your environment and protect passwords using Secrets or SAML 11.Add flags to kubelet config, controller manifest, and API server manifest for vSphere integration 12.Restart all services and apply a default storage class to use persistent storage Create Worker VM 1. Disable Swap for installation 2. Implement IP Table rules or disable firewall Kubernetes communications 3. Install Docker or CRI of choice 4. Add Kubernetes Repo to get binaries 5. Configure SELinux 6. Enable kubelet service 7. kubeadm to join existing cluster 8. Add flags to kubelet config for vSphere configuration 9. Restart kubelet services for vSphere integration 10.Repeat for every worker node But what about Day 2+?
  • 24.
    Confidential │ ©2019VMware, Inc. 24 Kubernetes Worker Move to Production? There’s more than installation Operationalize the entire stack • Logging • Monitoring • Dependency Management • Security • Upgrades • Automated Repeatability • Regression Testing • Support App App Kubernetes Control Plane Kubernetes Worker App App Infrastructure
  • 25.
    Confidential │ ©2019VMware, Inc. 25 Core Principals Integration and Regression Testing 3 month cycle Azure* Over every cloud you are planning to support Networking & Security OS + K8s + Docker + Automation Day 2 Operations and Support Storage and Persistence
  • 26.
    Confidential │ ©2019VMware, Inc. 26 Multi-Cloud Kubernetes with choice of consumption and services VMware Kubernetes Portfolio 26 Native Public Cloud (SaaS) Private & Public Clouds (Self-managed) Cloud AssemblyNSX Service Mesh Turnkey SaaSModular VMware Essential PKS BUILD VMware Enterprise PKS VMware Cloud PKS OPERATE CONSUME Beta VMware Cloud Services and Partner Solutions Choose a solution based on experience and ability Quicker ROI Verified Updates Deterministic capabilities Support becomes common instead of custom Common components create tighter integrations Manufactured repeatability A better user experience
  • 27.
    Confidential │ ©2019VMware, Inc. 27 Technical Breakdown
  • 28.
    28Confidential │ ©2019VMware, Inc. Application
  • 29.
    Confidential │ ©2019VMware, Inc. 29 Pod Labels Allows us to tie components within Kubernetes together Kubernetes App vSphere VM volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello datastore storage policy tags custom attributes Update policies
  • 30.
    Confidential │ ©2019VMware, Inc. 30 Pod ReplicaSets Make sure multiple copies of a pod is running volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Pod volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Replica Set Pod Template Replicas: 2 Selector: type=FE
  • 31.
    Confidential │ ©2019VMware, Inc. 31 Pod Deployments Declarative orchestration of application roll-out volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Pod volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Replica Set Pod Template Replicas: 2 Selector: type=FE Deployment
  • 32.
    Confidential │ ©2019VMware, Inc. 32 Pod Services Exposing pods based on labels volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Pod volume volume 1 2 3 1 2 version = 1.0 service = FE app = hello Replica Set Pod Template Replicas: 2 Selector: type=FE Deployment Service Selectors: type=FE app=hellp
  • 33.
    Confidential │ ©2019VMware, Inc. 33 Namespaces • Isolated workspaces for users/projects Ingress • L7 load balancing Jobs • Run to completion Autoscaling • Automatically adjust replica count DaemonSets • Run something on every node (or subset) We’ve only scratched the surface. More items that we don’t have time to cover: And so much more
  • 34.
    34Confidential │ ©2019VMware, Inc. Get Started
  • 35.
    Confidential │ ©2019VMware, Inc. 35 Kubernetes is complicated – use a pre-packaged solution that does this for you. We recommend kubeadm for installation of kubernetes. Stand up a cluster with kubeadm for free here: https://training.play-with- kubernetes.com/kubernetes-workshop/ Click to edit optional subtitle; delete or type a space if not needed Build your own vSphere Cluster
  • 36.
    Confidential │ ©2019VMware, Inc. 36 The best install guide that’s still a work in progress 1. Creating an Ubuntu 18.04 LTS cloud image for cloning on VMware • Reliant on DHCP 2. Setting up K8s and the vSphere Cloud Provider using kubeadm • All the little details that seem to have not made it into the actual docs. For both kubeadm and vSphere • Uses Flannel as the networking layer • Learn to automate from here 3. Using the vSphere Cloud Provider for K8s to dynamically deploy volumes • Storage Classes, apps, and the k8s dashboard. Automated Steps to Install Kubernetes on CentOS7 with Kubeadm and vSphere • https://gist.github.com/kacole2/200ae9362b010480f866d82a363 c5327 Build your own vSphere Cluster
  • 37.
    Confidential │ ©2019VMware, Inc. 37 Learn about the features of VMware Enterprise PKS - https://www.vmware.com/try-vmware/pks-hol-labs.html Try out our VMware PKS Hands On Lab FREE VMware HOL
  • 38.
