SlideShare a Scribd company logo

Modernizing Apps with Amazon EKS

Amazon Web Services
Amazon Web Services

The document discusses Amazon EKS (Elastic Kubernetes Service). It provides an overview of Amazon EKS architecture, how customers are using EKS for enterprise app migration, microservices, and machine learning. It also summarizes the key components of EKS including the control plane, worker nodes, networking, and security features.

1 of 68
Download to read offline
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Modernizing legacy applications with Amazon EKS Jeremy Cowan Sr. Specialist Solution Architect, Containers Amazon Web Services M A D 3 0 1
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Agenda Customer use cases Kubernetes and why it matters Introducing Amazon EKS Amazon EKS Control Plane Amazon EKS Worker Nodes Amazon EKS networking and load balancing Machine learning Windows containers
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T How are customers using Amazon EKS? Enterprise app migration Microservices Machine learning
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Who is using Amazon EKS? “We built the next generation of our PaaS using Amazon EKS for large enterprise workloads. We manage thousands of applications and have hundreds of DevOps teams.”
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Who is using Amazon EKS? “Kubernetes is fast becoming the preferred solution for container orchestration. Its biggest downside is that it is not simple to set up and operate. Amazon EKS gives us all the benefits of Kubernetes, but takes care of managing the hard stuff. We can dedicate less resources to deployment and operations as a result.”
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Who is using Amazon EKS?
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Which customers are using Amazon EKS? “The performance from Amazon EKS makes it feasible to effectively manage large-scale databases delivering over a million queries per second. Amazon EKS also helps with our cluster management and scalability challenges.”
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Recap: What’s a container Runtime Code Dependencies Single, immutable object
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Open source container management platform Helps you run containers at scale Gives you primitives for building modern applications What is Kubernetes? © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T What it takes to enable rapid innovation Quality Agility Velocity Rapid innovation
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Kubernetes promotes innovation Quality • Basic primitives for deploying and running any application Agility • Extensible • Run anywhere Velocity • Automation for workload deployment and scaling
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Modernization with Kubernetes 1 Migrate in place Move apps to containers without code changes. 2 3 Run anywhere Move entire organizations to the cloud using the same containers, tooling, and remove the need to manage any infrastructure. Implement tooling Use Kubernetes to implement standard deployment and operational tooling across all your apps.
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS, a year in review April – June 2018: EKS achieves K8s conformance, HIPAA-eligibility, Generally available July – September 2018: Amazon EKS AMI build scripts and AWS CloudFormation templates available in GitHub. Support for GPU-enabled EC2 instances, support for HPA with custom or external metrics. EKS launches in Dublin, Ireland EKS simplifies cluster setup with update-kubeconfig CLI command October – December 2018: EKS adds support for Dynamic Admission Controllers (Istio), ALB Support with AWS ALB Ingress Controller Amazon EKS launches in Ohio, Frankfurt, Singapore, Sydney, and Tokyo EKS adds Managed Cluster Updates and Support for Kubernetes Version 1.11
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS, a year in review January – May 2019: EKS Adds support for Kubernetes 1.12 EKS launches in Seoul, Mumbai, London, and Paris EKS achieves ISO and PCI compliance, announces 99.9% SLA, cluster creation limit raised to 50 API Server Endpoint Access Control, AWS App Mesh controller, Windows support (preview) Amazon CloudWatch Container Insights for EKS and Kubernetes Public Preview EKS Simplifies Cluster Authentication EKS Adds Support for Public IP Addresses Within Cluster VPCs EKS Now Delivers Kubernetes Control Plan Logs to Amazon CloudWatch
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Open source and Amazon EKS Amazon EKS runs 100% upstream Kubernetes Key components of Amazon EKS are open source • Amazon VPC CNI Plugin • AWS Identity and Access Management (IAM) Authenticator • Amazon EKS AMI
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Open source and Amazon EKS Team contributes to or manages 20+ OSS projects • /kubernetes • /kubernetes/autoscaler • /atlassian/escalator • /awslabs/aws-service-operator • /awslabs/aws-servicebroker • /weaveworks/eksctl • /aws/amazon-vpc-cni-k8s • EBS, EFS, Amazon FSx CSI drivers • kops
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS architecture prod-cluster-123.eks.amazonaws.com Amazon EKS workers kubectl AZ 1 AZ 2 AZ 3 Your AWS account VPC Amazon EKS
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T VPC Kubernetes control plane Highly available and single tenant infrastructure All “native AWS” components Fronted by an NLB Network Load Balancer Amazon EKS Etcd API Servers
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T VPC Kubernetes control plane Highly available and single tenant infrastructure All “native AWS” components Fronted by an NLB Network Load Balancer Amazon EKS Availability Zone 1 Availability Zone 2 Availability Zone 3 Etcd API Servers
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Creating a cluster: Planning
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Provide Amazon EKS a role with the correct policies attached Creating a cluster: Amazon EKS role
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Creating a cluster: Amazon VPC Provide all subnets that will host Kubernetes resources: Load balancers and worker nodes Subnets can be public, private, or both Amazon EKS will tag the subnets with kubernetes.io/cluster/<cluster-name> = shared Subnets that will host internal load balancers need the tag kubernetes.io/role/internal-elb = 1
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Creating a cluster: Amazon VPC Plan ahead with subnet sizes! Pods each consume an Amazon VPC IP address. /24 subnet = 254 IPs total. Subtract one for each node in your cluster, and the remainder is what you have for pods (probably not enough!) Amazon EKS–provided sample VPC template uses a /18
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Creating a cluster: Control plane security group This security group defines connectivity between the Kubernetes control plane and worker nodes At minimum, Kubernetes needs 443 inbound and 10250 outbound This security group needs permissions that align with the worker node security group
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Kubernetes version Latest: 1.12.6 Coming soon: 1.13 Amazon EKS will support up to three versions of Kubernetes at once Deprecation in line with the community stopping support for older versions
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS version lifecycle Strong emphasis on running production grade workloads, supportability, and security Amazon EKS lifecycle process • Announcement 60 days prior to deprecating a Kubernetes version • After 60 days, your cluster will automatically be upgraded to the next version • Coincides with when the project stops supporting the deprecated version • Prevented from creating a cluster using a deprecated version • Customer upgrades worker nodes (n-2)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS platform version Platform version revisions represent API server configuration changes or Kubernetes patches Platform versions increment within a Kubernetes version only Kubernetes Kubernetes Kubernetes
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T API server configuration Kubernetes version Kubernetes patch version Amazon EKS platform version Enabled admission controllers Release notes 1.10 1.10.3 eks.2 ​Initializers, NamespaceLifecycle, Limi tRanger, ServiceAccount, DefaultStorageClass, ResourceQuota, DefaultTolerationSeconds, NodeRestriction, MutatingAdmissionWebhook, ValidatingAdmissionWebhook •Added support for Kubernetes aggregation layer. •Added support for Kubernetes Horizontal Pod Autoscaler (HPA). •Kubernetes Metrics Server 0.3.0 or greater is compatible with Amazon EKS platform version eks.2.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS Kubernetes version update
