Bol.com Techlab, profile picture
Uploaded byBol.com Techlab
239 views

Kubernetes: love at first sight?

The document discusses the implementation and advantages of Kubernetes at Albert Heijn, focusing on its role in automating application deployment, scaling, and management. It addresses relational problems, both in storage and communication, encountered during this process, and highlights the benefits of using open-source tools to enhance their development and operational efficiency. The presentation concludes with an affirmation of Kubernetes as a stable and supportive environment for developers and DevOps practices.

Embed presentation

Download to read offline
Kubernetes Love at first sight? 7, June 2018 Joost Hofman (Lead Developer @ Albert Heijn IT Online) Milo van der zee (Senior Developer @Albert Heijn IT Online)
Agenda How? Kubernetes Why at AH? Relational problems Is it real love? Questions kubectl get
Kubernetes is an open-source system for automating deployment, scaling, and management of containerized applications. kubectl get
Kubernetes - Searches kubectl get
Kubernetes kubectl get Service POD POD 1 … n1 … n
Kubernetes kubectl get Operator / Developer Kubernetes Master API Server Controller Manager Scheduler ETCD Kubernetes Node Kubelet kube-proxy Pod Pod Pod Pod… Kubernetes Node Kubelet kube-proxy Pod Pod Pod Pod…Up to 5000 Users Plugin Network - Calico
user@host $ kubectl get nodes NAME STATUS ROLES AGE VERSION k8snode2098 Ready,SchedulingDisabled master 12d v1.8.4+coreos.0 k8snode2099 Ready,SchedulingDisabled master 12d v1.8.4+coreos.0 k8snode2100 Ready,SchedulingDisabled master 12d v1.8.4+coreos.0 k8snode2101 Ready node 12d v1.8.4+coreos.0 k8snode2102 Ready node 12d v1.8.4+coreos.0 k8snode2103 Ready node 12d v1.8.4+coreos.0 k8snode2104 Ready node 12d v1.8.4+coreos.0 k8snode2105 Ready node 12d v1.8.4+coreos.0 k8snode2107 Ready node 12d v1.8.4+coreos.0 k8snode2108 Ready node 12d v1.8.4+coreos.0 k8snode2109 Ready node 12d v1.8.4+coreos.0 k8snode2110 Ready node 12d v1.8.4+coreos.0 k8snode2111 Ready node 12d v1.8.4+coreos.0 Kubernetes
user@host $ kubectl get pods -o wide NAME READY STATUS IP NODE shoppinglist-widget-3162246403-q7c1x 1/1 Running 10.233.106.55 k8snode1657 subscription-service-8cc4c97fb-dh9zz 1/1 Running 10.233.87.218 k8snode1656 subscription-service-8cc4c97fb-t7wrj 1/1 Running 10.233.73.169 k8snode1651 taxonomy-neo4j-neo4j-core-0 1/1 Running 10.233.124.123 k8snode1814 taxonomy-neo4j-neo4j-core-1 1/1 Running 10.233.73.147 k8snode1651 taxonomy-neo4j-neo4j-core-2 1/1 Running 10.233.79.109 k8snode1813 taxonomy-service-7b4fb7f8d5-c6mvb 1/1 Running 10.233.79.105 k8snode1813 taxonomy-service-7b4fb7f8d5-h2hjk 1/1 Running 10.233.68.145 k8snode1655 gateway-3060515939-57r22 1/1 Running 10.233.124.98 k8snode1814 gateway-3060515939-9lqzk 1/1 Running 10.233.68.185 k8snode1655 gateway-3060515939-fkt9k 1/1 Running 10.233.71.29 k8snode1654 gateway-3060515939-ls9pv 1/1 Running 10.233.79.101 k8snode1813 Kubernetes
# kubectl -n online-prd describe pod gateway-3060515939-57r22 Name: gateway-3060515939-57r22 Namespace: online-prd Node: k8snode1814/150.83.153.243 Start Time: Wed, 14 Feb 2018 13:12:03 +0100 Labels: name=gateway Status: Running IP: 10.233.124.98 Containers: gateway: Image: regisry-docker.online.ah.nl:443/ah-open-api-gateway:0.1.2 Port: <none> Pods – kubectl describe pod api gateway
# kubectl describe svc gateway Name: gateway Namespace: online-prd Labels: run=gateway Annotations: kubectl.kubernetes.io/last-applied- configuration={"apiVersion":"v1","kind":"Service","metadata":{"annotations":{},"labels":{"ru n":"gateway"},"name":"gateway","namespace":"online-prd"},"spec":{"ports":... Selector: run=gateway Type: ClusterIP IP: 10.233.52.234 Port: <unset> 8080/TCP TargetPort: 8080/TCP Endpoints: 10.233.124.98:8080,10.233.68.185:8080,10.233.71.29:8080 + 1 more... Session Affinity: None Events: <none> Service - kubectl describe svc api gateway
-A KUBE-SERVICES -d 10.233.52.234/32 -p tcp -m tcp --dport 443 -j SVC-JFMNS -A SVC-JFMNS --mode random --probability 0.25 -j KUBE-SEP-JPX2Q -A SVC-JFMNS --mode random --probability 0.33 -j KUBE-SEP-KUJYT -A SVC-JFMNS --mode random --probability 0.5 -j KUBE-SEP-HTGFR -A SVC-JFMNS --mode random -j KUBE-SEP-JP5GT -A SEP-JPX2Q -p tcp -m recent -j DNAT --to-destination 143.54.22.4:6443 kubectl get api service – iptables
