NI
Uploaded byNGINX, Inc.
PPTX, PDF372 views

MRA AMA Part 6: Service Mesh Models

The document discusses the NGINX microservices reference architecture, focusing on service mesh models used in microservices deployment. It outlines the role of NGINX, the types of service mesh models (proxy, router, fabric), and how NGINX integrates with Kubernetes and Istio for load balancing. Additionally, it highlights NGINX's professional services and expertise in microservices strategies.

Software
Related topics:
Load Balancing Insights

Embed presentation

Downloaded 39 times
NGINX Microservices Reference Architecture (MRA) Ask Me Anything (AMA) Part 6 – Service Mesh Models Wednesday, November 1, 2017 2
MORE INFORMATION AT NGINX.COM Who Are We? Charles Pretzer Technical Architect Formerly: - Software architecture consultant - Engineering lead at Zinio, StyleHive, others Floyd Smith Technical Marketing Writer Formerly: - Apple, Alta Vista, Google, and more - Author of multiple books on technology including web, marketing, usability
Job Titles Analyst Architect CEO, CIO, CTO Consultant cool guy Cloud Architect, Engineer Developer DevOps Engineer IT Lead, Manager Security Architect Systems Analyst Tech Lead Organization Types Airlines Computer technology Consultancy Ecommerce Finance Freelance Government Higher education Mobile phones Networking technology Press SaaS Telecoms Reasons for Attending “Build ms platforms” “Client proposals” “Compare the three models to our solution” “Create API Gateway” “Developing microservices” “DevOps” “Microservices strategies” “Migrate from F5” “Move from .NET” “Move from Apache” “Moving from monolith” “Playing with microservices” Who Attends? 4
1. Introducing NGINX 2. Problems Solved by Using a Service Mesh Model for Microservices 3. Service Mesh Models in the MRA 4. How the NGINX Kubernetes Ingress Controller works with Istio, linkerd, and other service mesh models 5. NGINX Professional Services Agenda 5
Introducing NGINX 6
About NGINX, Inc. 7 • NGINX Open Source project early 2000s • Company founded in 2011 • NGINX Plus first released in 2013 • VC-backed by enterprise software industry leaders • Offices in San Francisco, Sunnyvale, Cork, Cambridge, and Moscow • 1,000+ commercial customers • 100+ employees
8 50%of the top 100,000 busiest websites Source: W3Techs Web Technology Survey >
MORE INFORMATION AT NGINX.COM 9
Where NGINX Plus fits 10 Internet Web Server Serve content from disk Application Gateway FastCGI, uWSGI, Passenger… Reverse Proxy Caching, load balancing… HTTP traffic
NGINX Plus works in all environments 11 Public/Private/Hybrid Cloud Bare Metal Containers
NGINX and Microservices 12 • Two-thirds of surveyed developers using or investigating microservices • Microservices is #1 topic on our website • Chris Richardson series, Introduction to Microservices • Chris Stetson series, NGINX MRA** • Three Models webinar • MRA Training • NGINX Professional Services – creators of the MRA …and much more ** = backup for this presentation
The Role of a Service Mesh 13
What is a service mesh? A service mesh is a dedicated infrastructure layer for making service-to- service communication safe, fast, and reliable. If you’re building a cloud native application, you need a service mesh! - buoyant.io
MORE INFORMATION AT NGINX.COM Proxy Model • Focus on internet traffic • A shock absorber for your app • Dynamic connectivity
MORE INFORMATION AT NGINX.COM Proxy Model • Inbound traffic is managed through a reverse proxy/load balancer • Services are left to themselves to connect to each other. • Often through round-robin DNS
MORE INFORMATION AT NGINX.COM Router Mesh • Robust service discovery • Advanced load balancing • Circuit breaker pattern
MORE INFORMATION AT NGINX.COM Router Mesh Model • Inbound routing through reverse proxy • Centralized load balancing through a separate load balancing service • Deis Router works like this
MORE INFORMATION AT NGINX.COM Circuit Breakers • Active health checks • Retry
MORE INFORMATION AT NGINX.COM Fabric Model • Robust service discovery • Advanced load balancing • Circuit breaker pattern • Persistent SSL network
MORE INFORMATION AT NGINX.COM Inter-Process Communication • Routing is done at the container level • Services connect to each other as needed • NGINX Plus acts as the forward and reverse proxy for all requests
MORE INFORMATION AT NGINX.COM Kubernetes Load Balancing • Implemented by Services as internal or external load balancers • Ingress and Ingress Controllers are more robust forms of load balancing in Kubernetes • The NGINX Ingress Controller provides all the load balancing features NGINX within Kubernetes • https://github.com/nginxinc/kubernetes-ingress
MORE INFORMATION AT NGINX.COM NGINX Ingress Controller for Kubernetes - Open source repository on github
MORE INFORMATION AT NGINX.COM Istio Load Balancing • In order to discover services Istio assumes the presence of a service registry • NGINX has built the nginxmesh repository which provides an implementation of a sidecar proxy for Istio using NGINX • https://github.com/nginmesh/nginmesh
MORE INFORMATION AT NGINX.COM nginmesh for Istio - Open source repository on github
NGINX Professional Services 26 • Developers of the NGINX MRA • Highlights: NGINX Plus Quick Start and Microservices Architecture Strategy and Consultation • Find the Fabric Model on GitHub • MRA Training • Contact NGINX Sales to discuss
Q&A 27
Thank you 28 charles@nginx.com