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Lifecycle management of worker nodes with eksctl Create node groups • Uses version of control plane by default • Override using --version flag Scale node groups Delete node groups • Will cordon and drain pods before instances are terminated Drain node groups
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T IAM authentication Kubectl 3) Authorizes AWS identity with RBAC Kubernetes API 1) Passes AWS identity 2) Verifies AWS identity 4) Kubernetes action allowed/denied
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Simplified authentication with the AWS CLI Previously required IAM Authenticator Added eks get-token subcommand to generate the base 64 encoded token to authenticate to the Amazon EKS cluster https://sts.amazonaws.com/?Action=GetCallerIdentity&Version=201 1-06-15&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz- Credential=AKIAJHGRILKNSRC2W5QA%2F20190524%2Fus-east- 1%2Fsts%2Faws4_request&X-Amz-Date=20190524T040522Z&X-Amz- Expires=0&X-Amz-SignedHeaders=host%3Bx-k8s-aws-id&X-Amz- Signature=fe007f38e753a609523ec5931f6bf41e5fade79689354a63818a6 ace65fefb
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T PKI configuration Kubelet Generates public/private keys Kubelet installs server cert Kubelet issues CSR Certificate rotation Amazon EKS API serverAmazon EKS worker Amazon
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS is ready for sensitive and regulated workloads (16-May)
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T aws eks update-kubeconfig --name my-cluster CLI Helper command to create kubeconfig file Creates a new context for each cluster in the config Wrapping it all up Easily export control plane config
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T ✅ ✅ ✅ ✅ Bring your own instances Instance flexibility
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Bring your own OS Amazon EKS AMI build scripts https://github.com/awslabs/amazon-eks-ami Amazon Amazon Amazon
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Provisioning worker nodes AWS CloudFormation CDK eksctl Partners … … more Terraform Pulumi Rancher
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Updating worker nodes Amazon EKS node drainer
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Storage—CSI drivers CSI == Container Storage Interface Flexible standard for orchestration and storage provider connections Amazon Elastic Block Store: AWS EBS CSI Driver Now supported for production workloads as a Kubernetes beta Part of Kubernetes SIGs on GitHub Amazon Elastic File System: AWS EFS CSI Driver Amazon FSx for Lustre: AWS FSx CSI Driver Both now available as a Kubernetes alpha Part of Kubernetes SIGs on GitHub
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Cross account ENI Worker VPC (your account) Kubectl Master VPC (AWS account) etcd AZ 1 API Server etcd API Server prod-cluster-123.eks.amazonaws.com Amazon EKS- owned ENI Kubelet AZ 1 Worker node Amazon EKS- owned ENI Kubelet AZ 2 Worker node AZ 2 Kube-proxy Kube-proxy
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T API-server Endpoint Access Control Worker VPC (your account) Kubectl Master VPC (AWS account) etcd AZ 1 API Server etcd API Server prod-cluster-123.eks.amazonaws.com Amazon EKS- owned ENI Kubelet AZ 1 Worker node Amazon EKS- owned ENI Kubelet AZ 2 Worker node Public == true AZ 2 Kube-proxy Kube-proxy
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T API-server Endpoint Access Control Worker VPC (your account) Kubectl Master VPC (AWS account) etcd AZ 1 AZ 2 API Server etcd API Server prod-cluster-123.eks.amazonaws.com Amazon EKS- owned ENIs Public == true Private == true prod-cluster-123.eks.amazonaws.com Private hosted zone Kubelet AZ 1 Worker node Kube-proxy Kubelet AZ 2 Worker node Kube-proxy
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T API-server Endpoint Access Control Worker VPC (your account) Kubectl Master VPC (AWS account) etcd AZ 1 AZ 2 API Server etcd API Server Amazon EKS- owned ENIs Public == false Private == true prod-cluster-123.eks.amazonaws.com Private hosted zone Kubelet AZ 1 Worker node Kube-proxy Kubelet AZ 2 Worker node Kube-proxy
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon VPC CNI plugin ENI Secondary IPs: 10.0.0.1 10.0.0.2 10.0.0.1 10.0.0.2 ENI 10.0.0.20 10.0.0.22 Secondary IPs: 10.0.0.20 10.0.0.22 ec2.associateaddress() VPC Subnet – 10.0.0.0/24 Instance 1 Instance 2 VPC
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS supports advanced networking architectures VPC - Multiple IP ranges Subnet 1 – 10.0.0.0/16 Subnet 2 – 100.64.0.0/10 Customer gateway Corporate data center On Premises – 10.1.0.0/16 VPN or DX Pod Outbound Traffic SNAT Amazon EKS Worker Node Primary ENI Pod Secondary ENI Pod – 100.64.0.200
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Load balancing All three AWS Elastic Load Balancing products are supported Network Load Balancer and Classic Load Balancer supported by Kubernetes Service type=LoadBalancer Internal and external load balancer support
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Load balancing Want to use an internal load balancer? Use annotation: service.beta.kubernetes.io/aws-load-balancer- internal: 0.0.0.0/0 Want to use a Network Load Balancer? Use annotation: service.beta.kubernetes.io/aws-load-balancer- type: nlb
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Application Load Balancer Ingress Controller Production-ready 1.0 release Supported by Amazon EKS team Open source development: https://github.com/kubernetes-sigs/aws- alb-ingress-controller Customers are using it in production today!
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T ALB ingress: Recently added features Autoselect certificates based on ingress hostname Register out of VPC targets • Pod IP targets outside of the ALB’s VPC Support for multiple SSL certificates Support for authentication via Amazon Cognito and OIDC Support for existing targetGroup as a backend
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T ALB Ingress Controller AWS resources Kubernetes cluster Node Node Kubernetes API server ALB Ingress Controller Node HTTP listenerHTTPS listener Rule: /cheesesRule: /charcuterie TargetGroup: Green (IP Mode) TargetGroup: Blue (Instance Mode) NodePort NodePort
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T 1 2 3
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Deep learning model lifecycle Training • Gather data for training and testing • Hyper-parameter tuning • Distributed training using GPUs • Cost-to-train and time-to-train Inference • Hundreds of machines • Throughput and latency important • Cost per inference and inference/sec. • Run at scale for long
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Deep Learning Containers Quickly set up deep learning environments with optimized, pre-packaged Docker container images Get best performance automatically; no tuning required Support TensorFlow and Apache MXNet Deploy on Amazon ECS, Amazon EKS, or Amazon EC2 Customizable container images Available at no cost from Amazon ECR and AWS Marketplace Amazon ECR AWS Marketplace
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Now supporting P3dn.24xlarge instances CUDA 10 with NVIDIA v410 coming soon! Amazon EKS-optimized GPU AMI
S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Windows containers Developer preview for all customers today Run Windows containers and Windows server nodes with Amazon EKS Supports heterogeneous (mixed) clusters Kubernetes version 1.11+ Available in all Amazon EKS regions Get started and give feedback on GitHub https://github.com/aws/containers-roadmap
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Recap! Amazon 🎉
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Global availability Americas Virginia, Ohio, Oregon EMEA Ireland, Frankfurt, London, Paris, Stockholm Asia Pacific Singapore, Tokyo, Sydney, Seoul, Mumbai
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS containers roadmap Stay up to date with what we’re working on Give us feedback and propose ideas Get notified when new features ship https://github.com/aws/containers-roadmap
Thank you! S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Jeremy Cowan Sr. Specialist Solution Architect, Containers