Why @ Albert Heijn? kubectl get 2015 Monolith Binary coupling Scalability problems Growth issues CI/CD impossible Downtime Scalable Decoupling Rolling updates Services CI/CD to the max Isolation of code Zero downtime Technology agnostic NOW and future
Why @ Albert Heijn? kubectl get … on a modern, scalable, automated platform Scalable architecture and technology Commodity hardware Virtualization Virtual hardware Container management platform - Manual - Within months - Semi-automated - Within weeks - Fully automated - Within minutes Containers
On Premise VS Cloud kubectl get No cloud options in 2016 and 2017
How? kubectl get
How? kubectl get
A HTTP call to appietoday.nl kubectl get Users Loadbalancer Nginx - Ingress Frontend (service) Frontend (pod) API Gateway (service) API Gateway (pod) API (service) API (pod) IDP (service) IDP (pod)
Our setup? kubectl get PlatformServicesAPI GatewayFrontend 65+ services / components 5 Clusters 50+ nodes 850+ Docker containers Continuous delivery Continuous delivery – Automated from development to production Authorization Authentication Throttling Routing Automate platform deployment with Ansible
Relational problems: Communication and Storage. kubectl get
Relational problems: Storage. kubectl get On premise Storage vSphere volumes Host path NFS
Relational problems: Storage. kubectl get On premise Storage GlusterFS
Relational problems: Postgres on Gluster. kubectl get pg_restore: [archiver (db)] Error from TOC entry 53398; 0 16503 TABLE DATA l1aaux_sci sdmcleod pg_restore: [archiver (db)] COPY failed for table "l1aaux_sci": ERROR: unexpected data beyond EOF in block 9391 of relation base/16386/17043 HINT: This has been seen to occur with buggy kernels; consider updating your system. CONTEXT: COPY l1aaux_sci, line 319329: "1854661 N 1.05156717906094999 1378796678.44843268 2012-02-01 07:04:39.5+00 2012-02-01 07:04:38.4484..." pg_restore: [archiver (db)] Error from TOC entry 53399; 0 16528 TABLE DATA l1afts_dbl sdmcleod pg_restore: [archiver (db)] COPY failed for table "l1afts_dbl": ERROR: unexpected data beyond EOF in block 10097 of relation base/16386/17068 HINT: This has been seen to occur with buggy kernels; consider updating your system.
Relational problems: Postgres on Gluster. postgres source code: src/backend/storage/buffer/bufmgr.c kubectl get /* * We get here only in the corner case where we are trying to extend * the relation but we found a pre-existing buffer marked BM_VALID. * This can happen because mdread doesn't complain about reads beyond * EOF (when zero_damaged_pages is ON) and so a previous attempt to * read a block beyond EOF could have left a "valid" zero-filled * buffer. Unfortunately, we have also seen this case occurring * because of buggy Linux kernels that sometimes return an * lseek(SEEK_END) result that doesn't account for a recent write. In * that situation, the pre-existing buffer would contain valid data * that we don't want to overwrite. Since the legitimate case should * always have left a zero-filled buffer, complain if not PageIsNew. */ bufBlock = isLocalBuf ? LocalBufHdrGetBlock(bufHdr) : BufHdrGetBlock(bufHdr); if (!PageIsNew((Page) bufBlock)) ereport(ERROR, (errmsg("unexpected data beyond EOF in block %u of relation %s", blockNum, relpath(smgr->smgr_rnode, forkNum)), errhint("This has been seen to occur with buggy kernels; consider updating your system.")));
Relation problems: Containers drop kubectl get
Relation problems: Communication. kubectl getKubernetes Node Network Test (Pod) DS Kube DNS (service) Kubernetes Master Network Test (Pod) DS Kube DNS (pod) Kubernetes Node Network Test (Pod) DS Kube DNS (pod)
Kubernetes gives more benefits than doubts on premise kubectl get A lot of open source tools around Helm packages Fast delivery of software Auto healing Very very stable (Only got called out of bed once at night in 2017) Happy developers Enabler for DevOps Etc..
Open source tools that boosts our relationship kubectl get
Projects that boosts our relationship kubectl get Kubespray saved months of work setting up Kubernetes on premise. Easily deploying production-ready Kubernetes clusters.
Projects that boosts our relationship kubectl get KUBEADM
Projects that boosts our relationship kubectl get Helm makes upgrading and maintaining our applications predictable and super easy. Package manager for Kubernetes
Love kubectl get Joost Milo
Questions? kubectl get