More Related Content

PPTX
NGINX, Istio, and the Move to Microservices and Service Mesh
byNGINX, Inc.
 
PPTX
Secure Your Apps with NGINX Plus and the ModSecurity WAF
byNGINX, Inc.
 
PPTX
NGINX Microservices Reference Architecture: Ask Me Anything
byNGINX, Inc.
 
PPTX
NGINX MRA Fabric Model Release and Ask Me Anything Part 4
byNGINX, Inc.
 
PDF
MRA AMA: Ingenious: The Journey to Service Mesh using a Microservices Demo App
byNGINX, Inc.
 
PPTX
Using an API Gateway for Microservices (APAC Webinar)
byNGINX, Inc.
 
PPTX
Simplify Microservices with the NGINX Application Platform
byNGINX, Inc.
 
PDF
NGINX KubeCon Copenhagen 2018
byNGINX, Inc.
 
NGINX, Istio, and the Move to Microservices and Service Mesh
byNGINX, Inc.
 
Secure Your Apps with NGINX Plus and the ModSecurity WAF
byNGINX, Inc.
 
NGINX Microservices Reference Architecture: Ask Me Anything
byNGINX, Inc.
 
NGINX MRA Fabric Model Release and Ask Me Anything Part 4
byNGINX, Inc.
 
MRA AMA: Ingenious: The Journey to Service Mesh using a Microservices Demo App
byNGINX, Inc.
 
Using an API Gateway for Microservices (APAC Webinar)
byNGINX, Inc.
 
Simplify Microservices with the NGINX Application Platform
byNGINX, Inc.
 
NGINX KubeCon Copenhagen 2018
byNGINX, Inc.
 

What's hot

PPTX
CloudNativeLondon 2017: "What is a Service Mesh, and Do I Need One when Devel...
byDaniel Bryant
 
PDF
Kubernetes and the NGINX Plus Ingress Controller
byKatherine Bagood
 
PDF
APIs: Intelligent Routing, Security, & Management
byNGINX, Inc.
 
PDF
Microservices with NGINX pdf
byKatherine Bagood
 
PDF
Control Kubernetes Ingress and Egress Together with NGINX
byNGINX, Inc.
 
PDF
Relevez les défis Kubernetes avec NGINX
byNGINX, Inc.
 
PDF
NATS Connector Framework - Boulder Meetup
byApcera
 
PDF
DevSecCon Singapore 2019: Preventative Security for Kubernetes
byDevSecCon
 
PPTX
Do You Need A Service Mesh?
byNGINX, Inc.
 
PPTX
API Gateway: Nginx way
byinovia
 
PDF
Securing the Cloud Native Stack
byApcera
 
PPTX
API World: The service-mesh landscape
byChristian Posta
 
PDF
NATS: A Central Nervous System for IoT Messaging - Larry McQueary
byApcera
 
PPTX
Microservices and Container Management with NGINX Plus and Mesosphere DC/OS
byNGINX, Inc.
 
PPTX
NGINX Basics: Ask Me Anything – EMEA
byNGINX, Inc.
 
PPTX
PHX DevOps Days: Service Mesh Landscape
byChristian Posta
 
PPTX
NGINX Controller: Configuration, Management, and Troubleshooting at Scale
byNGINX, Inc.
 
PPTX
Microservice: starting point
byinovia
 
PPTX
Tech Talks Microservices
byMauricio Ferreyra
 
PDF
The Service Mesh: It's about Traffic
byC4Media
 
CloudNativeLondon 2017: "What is a Service Mesh, and Do I Need One when Devel...
byDaniel Bryant
 
Kubernetes and the NGINX Plus Ingress Controller
byKatherine Bagood
 
APIs: Intelligent Routing, Security, & Management
byNGINX, Inc.
 