Recommended

Twelve-Factor serverless applications - MAD311 - Chicago AWS Summit
Twelve-Factor serverless applications - MAD311 - Chicago AWS SummitTwelve-Factor serverless applications - MAD311 - Chicago AWS Summit
Twelve-Factor serverless applications - MAD311 - Chicago AWS SummitAmazon Web Services
 
Automatically scaling your Kubernetes workloads - SVC210-S - Santa Clara AWS ...
Automatically scaling your Kubernetes workloads - SVC210-S - Santa Clara AWS ...Automatically scaling your Kubernetes workloads - SVC210-S - Santa Clara AWS ...
Automatically scaling your Kubernetes workloads - SVC210-S - Santa Clara AWS ...Amazon Web Services
 
打破時空藩籬,輕鬆存取您的雲端工作負載
打破時空藩籬,輕鬆存取您的雲端工作負載打破時空藩籬,輕鬆存取您的雲端工作負載
打破時空藩籬,輕鬆存取您的雲端工作負載Amazon Web Services
 
Kubernetes on AWS with Amazon EKS - MAD301 - New York AWS Summit
Kubernetes on AWS with Amazon EKS - MAD301 - New York AWS SummitKubernetes on AWS with Amazon EKS - MAD301 - New York AWS Summit
Kubernetes on AWS with Amazon EKS - MAD301 - New York AWS SummitAmazon Web Services
 
Accelerating your cloud migration with VMware Cloud on AWS - CMP205 - Chicago...
Accelerating your cloud migration with VMware Cloud on AWS - CMP205 - Chicago...Accelerating your cloud migration with VMware Cloud on AWS - CMP205 - Chicago...
Accelerating your cloud migration with VMware Cloud on AWS - CMP205 - Chicago...Amazon Web Services
 
Getting Started with Kubernetes on AWS
Getting Started with Kubernetes on AWSGetting Started with Kubernetes on AWS
Getting Started with Kubernetes on AWSAmazon Web Services
 
From Code to a running container | AWS Summit Tel Aviv 2019
From Code to a running container | AWS Summit Tel Aviv 2019From Code to a running container | AWS Summit Tel Aviv 2019
From Code to a running container | AWS Summit Tel Aviv 2019AWS Summits
 
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAmazon Web Services
 

Recommended

Twelve-Factor serverless applications - MAD311 - Chicago AWS Summit
Twelve-Factor serverless applications - MAD311 - Chicago AWS SummitTwelve-Factor serverless applications - MAD311 - Chicago AWS Summit
Twelve-Factor serverless applications - MAD311 - Chicago AWS SummitAmazon Web Services
 
Automatically scaling your Kubernetes workloads - SVC210-S - Santa Clara AWS ...
Automatically scaling your Kubernetes workloads - SVC210-S - Santa Clara AWS ...Automatically scaling your Kubernetes workloads - SVC210-S - Santa Clara AWS ...
Automatically scaling your Kubernetes workloads - SVC210-S - Santa Clara AWS ...Amazon Web Services
 
打破時空藩籬,輕鬆存取您的雲端工作負載
打破時空藩籬,輕鬆存取您的雲端工作負載打破時空藩籬,輕鬆存取您的雲端工作負載
打破時空藩籬,輕鬆存取您的雲端工作負載Amazon Web Services
 
Kubernetes on AWS with Amazon EKS - MAD301 - New York AWS Summit
Kubernetes on AWS with Amazon EKS - MAD301 - New York AWS SummitKubernetes on AWS with Amazon EKS - MAD301 - New York AWS Summit
Kubernetes on AWS with Amazon EKS - MAD301 - New York AWS SummitAmazon Web Services
 
Accelerating your cloud migration with VMware Cloud on AWS - CMP205 - Chicago...
Accelerating your cloud migration with VMware Cloud on AWS - CMP205 - Chicago...Accelerating your cloud migration with VMware Cloud on AWS - CMP205 - Chicago...
Accelerating your cloud migration with VMware Cloud on AWS - CMP205 - Chicago...Amazon Web Services
 
Getting Started with Kubernetes on AWS
Getting Started with Kubernetes on AWSGetting Started with Kubernetes on AWS
Getting Started with Kubernetes on AWSAmazon Web Services
 
From Code to a running container | AWS Summit Tel Aviv 2019
From Code to a running container | AWS Summit Tel Aviv 2019From Code to a running container | AWS Summit Tel Aviv 2019
From Code to a running container | AWS Summit Tel Aviv 2019AWS Summits
 
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAmazon Web Services
 
AWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 Barcelona
AWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 BarcelonaAWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 Barcelona
AWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 BarcelonaAmazon Web Services
 
如何成功的完成混合雲遷移專案
如何成功的完成混合雲遷移專案如何成功的完成混合雲遷移專案
如何成功的完成混合雲遷移專案Amazon Web Services
 
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019AWS Summits
 
AWS Fargate deep dive - MAD303 - Chicago AWS Summit
AWS Fargate deep dive - MAD303 - Chicago AWS SummitAWS Fargate deep dive - MAD303 - Chicago AWS Summit
AWS Fargate deep dive - MAD303 - Chicago AWS SummitAmazon Web Services
 
AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019
AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019
AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019AWS Summits
 
.NET on AWS
.NET on AWS.NET on AWS
.NET on AWSAmazon Web Services
 
Deep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-Prometheus
Deep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-PrometheusDeep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-Prometheus
Deep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-PrometheusAmazon Web Services
 