More Related Content

PDF
Kubernetes the Very Hard Way. Lisa Portland 2019
byLaurent Bernaille
 
PDF
Evolution of kube-proxy (Brussels, Fosdem 2020)
byLaurent Bernaille
 
PDF
Kubernetes in 30 minutes (2017/03/10)
bylestrrat
 
PDF
Kubernetes for Java developers
byRobert Barr
 
PDF
How to make cloud native platform by kubernetes
by어형 이
 
PPTX
OpenStack and OpenFlow Demos
byBrent Salisbury
 
PDF
Optimizing kubernetes networking
byLaurent Bernaille
 
PDF
Docker orchestration with Kubernetes
bySamuel ROZE
 
Kubernetes the Very Hard Way. Lisa Portland 2019
byLaurent Bernaille
 
Evolution of kube-proxy (Brussels, Fosdem 2020)
byLaurent Bernaille
 
Kubernetes in 30 minutes (2017/03/10)
bylestrrat
 
Kubernetes for Java developers
byRobert Barr
 
How to make cloud native platform by kubernetes
by어형 이
 
OpenStack and OpenFlow Demos
byBrent Salisbury
 
Optimizing kubernetes networking
byLaurent Bernaille
 
Docker orchestration with Kubernetes
bySamuel ROZE
 

What's hot

PPTX
Packet Walk(s) In Kubernetes
byDon Jayakody
 
PDF
Kubernetes Failure Stories, or: How to Crash Your Cluster - ContainerDays EU ...
byHenning Jacobs
 
PDF
Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...
byHenning Jacobs
 
PPTX
KubeCon EU 2016: Secure, Cloud-Native Networking with Project Calico
byKubeAcademy
 
PDF
iptables and Kubernetes
byHungWei Chiu
 
PDF
10 ways to shoot yourself in the foot with kubernetes, #9 will surprise you! ...
byLaurent Bernaille
 