Microservices with NGINX pdf
byKatherine Bagood
 
Control Kubernetes Ingress and Egress Together with NGINX
byNGINX, Inc.
 
Relevez les défis Kubernetes avec NGINX
byNGINX, Inc.
 
NATS Connector Framework - Boulder Meetup
byApcera
 
DevSecCon Singapore 2019: Preventative Security for Kubernetes
byDevSecCon
 
Do You Need A Service Mesh?
byNGINX, Inc.
 
API Gateway: Nginx way
byinovia
 
Securing the Cloud Native Stack
byApcera
 
API World: The service-mesh landscape
byChristian Posta
 
NATS: A Central Nervous System for IoT Messaging - Larry McQueary
byApcera
 
Microservices and Container Management with NGINX Plus and Mesosphere DC/OS
byNGINX, Inc.
 
NGINX Basics: Ask Me Anything – EMEA
byNGINX, Inc.
 
PHX DevOps Days: Service Mesh Landscape
byChristian Posta
 
NGINX Controller: Configuration, Management, and Troubleshooting at Scale
byNGINX, Inc.
 
Microservice: starting point
byinovia
 
Tech Talks Microservices
byMauricio Ferreyra
 
The Service Mesh: It's about Traffic
byC4Media
 

Similar to MRA AMA Part 6: Service Mesh Models

PPTX
The 3 Models in the NGINX Microservices Reference Architecture
byNGINX, Inc.
 
PPTX
Do I Need A Service Mesh.pptx
byPINGXIONG3
 
PDF
InfoQ_NGINX_Fundamentals_of_Microservices.pptx.pdf
byusmanpk
 
PDF
NGINX Microservices Reference Architecture: What’s in Store for 2019 – EMEA
byNGINX, Inc.
 
PPTX
Building a Service Mesh with NGINX Owen Garrett.pptx
byPINGXIONG3
 
PDF
Docker microservices and the service mesh
byDocker, Inc.
 
PDF
Data Plane Matters! A Deep Dive and Demo on NGINX Service Mesh
byNGINX, Inc.
 
PDF
App Simplified - Use a Mesh from Day 0.pdf
byIvan Porta
 
PDF
Service Mesh: Two Big Words But Do You Need It?
byDevOps.com
 
PDF
Fundamentals of microservices
byNGINX, Inc.
 
PPTX
MRA AMA Part 10: Kubernetes and the Microservices Reference Architecture
byNGINX, Inc.
 
PPTX
microXchg 2018: "What is a Service Mesh? Do I Need One When Developing 'Cloud...
byDaniel Bryant
 
PDF
MRA AMA Part 8: Secure Inter-Service Communication
byNGINX, Inc.
 
PPTX
Using an API Gateway for Microservices
byNGINX, Inc.
 
PPTX
Building a Secure, Performant Network Fabric for Microservice Applications
byinovia
 
PPTX
Introducing the Microservices Reference Architecture Version 1.2
byNGINX, Inc.
 
PPTX
JAX London 2019 "Cloud Native Communication: Using an API Gateway and Service...
byDaniel Bryant
 
PDF
Service mesh in Microservice World to Manage end to end service communications
bySatya Syam
 
PDF
Bringing it all together - Denver JUG
byMelissaMcKay15
 
PPTX
Cloud Native & Service Mesh
byRoi Ezra
 
The 3 Models in the NGINX Microservices Reference Architecture
byNGINX, Inc.
 
Do I Need A Service Mesh.pptx
byPINGXIONG3
 
InfoQ_NGINX_Fundamentals_of_Microservices.pptx.pdf
byusmanpk
 
NGINX Microservices Reference Architecture: What’s in Store for 2019 – EMEA
byNGINX, Inc.
 
Building a Service Mesh with NGINX Owen Garrett.pptx
byPINGXIONG3
 
Docker microservices and the service mesh
byDocker, Inc.
 
Data Plane Matters! A Deep Dive and Demo on NGINX Service Mesh
byNGINX, Inc.
 
App Simplified - Use a Mesh from Day 0.pdf
byIvan Porta
 
Service Mesh: Two Big Words But Do You Need It?
byDevOps.com
 
Fundamentals of microservices
byNGINX, Inc.
 
MRA AMA Part 10: Kubernetes and the Microservices Reference Architecture
byNGINX, Inc.
 
microXchg 2018: "What is a Service Mesh? Do I Need One When Developing 'Cloud...
byDaniel Bryant
 
MRA AMA Part 8: Secure Inter-Service Communication
byNGINX, Inc.
 