    Confidential │ ©2019VMware, Inc. Thank You Kenny Coleman Open Source Technical Product Manager / CNABU Twitter: @kendrickcoleman GitHub: kacole2

Editor's Notes

  • #3 As a quick overview, we need to understand how containers are disrupting the current status quo. Virtual machines simplified operating systems by providing common virtual hardware which abstracted the complexity of the underlying infrastructure. You can think of containers as abstracting operating system complexity from the application. Meaning, I can package up not only the application, but all the dependencies for that application regardless of the operating system it runs on. There’s plenty of websites out there that show the trajectory of container adoption over time compared to VM adoption so it’s coming at a rapid pace.
  • #4 The driving forces behind any shift can point root cause back to the application. The container movement is happening because of new application architectures. We are hearing stories of companies who are deconstructing their monolithic applications to cerate small services that can be maintained and upgraded independently. This in turn will allow a person or a team to own a particular service and be responsible for it’s communication and hooks into the rest of the application. It also allows experimental product sets or features to be implemented without effecting the core components. And containers exposing their service becomes that core construct.
  • #5 I learn by using analogies. Taking something I’m already familiar with an mapping it to as new idea. Virtual machines were able to take the constraints of physical hardware and make them ubiquitous. This allowed the operating system to have virtualized hardware. This in turn allows the operating system to own the dependencies of the application. These dependencies could be tied to a certain version of ruby, node.js, or golang the operating system needed to have installed. Of course, this limits multiple applications from running on a single VM because of version dependency or even language dependency. Once the dependency is in place, the application can be deployed in a multitude of ways. With containers, the abstraction layer moves to the operating system. The container host is your operating system and the only dependency It requires is to have a container runtime installed. From there, your application and it’s dependencies are wrapped inside the container. The container itself is sharing the kernel and its properties from the container engine so we can have multiple containers, eaching having its own application with a different dependency as needed such as golang 1.4 in one container and golang1.12 in another.
  • #6 Before, when you needed to deploy an application you needed and VM image as your base OS, then some sort fo Configuration Management technique to configure the OS and install dependenciesm, and then lean on other configuration Management tooling to install/run the application. Now we can take something as simple as a dockerfile, build our application through a series of runtime commands, push it to a container registry such as DockerHub or if you’re running locally in your own datacenter, you can use an open source project like Harbor. From there, the container host will issue a docker run command that pulls from a registry and runs that application with all the dependencies it needs. This makes applications super portable, in a way that virtual machines can’t.
  • #7 When looking to see what type of applications you can containerize, this chart is helpful in knowing what level of complexity it can be accomplished with. Going from left to right, we see the progression. In bucket 1, you may have software that is coming from an ISV in some form of binaries. You have no access to the source code, so you have to build it based on a series of trial and error. In bucket 2, you are in the same situation except you are looking at the vendor to provide the best possible way of running it in a container by giving you the images to make it happen. Bucket 3 is for software that many enterprises struggle with containerizing using .NET. This is getting better as time progresses but windows support is always tricky. Swiftly moving over to bucket 5 we have more modern types of applications that are purposely built with containers in mind.
  • #8 We’ve talked a lot how Docker is making this all possible. But Docker alone only gives us part of the functionality we need to successfully run at scale. If we were to take a single application that has multiple container components, it can be ran but we miss out on those higher level pieces that give us more availability and easily scaling when needed. This is why we need an orchestrator. Google has won the battle and that’s why we are here talking about Kubernetes. Kubernetes has emerged as the defacto container orchestrator as every major container technology company is supporting it. Kubernetes provides the abiliy to use the docker container run time but add higher level value such as scheduling, service discovery, scaling, resource management and much more.
  • #9 Now that we have an idea of why we need Kubernetes, lets look at the architectural components and how that translates into the vSphere environment we all know and love.
  • #10 Kubernetes has two main pieces, there is the control plane which is our master nodes and the data plane which is our worker nodes. We will take a look at each at a fairly high level. The Kubernetes scheduler is policy-rich and topology-aware. It makes snap that effect availability, performance, and capacity of the cluster. The scheduler takes into account resource requirements, quality of service requirements, hardware, software, and policy constraints, affinity and anti-affinity specifications, data locality, inter-workload interference, deadlines, and so on. The API server is the central communication hub. It provides REST based services for the components to talk to one another as well as user interaction when deploying applications. The Kubernetes controller manager is a service that watches the shared state of the cluster through the apiserver and makes changes attempting to move the current state towards the desired state. The Cloud controller manager is a daemon that embeds the cloud specific components shipped with Kubernetes such as pieces relating to AWS or vSphere. These two make up everything needed for management of the running state The scheduler is what will watch for new pods as they are requested and created Etcd is like pretty much our database. It saves the current state of the cluster.
  • #11 This is pretty similar to what happens in vCenter. Instead of etcd, we have our database which is some flavor of SQL. There is the scheduler that places VMs in certain places. There are all kinds of services build into vCenter such as the web client, inventory, licensing, and more. The difference is that not everything is communicating over a singular API construct. But there is still an API available for these services as well.