PDF
IP Virtual Server(IPVS) 101
byHungWei Chiu
 
PDF
Load Balancing 101
byHungWei Chiu
 
PDF
Kubernetes Scheduler deep dive
byDONGJIN KIM
 
PDF
Seastar @ NYCC++UG
byAvi Kivity
 
PDF
Docker with BGP - OpenDNS
bybacongobbler
 
PDF
Kubernetes
byDONGJIN KIM
 
PDF
Making cloud native platform by kubernetes
by어형 이
 
PDF
KubeCon EU 2016: Leveraging ephemeral namespaces in a CI/CD pipeline
byKubeAcademy
 
PDF
Running Kubernetes in Production: A Million Ways to Crash Your Cluster - Cont...
byHenning Jacobs
 
PPTX
Seastar at Linux Foundation Collaboration Summit
byDon Marti
 
PDF
[En] IPVS for Docker Containers
byAndrey Sibirev
 
PDF
Snabb Switch: Riding the HPC wave to simpler, better network appliances (FOSD...
byIgalia
 
PDF
Bare Metal Kubernetes - More Containers, Less Overhead
byDustin Kirkland
 
PDF
Daneyon Hansen - Intro to OpenStack - Feb13 OpenStack Denver Meetup
byShannon McFarland
 
Packet Walk(s) In Kubernetes
byDon Jayakody
 
Kubernetes Failure Stories, or: How to Crash Your Cluster - ContainerDays EU ...
byHenning Jacobs
 
Optimizing Kubernetes Resource Requests/Limits for Cost-Efficiency and Latenc...
byHenning Jacobs
 
KubeCon EU 2016: Secure, Cloud-Native Networking with Project Calico
byKubeAcademy
 
iptables and Kubernetes
byHungWei Chiu
 
10 ways to shoot yourself in the foot with kubernetes, #9 will surprise you! ...
byLaurent Bernaille
 
IP Virtual Server(IPVS) 101
byHungWei Chiu
 
Load Balancing 101
byHungWei Chiu
 
Kubernetes Scheduler deep dive
byDONGJIN KIM
 
Seastar @ NYCC++UG
byAvi Kivity
 
Docker with BGP - OpenDNS
bybacongobbler
 
Kubernetes
byDONGJIN KIM
 
Making cloud native platform by kubernetes
by어형 이
 
KubeCon EU 2016: Leveraging ephemeral namespaces in a CI/CD pipeline
byKubeAcademy
 
Running Kubernetes in Production: A Million Ways to Crash Your Cluster - Cont...
byHenning Jacobs
 
Seastar at Linux Foundation Collaboration Summit
byDon Marti
 
[En] IPVS for Docker Containers
byAndrey Sibirev
 
Snabb Switch: Riding the HPC wave to simpler, better network appliances (FOSD...
byIgalia
 
Bare Metal Kubernetes - More Containers, Less Overhead
byDustin Kirkland
 
Daneyon Hansen - Intro to OpenStack - Feb13 OpenStack Denver Meetup
byShannon McFarland
 

Similar to Kubernetes: love at first sight?

PDF
Kubernetes111111111111111111122233334334
byadnansalam11
 
PDF
Introduction to Kubernetes Workshop
byBob Killen
 
PPTX
Kubernetes Internals
byShimi Bandiel
 
PDF
Kubernetes Basics
byEueung Mulyana
 
PDF
Docker and Kubernetes 101 workshop
bySathish VJ
 
PDF
Build Your Own CaaS (Container as a Service)
byHungWei Chiu
 
PDF
Introduction to kubernetes
byGabriel Carro
 
PDF
Kubernetes
byMeng-Ze Lee
 
PPTX
Introduction+to+Kubernetes-Details-D.pptx
bySantoshPandey160
 
PDF
Metal-k8s presentation by Julien Girardin @ Paris Kubernetes Meetup
byLaure Vergeron
 