Carry security with you to the cloud - DEM14-SR - New York AWS Summit
Carry security with you to the cloud - DEM14-SR - New York AWS SummitCarry security with you to the cloud - DEM14-SR - New York AWS Summit
Carry security with you to the cloud - DEM14-SR - New York AWS SummitAmazon Web Services
 
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS SummitExploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS SummitAmazon Web Services
 
Dalle macchine virtuali ai container usando AWS Fargate
Dalle macchine virtuali ai container usando AWS FargateDalle macchine virtuali ai container usando AWS Fargate
Dalle macchine virtuali ai container usando AWS FargateAmazon Web Services
 
Developing with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS Summit
Developing with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS SummitDeveloping with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS Summit
Developing with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS SummitAmazon Web Services
 
How to speed up and scale your innovation efforts - MAD203 - Chicago AWS Summit
How to speed up and scale your innovation efforts - MAD203 - Chicago AWS SummitHow to speed up and scale your innovation efforts - MAD203 - Chicago AWS Summit
How to speed up and scale your innovation efforts - MAD203 - Chicago AWS SummitAmazon Web Services
 
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Amazon Web Services
 
Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019
Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019
Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019AWS Summits
 
從業人員指南-如何像技術專家一樣守護您的雲端安全
從業人員指南-如何像技術專家一樣守護您的雲端安全從業人員指南-如何像技術專家一樣守護您的雲端安全
從業人員指南-如何像技術專家一樣守護您的雲端安全Amazon Web Services
 
Exploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
Exploring the fundamentals of AWS networking - SVC211 - New York AWS SummitExploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
Exploring the fundamentals of AWS networking - SVC211 - New York AWS SummitAmazon Web Services
 
Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...
Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...
Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...Amazon Web Services
 
Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...
Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...
Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...AWS Summits
 
Developing Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS Summit
Developing Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS SummitDeveloping Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS Summit
Developing Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS SummitAmazon Web Services
 
Java Developer on AWS 在AWS上開發Java應用
Java Developer on AWS 在AWS上開發Java應用Java Developer on AWS 在AWS上開發Java應用
Java Developer on AWS 在AWS上開發Java應用Amazon Web Services
 
Modernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdf
Modernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdfModernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdf
Modernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdfAmazon Web Services
 
Running kubernetes with amazon eks
Running kubernetes with amazon eksRunning kubernetes with amazon eks
Running kubernetes with amazon eksyanaisama
 

More Related Content

What's hot

AWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 Barcelona
AWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 BarcelonaAWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 Barcelona
AWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 BarcelonaAmazon Web Services
 
如何成功的完成混合雲遷移專案
如何成功的完成混合雲遷移專案如何成功的完成混合雲遷移專案
如何成功的完成混合雲遷移專案Amazon Web Services
 
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019AWS Summits
 
AWS Fargate deep dive - MAD303 - Chicago AWS Summit
AWS Fargate deep dive - MAD303 - Chicago AWS SummitAWS Fargate deep dive - MAD303 - Chicago AWS Summit
AWS Fargate deep dive - MAD303 - Chicago AWS SummitAmazon Web Services
 
AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019
AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019
AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019AWS Summits
 
Deep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-Prometheus
Deep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-PrometheusDeep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-Prometheus
Deep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-PrometheusAmazon Web Services
 
Carry security with you to the cloud - DEM14-SR - New York AWS Summit
Carry security with you to the cloud - DEM14-SR - New York AWS SummitCarry security with you to the cloud - DEM14-SR - New York AWS Summit
Carry security with you to the cloud - DEM14-SR - New York AWS SummitAmazon Web Services
 
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS SummitExploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS SummitAmazon Web Services
 
Dalle macchine virtuali ai container usando AWS Fargate
Dalle macchine virtuali ai container usando AWS FargateDalle macchine virtuali ai container usando AWS Fargate
Dalle macchine virtuali ai container usando AWS FargateAmazon Web Services
 
Developing with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS Summit
Developing with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS SummitDeveloping with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS Summit
Developing with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS SummitAmazon Web Services
 
How to speed up and scale your innovation efforts - MAD203 - Chicago AWS Summit
How to speed up and scale your innovation efforts - MAD203 - Chicago AWS SummitHow to speed up and scale your innovation efforts - MAD203 - Chicago AWS Summit
How to speed up and scale your innovation efforts - MAD203 - Chicago AWS SummitAmazon Web Services
 
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Amazon Web Services
 
Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019
Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019
Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019AWS Summits
 
從業人員指南-如何像技術專家一樣守護您的雲端安全
從業人員指南-如何像技術專家一樣守護您的雲端安全從業人員指南-如何像技術專家一樣守護您的雲端安全
從業人員指南-如何像技術專家一樣守護您的雲端安全Amazon Web Services
 
Exploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
Exploring the fundamentals of AWS networking - SVC211 - New York AWS SummitExploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
Exploring the fundamentals of AWS networking - SVC211 - New York AWS SummitAmazon Web Services
 
Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...
Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...
Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...Amazon Web Services
 
Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...
Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...
Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...AWS Summits
 
Developing Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS Summit
Developing Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS SummitDeveloping Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS Summit
Developing Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS SummitAmazon Web Services
 
Java Developer on AWS 在AWS上開發Java應用
Java Developer on AWS 在AWS上開發Java應用Java Developer on AWS 在AWS上開發Java應用
Java Developer on AWS 在AWS上開發Java應用Amazon Web Services
 

What's hot (20)

AWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 Barcelona
AWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 BarcelonaAWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 Barcelona
AWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 Barcelona
 
如何成功的完成混合雲遷移專案
如何成功的完成混合雲遷移專案如何成功的完成混合雲遷移專案
如何成功的完成混合雲遷移專案
 
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
Building a fully serverless application on AWS | AWS Summit Tel Aviv 2019
 
AWS Fargate deep dive - MAD303 - Chicago AWS Summit
AWS Fargate deep dive - MAD303 - Chicago AWS SummitAWS Fargate deep dive - MAD303 - Chicago AWS Summit
AWS Fargate deep dive - MAD303 - Chicago AWS Summit
 
AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019
AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019
AWS Core - Compute, Network, Storage and Security | AWS Summit Tel Aviv 2019
 
.NET on AWS
.NET on AWS.NET on AWS
.NET on AWS
 
Deep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-Prometheus
Deep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-PrometheusDeep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-Prometheus
Deep-Dive-with-Cloud-Monitoring-with-Amazon-EKS-and-Prometheus
 
Carry security with you to the cloud - DEM14-SR - New York AWS Summit
Carry security with you to the cloud - DEM14-SR - New York AWS SummitCarry security with you to the cloud - DEM14-SR - New York AWS Summit
Carry security with you to the cloud - DEM14-SR - New York AWS Summit
 
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS SummitExploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
Exploring the fundamentals of AWS networking - SVC210 - Chicago AWS Summit
 
Dalle macchine virtuali ai container usando AWS Fargate
Dalle macchine virtuali ai container usando AWS FargateDalle macchine virtuali ai container usando AWS Fargate
Dalle macchine virtuali ai container usando AWS Fargate
 
Developing with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS Summit
Developing with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS SummitDeveloping with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS Summit
Developing with .NET Core on AWS - What's new - MAD306 - Santa Clara AWS Summit
 
How to speed up and scale your innovation efforts - MAD203 - Chicago AWS Summit
How to speed up and scale your innovation efforts - MAD203 - Chicago AWS SummitHow to speed up and scale your innovation efforts - MAD203 - Chicago AWS Summit
How to speed up and scale your innovation efforts - MAD203 - Chicago AWS Summit
 
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...
 
Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019
Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019
Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019
 
從業人員指南-如何像技術專家一樣守護您的雲端安全
從業人員指南-如何像技術專家一樣守護您的雲端安全從業人員指南-如何像技術專家一樣守護您的雲端安全
從業人員指南-如何像技術專家一樣守護您的雲端安全
 
Exploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
Exploring the fundamentals of AWS networking - SVC211 - New York AWS SummitExploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
Exploring the fundamentals of AWS networking - SVC211 - New York AWS Summit
 
Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...
Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...
Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...
 
Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...
Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...
Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...
 
Developing Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS Summit
Developing Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS SummitDeveloping Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS Summit
Developing Intelligent Robots with AWS RoboMaker - SVC205 - Anaheim AWS Summit
 
Java Developer on AWS 在AWS上開發Java應用
Java Developer on AWS 在AWS上開發Java應用Java Developer on AWS 在AWS上開發Java應用
Java Developer on AWS 在AWS上開發Java應用
 

Similar to Modernizing Apps with Amazon EKS

Modernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdf
Modernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdfModernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdf
Modernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdfAmazon Web Services
 
Running kubernetes with amazon eks
Running kubernetes with amazon eksRunning kubernetes with amazon eks
Running kubernetes with amazon eksyanaisama
 
Fast-Track Your Application Modernisation Journey with Containers - AWS Summi...
Fast-Track Your Application Modernisation Journey with Containers - AWS Summi...Fast-Track Your Application Modernisation Journey with Containers - AWS Summi...
Fast-Track Your Application Modernisation Journey with Containers - AWS Summi...Amazon Web Services
 
Amazon EKS: Getting Started
Amazon EKS: Getting StartedAmazon EKS: Getting Started
Amazon EKS: Getting StartedTanya Seno
 
Architecting security and governance through policy guardrails in Amazon EKS ...
Architecting security and governance through policy guardrails in Amazon EKS ...Architecting security and governance through policy guardrails in Amazon EKS ...
Architecting security and governance through policy guardrails in Amazon EKS ...Amazon Web Services
 
SRV318 Running Kubernetes with Amazon EKS
SRV318 Running Kubernetes with Amazon EKSSRV318 Running Kubernetes with Amazon EKS
SRV318 Running Kubernetes with Amazon EKSAmazon Web Services
 
Amazon EKS Roadmap- AWS Container Day 2019 Barcelona
Amazon EKS Roadmap- AWS Container Day 2019 BarcelonaAmazon EKS Roadmap- AWS Container Day 2019 Barcelona
Amazon EKS Roadmap- AWS Container Day 2019 BarcelonaAmazon Web Services
 
Semplificare la gestione dei container con i servizi AWS
Semplificare la gestione dei container con i servizi AWSSemplificare la gestione dei container con i servizi AWS
Semplificare la gestione dei container con i servizi AWSAmazon Web Services
 
Amazon EKS - Elastic Container Service for Kubernetes
Amazon EKS - Elastic Container Service for KubernetesAmazon EKS - Elastic Container Service for Kubernetes
Amazon EKS - Elastic Container Service for KubernetesAmazon Web Services
 
Executando Kubernetes com Amazon EKS - DEV303 - Sao Paulo Summit
Executando Kubernetes com Amazon EKS - DEV303 - Sao Paulo SummitExecutando Kubernetes com Amazon EKS - DEV303 - Sao Paulo Summit
Executando Kubernetes com Amazon EKS - DEV303 - Sao Paulo SummitAmazon Web Services
 
AWS 微服務中的 Container 選項比較 (Level 400)
AWS 微服務中的 Container 選項比較 (Level 400)AWS 微服務中的 Container 選項比較 (Level 400)
AWS 微服務中的 Container 選項比較 (Level 400)Amazon Web Services
 
Breaking the Monolith using AWS Container Services
Breaking the Monolith using AWS Container ServicesBreaking the Monolith using AWS Container Services
Breaking the Monolith using AWS Container ServicesAmazon Web Services
 
Containers on AWS - State of the Union
Containers on AWS - State of the UnionContainers on AWS - State of the Union
Containers on AWS - State of the UnionAWS Germany
 
Deep dive on Amazon Elastic Container Service for Kubernetes (Amazon EKS) - M...
Deep dive on Amazon Elastic Container Service for Kubernetes (Amazon EKS) - M...Deep dive on Amazon Elastic Container Service for Kubernetes (Amazon EKS) - M...
Deep dive on Amazon Elastic Container Service for Kubernetes (Amazon EKS) - M...Amazon Web Services
 
使用 Amazon EKS 打造高效的服務架構設計
使用 Amazon EKS 打造高效的服務架構設計使用 Amazon EKS 打造高效的服務架構設計
使用 Amazon EKS 打造高效的服務架構設計Amazon Web Services
 
AWS Summit London 2019 - Containers on AWS
AWS Summit London 2019 - Containers on AWSAWS Summit London 2019 - Containers on AWS
AWS Summit London 2019 - Containers on AWSMassimo Ferre'
 
Comparing Compute Options for Microservices - AWS Summti Sydney 2018
Comparing Compute Options for Microservices - AWS Summti Sydney 2018Comparing Compute Options for Microservices - AWS Summti Sydney 2018
Comparing Compute Options for Microservices - AWS Summti Sydney 2018Amazon Web Services
 
Modernizing on EKS (Keynote)- AWS Container Day 2019 Barcelona
Modernizing on EKS (Keynote)- AWS Container Day 2019 BarcelonaModernizing on EKS (Keynote)- AWS Container Day 2019 Barcelona
Modernizing on EKS (Keynote)- AWS Container Day 2019 BarcelonaAmazon Web Services
 

Similar to Modernizing Apps with Amazon EKS (20)

Modernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdf
Modernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdfModernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdf
Modernizing applications with Amazon EKS - MAD304 - Santa Clara AWS Summit.pdf
 
Running kubernetes with amazon eks
Running kubernetes with amazon eksRunning kubernetes with amazon eks
Running kubernetes with amazon eks
 
Fast-Track Your Application Modernisation Journey with Containers - AWS Summi...
Fast-Track Your Application Modernisation Journey with Containers - AWS Summi...Fast-Track Your Application Modernisation Journey with Containers - AWS Summi...
Fast-Track Your Application Modernisation Journey with Containers - AWS Summi...
 