  • #12 The control plane of Kubernets can scale as well. There is a lot more complex configuration that needs to take place that isn’t mentioned in this diagram such as fronting all these additional master nodes with a load balancer but etcd will replicate changes across the master nodes give it a highly available solution.
  • #13 The data plane is where our workloads are running. We start off with a base operating system that has a container runtime installed and our two Kubernetes components. The Kubelet is like a kubernetes agent. It’s responsible for issuing commands on the local node that spin up pods. Each pod can container 1 or more containers and that’s how our applications are packaged. The kube-proxy is exactly that, a network proxy. It can do simple or round robin TCP, UDP, and SCTP stream forwarding across a your choice of overlay networks. The kubelet is in costant communication with the API server for resource monitoring and heartbeating. This is analgous to our vSphere model. The ESXi worker is not something we typically interact with. Its run workloads but vCenter is it’s main source of communication and orchestration.
  • #14 Interacting with kubernetes is a bit different from vSphere. Most of us are ingrained with the instinct to use the vSphere Web Client to perform everything we need. Then we learn how to use other tooling like PowerCLI to automate some things and use a cli based control mechanism. Of course, we use vCenter as the main touch point here as well. In Kubernetes, kubectl is a binary that is used on any computer to access the Kuberentes API server. It’s what is used to issue commands to the API server that then kicks off any application deployments. Today, 99% of the work is all done through this command line tool. Kubernetes does come with a GUI but it’s read-only and is mostly used for resource consumption statistics. There are other GUIs being developed like Scope from weaveworks but you will have to become comfortable with the CLI for a while.
  • #15 If you’re interested to see what the cli can do, I’ve highlighted most of the common commands you will issue. Apply and create are very similar but these you will use most often when applying a policy or deployment to the api servier. When you need more instances of an application, that’s where scale will come into play. Looking to update your application, use the rolling update to update the pods in a fashion where there won’t be any hiccups in the app. Lastly, if you need to get into a container for any reason, there is the exec command line that’s similar to docker exec if you used that in the past.
  • #16 So a final note on the architecture, the container is wrapping your application. The pod runs multiple containers for your application. The worker node run the container runtime and kubernetes agents. The Control plane is your management components. All of this can run on top of vSphere as well.
  • #17 Going down a bit deeper is when we look at mapping more components from kubernetes to our infrastructure. Our application developer wants to provision a deployment and issues the apply command to the K8s api service. The application has specific requirements for it’s resources and affinity policies, security policy, how it is going to be accessed from the outside world using a load balancer, how the application storage is managed through persistent volumes, and what application metrics are pushed out for continual monitoring. As a vSphere admin, these can be tied back to components that exist today. The vSphere Cloud Provider within Kubernetes will help with workload direction. NSX-T can take care of networking security profiles as well as being one of the only on-premise solutions that provide Load Balancer primitives from Kubernetes. The vSphere Cloud Provider also manages where persistent volumes are stored by orchestrating all the necessary steps needed to create, attach and mount and VMDK to a worker node so data can be preserved after the lifecycle has ended. Lastly, integrations with Wavefront and vRealize Operations can conintually monitor the application and the infrastructure.
  • #25 Building your own solution by selecting individual pieces is exciting, but where does the fun end? Time spent researching integration and compatibility of components Does the management or orchestration layer know how to interoperate with all its resources? When an update is available, is there interdependency management matrices? If there is a problem, where is a line of support? What’s my organization’s level of maturity and willingness to spend time?
  • #27 Quicker ROI Updates and maintenance is verified by the assembler Deterministic capabilities and feature set Support becomes common instead of custom Common components mean tighter integrations that develop enhanced capabilities Easy manufactured repeatability A better overall user experience
  • #29 Now that we know about the architecture and how it maps to vSphere, in addition to the level of difficulty when it comes to building a kubernetes cluster on your own, let’s examine the high level constructs of deploying your first applications.
  • #30 Labels is what help us tie components together. We can label particular volumes so only certain containers can access them. In addition, we can map it our to higher levels such as saying a load balancer needs to tie itself to the service we call Front End for multiple types of applications, and in this case we have one called hello. In the vSphere world we use labels as well. Probably the most notable is using storage policies. When we create a new VM we can attach a storage policy to it that only allows datastores that meet that policy. In addition there are tags and custom attributes that can be used by other applications
  • #31 A replica set makes sure multiple copies of an application are running. It’s fairly simple to see how this is functioning but you are never going to be deploying a replicaSet or even a Pod on it’s own.
  • #32 That’s why we look to higher level constructs such as a deployment. The deployment will take these lower level constructs and orchestrate the roll out based on our needs
  • #33 Then when we need to access an application, we create services and can then expose pods based on the labels we had created previously. These all end up tying back to each other in meaningful ways.
  • #34 But we’re only scratching the surface with types of application deployments. There’s far too many concepts that we don’t have time to cover such as namespaces, ingress, autoscaling, and Daemonsets.