PPTX
Kubernetes Introduction
byEric Gustafson
 
PDF
Kubernetes at Datadog the very hard way
byLaurent Bernaille
 
PDF
Kubernetes
byMartin Podval
 
PPTX
Kubernetes 101 for Beginners
byOktay Esgul
 
PDF
Kubernetes - Starting with 1.2
byWilliam Stewart
 
PDF
Using kubernetes to lose your fear of using containers
byjosfuecas
 
PPTX
Galera on kubernetes_no_video
byPatrick Galbraith
 
PDF
$ kubectl hacking @DevOpsCon Berlin 2019
byTobias Schneck
 
PPTX
Kubernetes @ Squarespace (SRE Portland Meetup October 2017)
byKevin Lynch
 
PDF
2016 10-26 docker meetup - kubernetes on open stack
byAmrita Prasad
 
Kubernetes111111111111111111122233334334
byadnansalam11
 
Introduction to Kubernetes Workshop
byBob Killen
 
Kubernetes Internals
byShimi Bandiel
 
Kubernetes Basics
byEueung Mulyana
 
Docker and Kubernetes 101 workshop
bySathish VJ
 
Build Your Own CaaS (Container as a Service)
byHungWei Chiu
 
Introduction to kubernetes
byGabriel Carro
 
Kubernetes
byMeng-Ze Lee
 
Introduction+to+Kubernetes-Details-D.pptx
bySantoshPandey160
 
Metal-k8s presentation by Julien Girardin @ Paris Kubernetes Meetup
byLaure Vergeron
 