Amazon EKS: Getting Started
Amazon EKS: Getting StartedAmazon EKS: Getting Started
Amazon EKS: Getting Started
 
Architecting security and governance through policy guardrails in Amazon EKS ...
Architecting security and governance through policy guardrails in Amazon EKS ...Architecting security and governance through policy guardrails in Amazon EKS ...
Architecting security and governance through policy guardrails in Amazon EKS ...
 
SRV318 Running Kubernetes with Amazon EKS
SRV318 Running Kubernetes with Amazon EKSSRV318 Running Kubernetes with Amazon EKS
SRV318 Running Kubernetes with Amazon EKS
 
Amazon Container Services
Amazon Container ServicesAmazon Container Services
Amazon Container Services
 
Amazon EKS Roadmap- AWS Container Day 2019 Barcelona
Amazon EKS Roadmap- AWS Container Day 2019 BarcelonaAmazon EKS Roadmap- AWS Container Day 2019 Barcelona
Amazon EKS Roadmap- AWS Container Day 2019 Barcelona
 
Semplificare la gestione dei container con i servizi AWS
Semplificare la gestione dei container con i servizi AWSSemplificare la gestione dei container con i servizi AWS
Semplificare la gestione dei container con i servizi AWS
 
Amazon EKS - Elastic Container Service for Kubernetes
Amazon EKS - Elastic Container Service for KubernetesAmazon EKS - Elastic Container Service for Kubernetes
Amazon EKS - Elastic Container Service for Kubernetes
 
AWS Containers Day.pdf
AWS Containers Day.pdfAWS Containers Day.pdf
AWS Containers Day.pdf
 
Executando Kubernetes com Amazon EKS - DEV303 - Sao Paulo Summit
Executando Kubernetes com Amazon EKS - DEV303 - Sao Paulo SummitExecutando Kubernetes com Amazon EKS - DEV303 - Sao Paulo Summit
Executando Kubernetes com Amazon EKS - DEV303 - Sao Paulo Summit
 
AWS 微服務中的 Container 選項比較 (Level 400)
AWS 微服務中的 Container 選項比較 (Level 400)AWS 微服務中的 Container 選項比較 (Level 400)
AWS 微服務中的 Container 選項比較 (Level 400)
 
Breaking the Monolith using AWS Container Services
Breaking the Monolith using AWS Container ServicesBreaking the Monolith using AWS Container Services
Breaking the Monolith using AWS Container Services
 
Containers on AWS - State of the Union
Containers on AWS - State of the UnionContainers on AWS - State of the Union
Containers on AWS - State of the Union
 
Deep dive on Amazon Elastic Container Service for Kubernetes (Amazon EKS) - M...
Deep dive on Amazon Elastic Container Service for Kubernetes (Amazon EKS) - M...Deep dive on Amazon Elastic Container Service for Kubernetes (Amazon EKS) - M...
Deep dive on Amazon Elastic Container Service for Kubernetes (Amazon EKS) - M...
 
使用 Amazon EKS 打造高效的服務架構設計
使用 Amazon EKS 打造高效的服務架構設計使用 Amazon EKS 打造高效的服務架構設計
使用 Amazon EKS 打造高效的服務架構設計
 
AWS Summit London 2019 - Containers on AWS
AWS Summit London 2019 - Containers on AWSAWS Summit London 2019 - Containers on AWS
AWS Summit London 2019 - Containers on AWS
 
Comparing Compute Options for Microservices - AWS Summti Sydney 2018
Comparing Compute Options for Microservices - AWS Summti Sydney 2018Comparing Compute Options for Microservices - AWS Summti Sydney 2018
Comparing Compute Options for Microservices - AWS Summti Sydney 2018
 
Modernizing on EKS (Keynote)- AWS Container Day 2019 Barcelona
Modernizing on EKS (Keynote)- AWS Container Day 2019 BarcelonaModernizing on EKS (Keynote)- AWS Container Day 2019 Barcelona
Modernizing on EKS (Keynote)- AWS Container Day 2019 Barcelona
 

More from Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateAmazon Web Services
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSAmazon Web Services
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareAmazon Web Services
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAmazon Web Services
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWSAmazon Web Services
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckAmazon Web Services
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without serversAmazon Web Services
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceAmazon Web Services
 

More from Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS Fargate
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot
 
Open banking as a service
Open banking as a serviceOpen banking as a service
Open banking as a service
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
 
Computer Vision con AWS
Computer Vision con AWSComputer Vision con AWS
Computer Vision con AWS
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
 
Fundraising Essentials
Fundraising EssentialsFundraising Essentials
Fundraising Essentials
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container Service
 

Modernizing Apps with Amazon EKS

  • 1. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Modernizing legacy applications with Amazon EKS Jeremy Cowan Sr. Specialist Solution Architect, Containers Amazon Web Services M A D 3 0 1
  • 2. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Agenda Customer use cases Kubernetes and why it matters Introducing Amazon EKS Amazon EKS Control Plane Amazon EKS Worker Nodes Amazon EKS networking and load balancing Machine learning Windows containers
  • 3. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T How are customers using Amazon EKS? Enterprise app migration Microservices Machine learning
  • 4. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Who is using Amazon EKS? “We built the next generation of our PaaS using Amazon EKS for large enterprise workloads. We manage thousands of applications and have hundreds of DevOps teams.”
  • 5. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Who is using Amazon EKS? “Kubernetes is fast becoming the preferred solution for container orchestration. Its biggest downside is that it is not simple to set up and operate. Amazon EKS gives us all the benefits of Kubernetes, but takes care of managing the hard stuff. We can dedicate less resources to deployment and operations as a result.”
  • 6. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Who is using Amazon EKS?
  • 7. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Which customers are using Amazon EKS? “The performance from Amazon EKS makes it feasible to effectively manage large-scale databases delivering over a million queries per second. Amazon EKS also helps with our cluster management and scalability challenges.”
  • 8. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Recap: What’s a container Runtime Code Dependencies Single, immutable object
  • 9.
  • 10. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Open source container management platform Helps you run containers at scale Gives you primitives for building modern applications What is Kubernetes? © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T
  • 11. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T What it takes to enable rapid innovation Quality Agility Velocity Rapid innovation
  • 12. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Kubernetes promotes innovation Quality • Basic primitives for deploying and running any application Agility • Extensible • Run anywhere Velocity • Automation for workload deployment and scaling
  • 13. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Modernization with Kubernetes 1 Migrate in place Move apps to containers without code changes. 2 3 Run anywhere Move entire organizations to the cloud using the same containers, tooling, and remove the need to manage any infrastructure. Implement tooling Use Kubernetes to implement standard deployment and operational tooling across all your apps.
  • 14. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 15. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS, a year in review April – June 2018: EKS achieves K8s conformance, HIPAA-eligibility, Generally available July – September 2018: Amazon EKS AMI build scripts and AWS CloudFormation templates available in GitHub. Support for GPU-enabled EC2 instances, support for HPA with custom or external metrics. EKS launches in Dublin, Ireland EKS simplifies cluster setup with update-kubeconfig CLI command October – December 2018: EKS adds support for Dynamic Admission Controllers (Istio), ALB Support with AWS ALB Ingress Controller Amazon EKS launches in Ohio, Frankfurt, Singapore, Sydney, and Tokyo EKS adds Managed Cluster Updates and Support for Kubernetes Version 1.11
  • 16. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS, a year in review January – May 2019: EKS Adds support for Kubernetes 1.12 EKS launches in Seoul, Mumbai, London, and Paris EKS achieves ISO and PCI compliance, announces 99.9% SLA, cluster creation limit raised to 50 API Server Endpoint Access Control, AWS App Mesh controller, Windows support (preview) Amazon CloudWatch Container Insights for EKS and Kubernetes Public Preview EKS Simplifies Cluster Authentication EKS Adds Support for Public IP Addresses Within Cluster VPCs EKS Now Delivers Kubernetes Control Plan Logs to Amazon CloudWatch
  • 17. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Open source and Amazon EKS Amazon EKS runs 100% upstream Kubernetes Key components of Amazon EKS are open source • Amazon VPC CNI Plugin • AWS Identity and Access Management (IAM) Authenticator • Amazon EKS AMI
  • 18. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Open source and Amazon EKS Team contributes to or manages 20+ OSS projects • /kubernetes • /kubernetes/autoscaler • /atlassian/escalator • /awslabs/aws-service-operator • /awslabs/aws-servicebroker • /weaveworks/eksctl • /aws/amazon-vpc-cni-k8s • EBS, EFS, Amazon FSx CSI drivers • kops
  • 19. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 20. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS architecture prod-cluster-123.eks.amazonaws.com Amazon EKS workers kubectl AZ 1 AZ 2 AZ 3 Your AWS account VPC Amazon EKS
  • 21. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T VPC Kubernetes control plane Highly available and single tenant infrastructure All “native AWS” components Fronted by an NLB Network Load Balancer Amazon EKS Etcd API Servers
  • 22. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T VPC Kubernetes control plane Highly available and single tenant infrastructure All “native AWS” components Fronted by an NLB Network Load Balancer Amazon EKS Availability Zone 1 Availability Zone 2 Availability Zone 3 Etcd API Servers
  • 23. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Creating a cluster: Planning
  • 24. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Provide Amazon EKS a role with the correct policies attached Creating a cluster: Amazon EKS role
  • 25. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Creating a cluster: Amazon VPC Provide all subnets that will host Kubernetes resources: Load balancers and worker nodes Subnets can be public, private, or both Amazon EKS will tag the subnets with kubernetes.io/cluster/<cluster-name> = shared Subnets that will host internal load balancers need the tag kubernetes.io/role/internal-elb = 1
  • 26. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Creating a cluster: Amazon VPC Plan ahead with subnet sizes! Pods each consume an Amazon VPC IP address. /24 subnet = 254 IPs total. Subtract one for each node in your cluster, and the remainder is what you have for pods (probably not enough!) Amazon EKS–provided sample VPC template uses a /18
  • 27. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Creating a cluster: Control plane security group This security group defines connectivity between the Kubernetes control plane and worker nodes At minimum, Kubernetes needs 443 inbound and 10250 outbound This security group needs permissions that align with the worker node security group
  • 28. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Kubernetes version Latest: 1.12.6 Coming soon: 1.13 Amazon EKS will support up to three versions of Kubernetes at once Deprecation in line with the community stopping support for older versions
  • 29. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS version lifecycle Strong emphasis on running production grade workloads, supportability, and security Amazon EKS lifecycle process • Announcement 60 days prior to deprecating a Kubernetes version • After 60 days, your cluster will automatically be upgraded to the next version • Coincides with when the project stops supporting the deprecated version • Prevented from creating a cluster using a deprecated version • Customer upgrades worker nodes (n-2)
  • 30. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS platform version Platform version revisions represent API server configuration changes or Kubernetes patches Platform versions increment within a Kubernetes version only Kubernetes Kubernetes Kubernetes
  • 31. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T API server configuration Kubernetes version Kubernetes patch version Amazon EKS platform version Enabled admission controllers Release notes 1.10 1.10.3 eks.2 ​Initializers, NamespaceLifecycle, Limi tRanger, ServiceAccount, DefaultStorageClass, ResourceQuota, DefaultTolerationSeconds, NodeRestriction, MutatingAdmissionWebhook, ValidatingAdmissionWebhook •Added support for Kubernetes aggregation layer. •Added support for Kubernetes Horizontal Pod Autoscaler (HPA). •Kubernetes Metrics Server 0.3.0 or greater is compatible with Amazon EKS platform version eks.2.
  • 32. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS Kubernetes version update