Kubernetes Introduction
byEric Gustafson
 
Kubernetes at Datadog the very hard way
byLaurent Bernaille
 
Kubernetes
byMartin Podval
 
Kubernetes 101 for Beginners
byOktay Esgul
 
Kubernetes - Starting with 1.2
byWilliam Stewart
 
Using kubernetes to lose your fear of using containers
byjosfuecas
 
Galera on kubernetes_no_video
byPatrick Galbraith
 
$ kubectl hacking @DevOpsCon Berlin 2019
byTobias Schneck
 
Kubernetes @ Squarespace (SRE Portland Meetup October 2017)
byKevin Lynch
 
2016 10-26 docker meetup - kubernetes on open stack
byAmrita Prasad
 

More from Bol.com Techlab

PDF
The hitchhiker’s guide to Prometheus
byBol.com Techlab
 
PDF
How to create your presentation in an iterative way
byBol.com Techlab
 
PDF
Gravitational waves: A new era in astronomy
byBol.com Techlab
 
PDF
Going to the cloud: Forget EVERYTHING you know!
byBol.com Techlab
 
PDF
Wax on, wax off
byBol.com Techlab
 
PDF
The hitchhiker’s guide to Prometheus
byBol.com Techlab
 
PDF
The Reactive Rollercoaster
byBol.com Techlab
 
PDF
Understanding Operating Systems by breaking them
byBol.com Techlab
 
PDF
Three steps to untangle data traffic jams
byBol.com Techlab
 
PDF
How to train your dragon
byBol.com Techlab
 
PDF
Consumer Driven Contract Testing
byBol.com Techlab
 
PDF
Jupyter and Pandas to the rescue!
byBol.com Techlab
 
PDF
Best painkiller for Java headache
byBol.com Techlab
 
PDF
I want to go fast! - Exposing performance bottlenecks
byBol.com Techlab
 
PDF
How the best of Design and Development come together
byBol.com Techlab
 
PDF
Blockchain: the magical database in the cloud?
byBol.com Techlab
 
PDF
Test long and prosper
byBol.com Techlab
 
PDF
The addition to your team you never knew you needed
byBol.com Techlab
 
PDF
Software for drafting a cold beer
byBol.com Techlab
 
PDF
Organizing a conference in 80 days
byBol.com Techlab
 
The hitchhiker’s guide to Prometheus
byBol.com Techlab
 
How to create your presentation in an iterative way
byBol.com Techlab
 
Gravitational waves: A new era in astronomy
byBol.com Techlab
 
Going to the cloud: Forget EVERYTHING you know!
byBol.com Techlab
 
Wax on, wax off
byBol.com Techlab
 
The hitchhiker’s guide to Prometheus
byBol.com Techlab
 
The Reactive Rollercoaster
byBol.com Techlab
 
Understanding Operating Systems by breaking them
byBol.com Techlab
 
Three steps to untangle data traffic jams
byBol.com Techlab
 
How to train your dragon
byBol.com Techlab
 
Consumer Driven Contract Testing
byBol.com Techlab
 
Jupyter and Pandas to the rescue!
byBol.com Techlab
 
Best painkiller for Java headache
byBol.com Techlab
 
I want to go fast! - Exposing performance bottlenecks
byBol.com Techlab
 
How the best of Design and Development come together
byBol.com Techlab
 
Blockchain: the magical database in the cloud?
byBol.com Techlab
 
Test long and prosper
byBol.com Techlab
 
The addition to your team you never knew you needed
byBol.com Techlab
 
Software for drafting a cold beer
byBol.com Techlab
 
Organizing a conference in 80 days
byBol.com Techlab
 

Recently uploaded

PDF
The year in review - MarvelClient in 2025
bypanagenda
 
PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
PDF
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PDF
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
PDF
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
PDF
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
PDF
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
PDF
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
PDF
Incident Response Planning with a Foundation Model
byKim Hammar
 
PPTX
Combining Induction and Transduction for Abstract Reasoning.pptx
byallen578468
 
PDF
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
PPTX
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
PDF
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
PPTX
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
PDF
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
PDF
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
PDF
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
PDF
AI Technology important knowledge ......
byutkarshj2007
 
PDF
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
The year in review - MarvelClient in 2025
bypanagenda
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
Incident Response Planning with a Foundation Model
byKim Hammar
 
Combining Induction and Transduction for Abstract Reasoning.pptx
byallen578468
 
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
AI Technology important knowledge ......
byutkarshj2007
 
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 

Kubernetes: love at first sight?

  • 1.
    Kubernetes Love at firstsight? 7, June 2018 Joost Hofman (Lead Developer @ Albert Heijn IT Online) Milo van der zee (Senior Developer @Albert Heijn IT Online)
  • 2.
    Agenda How? Kubernetes Why at AH? Relationalproblems Is it real love? Questions kubectl get
  • 3.
    Kubernetes is an open-sourcesystem for automating deployment, scaling, and management of containerized applications. kubectl get
  • 4.
  • 5.
  • 6.
    Kubernetes kubectl get Operator / Developer KubernetesMaster API Server Controller Manager Scheduler ETCD Kubernetes Node Kubelet kube-proxy Pod Pod Pod Pod… Kubernetes Node Kubelet kube-proxy Pod Pod Pod Pod…Up to 5000 Users Plugin Network - Calico
  • 7.
    user@host $ kubectlget nodes NAME STATUS ROLES AGE VERSION k8snode2098 Ready,SchedulingDisabled master 12d v1.8.4+coreos.0 k8snode2099 Ready,SchedulingDisabled master 12d v1.8.4+coreos.0 k8snode2100 Ready,SchedulingDisabled master 12d v1.8.4+coreos.0 k8snode2101 Ready node 12d v1.8.4+coreos.0 k8snode2102 Ready node 12d v1.8.4+coreos.0 k8snode2103 Ready node 12d v1.8.4+coreos.0 k8snode2104 Ready node 12d v1.8.4+coreos.0 k8snode2105 Ready node 12d v1.8.4+coreos.0 k8snode2107 Ready node 12d v1.8.4+coreos.0 k8snode2108 Ready node 12d v1.8.4+coreos.0 k8snode2109 Ready node 12d v1.8.4+coreos.0 k8snode2110 Ready node 12d v1.8.4+coreos.0 k8snode2111 Ready node 12d v1.8.4+coreos.0 Kubernetes
  • 8.
    user@host $ kubectlget pods -o wide NAME READY STATUS IP NODE shoppinglist-widget-3162246403-q7c1x 1/1 Running 10.233.106.55 k8snode1657 subscription-service-8cc4c97fb-dh9zz 1/1 Running 10.233.87.218 k8snode1656 subscription-service-8cc4c97fb-t7wrj 1/1 Running 10.233.73.169 k8snode1651 taxonomy-neo4j-neo4j-core-0 1/1 Running 10.233.124.123 k8snode1814 taxonomy-neo4j-neo4j-core-1 1/1 Running 10.233.73.147 k8snode1651 taxonomy-neo4j-neo4j-core-2 1/1 Running 10.233.79.109 k8snode1813 taxonomy-service-7b4fb7f8d5-c6mvb 1/1 Running 10.233.79.105 k8snode1813 taxonomy-service-7b4fb7f8d5-h2hjk 1/1 Running 10.233.68.145 k8snode1655 gateway-3060515939-57r22 1/1 Running 10.233.124.98 k8snode1814 gateway-3060515939-9lqzk 1/1 Running 10.233.68.185 k8snode1655 gateway-3060515939-fkt9k 1/1 Running 10.233.71.29 k8snode1654 gateway-3060515939-ls9pv 1/1 Running 10.233.79.101 k8snode1813 Kubernetes
  • 9.
    # kubectl -nonline-prd describe pod gateway-3060515939-57r22 Name: gateway-3060515939-57r22 Namespace: online-prd Node: k8snode1814/150.83.153.243 Start Time: Wed, 14 Feb 2018 13:12:03 +0100 Labels: name=gateway Status: Running IP: 10.233.124.98 Containers: gateway: Image: regisry-docker.online.ah.nl:443/ah-open-api-gateway:0.1.2 Port: <none> Pods – kubectl describe pod api gateway
  • 10.
    # kubectl describesvc gateway Name: gateway Namespace: online-prd Labels: run=gateway Annotations: kubectl.kubernetes.io/last-applied- configuration={"apiVersion":"v1","kind":"Service","metadata":{"annotations":{},"labels":{"ru n":"gateway"},"name":"gateway","namespace":"online-prd"},"spec":{"ports":... Selector: run=gateway Type: ClusterIP IP: 10.233.52.234 Port: <unset> 8080/TCP TargetPort: 8080/TCP Endpoints: 10.233.124.98:8080,10.233.68.185:8080,10.233.71.29:8080 + 1 more... Session Affinity: None Events: <none> Service - kubectl describe svc api gateway
  • 11.
    -A KUBE-SERVICES -d10.233.52.234/32 -p tcp -m tcp --dport 443 -j SVC-JFMNS -A SVC-JFMNS --mode random --probability 0.25 -j KUBE-SEP-JPX2Q -A SVC-JFMNS --mode random --probability 0.33 -j KUBE-SEP-KUJYT -A SVC-JFMNS --mode random --probability 0.5 -j KUBE-SEP-HTGFR -A SVC-JFMNS --mode random -j KUBE-SEP-JP5GT -A SEP-JPX2Q -p tcp -m recent -j DNAT --to-destination 143.54.22.4:6443 kubectl get api service – iptables
  • 12.
    Why @ AlbertHeijn? kubectl get 2015 Monolith Binary coupling Scalability problems Growth issues CI/CD impossible Downtime Scalable Decoupling Rolling updates Services CI/CD to the max Isolation of code Zero downtime Technology agnostic NOW and future
  • 13.