  • 33. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Lifecycle management of worker nodes with eksctl Create node groups • Uses version of control plane by default • Override using --version flag Scale node groups Delete node groups • Will cordon and drain pods before instances are terminated Drain node groups
  • 34. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T IAM authentication Kubectl 3) Authorizes AWS identity with RBAC Kubernetes API 1) Passes AWS identity 2) Verifies AWS identity 4) Kubernetes action allowed/denied
  • 35. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Simplified authentication with the AWS CLI Previously required IAM Authenticator Added eks get-token subcommand to generate the base 64 encoded token to authenticate to the Amazon EKS cluster https://sts.amazonaws.com/?Action=GetCallerIdentity&Version=201 1-06-15&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz- Credential=AKIAJHGRILKNSRC2W5QA%2F20190524%2Fus-east- 1%2Fsts%2Faws4_request&X-Amz-Date=20190524T040522Z&X-Amz- Expires=0&X-Amz-SignedHeaders=host%3Bx-k8s-aws-id&X-Amz- Signature=fe007f38e753a609523ec5931f6bf41e5fade79689354a63818a6 ace65fefb
  • 36. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T PKI configuration Kubelet Generates public/private keys Kubelet installs server cert Kubelet issues CSR Certificate rotation Amazon EKS API serverAmazon EKS worker Amazon
  • 37. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS is ready for sensitive and regulated workloads (16-May)
  • 38. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T aws eks update-kubeconfig --name my-cluster CLI Helper command to create kubeconfig file Creates a new context for each cluster in the config Wrapping it all up Easily export control plane config
  • 39. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 40. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T ✅ ✅ ✅ ✅ Bring your own instances Instance flexibility
  • 41. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Bring your own OS Amazon EKS AMI build scripts https://github.com/awslabs/amazon-eks-ami Amazon Amazon Amazon
  • 42. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Provisioning worker nodes AWS CloudFormation CDK eksctl Partners … … more Terraform Pulumi Rancher
  • 43. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Updating worker nodes Amazon EKS node drainer
  • 44. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Storage—CSI drivers CSI == Container Storage Interface Flexible standard for orchestration and storage provider connections Amazon Elastic Block Store: AWS EBS CSI Driver Now supported for production workloads as a Kubernetes beta Part of Kubernetes SIGs on GitHub Amazon Elastic File System: AWS EFS CSI Driver Amazon FSx for Lustre: AWS FSx CSI Driver Both now available as a Kubernetes alpha Part of Kubernetes SIGs on GitHub
  • 45. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 46. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Cross account ENI Worker VPC (your account) Kubectl Master VPC (AWS account) etcd AZ 1 API Server etcd API Server prod-cluster-123.eks.amazonaws.com Amazon EKS- owned ENI Kubelet AZ 1 Worker node Amazon EKS- owned ENI Kubelet AZ 2 Worker node AZ 2 Kube-proxy Kube-proxy
  • 47. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T API-server Endpoint Access Control Worker VPC (your account) Kubectl Master VPC (AWS account) etcd AZ 1 API Server etcd API Server prod-cluster-123.eks.amazonaws.com Amazon EKS- owned ENI Kubelet AZ 1 Worker node Amazon EKS- owned ENI Kubelet AZ 2 Worker node Public == true AZ 2 Kube-proxy Kube-proxy
  • 48. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T API-server Endpoint Access Control Worker VPC (your account) Kubectl Master VPC (AWS account) etcd AZ 1 AZ 2 API Server etcd API Server prod-cluster-123.eks.amazonaws.com Amazon EKS- owned ENIs Public == true Private == true prod-cluster-123.eks.amazonaws.com Private hosted zone Kubelet AZ 1 Worker node Kube-proxy Kubelet AZ 2 Worker node Kube-proxy
  • 49. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T API-server Endpoint Access Control Worker VPC (your account) Kubectl Master VPC (AWS account) etcd AZ 1 AZ 2 API Server etcd API Server Amazon EKS- owned ENIs Public == false Private == true prod-cluster-123.eks.amazonaws.com Private hosted zone Kubelet AZ 1 Worker node Kube-proxy Kubelet AZ 2 Worker node Kube-proxy
  • 50. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon VPC CNI plugin ENI Secondary IPs: 10.0.0.1 10.0.0.2 10.0.0.1 10.0.0.2 ENI 10.0.0.20 10.0.0.22 Secondary IPs: 10.0.0.20 10.0.0.22 ec2.associateaddress() VPC Subnet – 10.0.0.0/24 Instance 1 Instance 2 VPC
  • 51. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Amazon EKS supports advanced networking architectures VPC - Multiple IP ranges Subnet 1 – 10.0.0.0/16 Subnet 2 – 100.64.0.0/10 Customer gateway Corporate data center On Premises – 10.1.0.0/16 VPN or DX Pod Outbound Traffic SNAT Amazon EKS Worker Node Primary ENI Pod Secondary ENI Pod – 100.64.0.200
  • 52. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Load balancing All three AWS Elastic Load Balancing products are supported Network Load Balancer and Classic Load Balancer supported by Kubernetes Service type=LoadBalancer Internal and external load balancer support
  • 53. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Load balancing Want to use an internal load balancer? Use annotation: service.beta.kubernetes.io/aws-load-balancer- internal: 0.0.0.0/0 Want to use a Network Load Balancer? Use annotation: service.beta.kubernetes.io/aws-load-balancer- type: nlb
  • 54. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Application Load Balancer Ingress Controller Production-ready 1.0 release Supported by Amazon EKS team Open source development: https://github.com/kubernetes-sigs/aws- alb-ingress-controller Customers are using it in production today!
  • 55. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T ALB ingress: Recently added features Autoselect certificates based on ingress hostname Register out of VPC targets • Pod IP targets outside of the ALB’s VPC Support for multiple SSL certificates Support for authentication via Amazon Cognito and OIDC Support for existing targetGroup as a backend
  • 56. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T ALB Ingress Controller AWS resources Kubernetes cluster Node Node Kubernetes API server ALB Ingress Controller Node HTTP listenerHTTPS listener Rule: /cheesesRule: /charcuterie TargetGroup: Green (IP Mode) TargetGroup: Blue (Instance Mode) NodePort NodePort
  • 57. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 58. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T 1 2 3
  • 59. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Deep learning model lifecycle Training • Gather data for training and testing • Hyper-parameter tuning • Distributed training using GPUs • Cost-to-train and time-to-train Inference • Hundreds of machines • Throughput and latency important • Cost per inference and inference/sec. • Run at scale for long
  • 60. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T
  • 61. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS Deep Learning Containers Quickly set up deep learning environments with optimized, pre-packaged Docker container images Get best performance automatically; no tuning required Support TensorFlow and Apache MXNet Deploy on Amazon ECS, Amazon EKS, or Amazon EC2 Customizable container images Available at no cost from Amazon ECR and AWS Marketplace Amazon ECR AWS Marketplace
  • 62. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Now supporting P3dn.24xlarge instances CUDA 10 with NVIDIA v410 coming soon! Amazon EKS-optimized GPU AMI
  • 63. S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
  • 64. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Windows containers Developer preview for all customers today Run Windows containers and Windows server nodes with Amazon EKS Supports heterogeneous (mixed) clusters Kubernetes version 1.11+ Available in all Amazon EKS regions Get started and give feedback on GitHub https://github.com/aws/containers-roadmap
  • 65. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Recap! Amazon 🎉
  • 66. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T Global availability Americas Virginia, Ohio, Oregon EMEA Ireland, Frankfurt, London, Paris, Stockholm Asia Pacific Singapore, Tokyo, Sydney, Seoul, Mumbai
  • 67. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.S U M M I T AWS containers roadmap Stay up to date with what we’re working on Give us feedback and propose ideas Get notified when new features ship https://github.com/aws/containers-roadmap
  • 68. Thank you! S U M M I T © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved. Jeremy Cowan Sr. Specialist Solution Architect, Containers