    Why @ AlbertHeijn? kubectl get … on a modern, scalable, automated platform Scalable architecture and technology Commodity hardware Virtualization Virtual hardware Container management platform - Manual - Within months - Semi-automated - Within weeks - Fully automated - Within minutes Containers
  • 14.
    On Premise VSCloud kubectl get No cloud options in 2016 and 2017
  • 15.
  • 16.
  • 17.
    A HTTP callto appietoday.nl kubectl get Users Loadbalancer Nginx - Ingress Frontend (service) Frontend (pod) API Gateway (service) API Gateway (pod) API (service) API (pod) IDP (service) IDP (pod)
  • 18.
    Our setup? kubectl get PlatformServicesAPIGatewayFrontend 65+ services / components 5 Clusters 50+ nodes 850+ Docker containers Continuous delivery Continuous delivery – Automated from development to production Authorization Authentication Throttling Routing Automate platform deployment with Ansible
  • 19.
    Relational problems: Communicationand Storage. kubectl get
  • 20.
    Relational problems: Storage. kubectlget On premise Storage vSphere volumes Host path NFS
  • 21.
    Relational problems: Storage. kubectlget On premise Storage GlusterFS
  • 22.
    Relational problems: Postgreson Gluster. kubectl get pg_restore: [archiver (db)] Error from TOC entry 53398; 0 16503 TABLE DATA l1aaux_sci sdmcleod pg_restore: [archiver (db)] COPY failed for table "l1aaux_sci": ERROR: unexpected data beyond EOF in block 9391 of relation base/16386/17043 HINT: This has been seen to occur with buggy kernels; consider updating your system. CONTEXT: COPY l1aaux_sci, line 319329: "1854661 N 1.05156717906094999 1378796678.44843268 2012-02-01 07:04:39.5+00 2012-02-01 07:04:38.4484..." pg_restore: [archiver (db)] Error from TOC entry 53399; 0 16528 TABLE DATA l1afts_dbl sdmcleod pg_restore: [archiver (db)] COPY failed for table "l1afts_dbl": ERROR: unexpected data beyond EOF in block 10097 of relation base/16386/17068 HINT: This has been seen to occur with buggy kernels; consider updating your system.
  • 23.
    Relational problems: Postgreson Gluster. postgres source code: src/backend/storage/buffer/bufmgr.c kubectl get /* * We get here only in the corner case where we are trying to extend * the relation but we found a pre-existing buffer marked BM_VALID. * This can happen because mdread doesn't complain about reads beyond * EOF (when zero_damaged_pages is ON) and so a previous attempt to * read a block beyond EOF could have left a "valid" zero-filled * buffer. Unfortunately, we have also seen this case occurring * because of buggy Linux kernels that sometimes return an * lseek(SEEK_END) result that doesn't account for a recent write. In * that situation, the pre-existing buffer would contain valid data * that we don't want to overwrite. Since the legitimate case should * always have left a zero-filled buffer, complain if not PageIsNew. */ bufBlock = isLocalBuf ? LocalBufHdrGetBlock(bufHdr) : BufHdrGetBlock(bufHdr); if (!PageIsNew((Page) bufBlock)) ereport(ERROR, (errmsg("unexpected data beyond EOF in block %u of relation %s", blockNum, relpath(smgr->smgr_rnode, forkNum)), errhint("This has been seen to occur with buggy kernels; consider updating your system.")));
  • 24.
  • 25.
    Relation problems: Communication. kubectlgetKubernetes Node Network Test (Pod) DS Kube DNS (service) Kubernetes Master Network Test (Pod) DS Kube DNS (pod) Kubernetes Node Network Test (Pod) DS Kube DNS (pod)
  • 26.
    Kubernetes gives morebenefits than doubts on premise kubectl get A lot of open source tools around Helm packages Fast delivery of software Auto healing Very very stable (Only got called out of bed once at night in 2017) Happy developers Enabler for DevOps Etc..
  • 27.
    Open source toolsthat boosts our relationship kubectl get
  • 28.
    Projects that boostsour relationship kubectl get Kubespray saved months of work setting up Kubernetes on premise. Easily deploying production-ready Kubernetes clusters.
  • 29.
    Projects that boostsour relationship kubectl get KUBEADM
  • 30.
    Projects that boostsour relationship kubectl get Helm makes upgrading and maintaining our applications predictable and super easy. Package manager for Kubernetes
  • 31.
  • 32.