Using an API Gateway for Microservices
byNGINX, Inc.
 
Building a Secure, Performant Network Fabric for Microservice Applications
byinovia
 
Introducing the Microservices Reference Architecture Version 1.2
byNGINX, Inc.
 
JAX London 2019 "Cloud Native Communication: Using an API Gateway and Service...
byDaniel Bryant
 
Service mesh in Microservice World to Manage end to end service communications
bySatya Syam
 
Bringing it all together - Denver JUG
byMelissaMcKay15
 
Cloud Native & Service Mesh
byRoi Ezra
 

More from NGINX, Inc.

PDF
【NGINXセミナー】 Ingressを使ってマイクロサービスの運用を楽にする方法
byNGINX, Inc.
 
PDF
Keep Ahead of Evolving Cyberattacks with OPSWAT and F5 NGINX
byNGINX, Inc.
 
PDF
【NGINXセミナー】 NGINXのWAFとは?その使い方と設定方法 解説セミナー
byNGINX, Inc.
 
PDF
NGINXセミナー(基本編)~いまさら聞けないNGINXコンフィグなど基本がわかる!
byNGINX, Inc.
 
PDF
【NGINXセミナー】API ゲートウェイとしてのNGINX Plus活用方法
byNGINX, Inc.
 
PDF
NGINX基本セミナー(セキュリティ編)~NGINXでセキュアなプラットフォームを実現する方法!
byNGINX, Inc.
 
PDF
Unit 1: Apply the Twelve-Factor App to Microservices Architectures
byNGINX, Inc.
 
PPTX
Install and Configure NGINX Unit, the Universal Application, Web, and Proxy S...
byNGINX, Inc.
 
PDF
Easily View, Manage, and Scale Your App Security with F5 NGINX
byNGINX, Inc.
 
PPTX
Protecting Apps from Hacks in Kubernetes with NGINX
byNGINX, Inc.
 
PPTX
Installing and Configuring NGINX Open Source
byNGINX, Inc.
 
PDF
Manage Microservices Chaos and Complexity with Observability
byNGINX, Inc.
 
PDF
Accelerate Microservices Deployments with Automation
byNGINX, Inc.
 
PPTX
Managing Kubernetes Cost and Performance with NGINX & Kubecost
byNGINX, Inc.
 
PPTX
Get Hands-On with NGINX and QUIC+HTTP/3
byNGINX, Inc.
 
PDF
Unit 2: Microservices Secrets Management 101
byNGINX, Inc.
 
PPTX
Shift Left for More Secure Apps with F5 NGINX
byNGINX, Inc.
 
PPTX
NGINX Kubernetes API
byNGINX, Inc.
 
PPTX
Successfully Implement Your API Strategy with NGINX
byNGINX, Inc.
 
PPTX
How to Avoid the Top 5 NGINX Configuration Mistakes.pptx
byNGINX, Inc.
 
【NGINXセミナー】 Ingressを使ってマイクロサービスの運用を楽にする方法
byNGINX, Inc.
 
Keep Ahead of Evolving Cyberattacks with OPSWAT and F5 NGINX
byNGINX, Inc.
 
【NGINXセミナー】 NGINXのWAFとは?その使い方と設定方法 解説セミナー
byNGINX, Inc.
 
NGINXセミナー(基本編)~いまさら聞けないNGINXコンフィグなど基本がわかる!
byNGINX, Inc.
 
【NGINXセミナー】API ゲートウェイとしてのNGINX Plus活用方法
byNGINX, Inc.
 
NGINX基本セミナー(セキュリティ編)~NGINXでセキュアなプラットフォームを実現する方法!
byNGINX, Inc.
 
Unit 1: Apply the Twelve-Factor App to Microservices Architectures
byNGINX, Inc.
 
Install and Configure NGINX Unit, the Universal Application, Web, and Proxy S...
byNGINX, Inc.
 
Easily View, Manage, and Scale Your App Security with F5 NGINX
byNGINX, Inc.
 
Protecting Apps from Hacks in Kubernetes with NGINX
byNGINX, Inc.
 
Installing and Configuring NGINX Open Source
byNGINX, Inc.
 
Manage Microservices Chaos and Complexity with Observability
byNGINX, Inc.
 
Accelerate Microservices Deployments with Automation
byNGINX, Inc.
 
Managing Kubernetes Cost and Performance with NGINX & Kubecost
byNGINX, Inc.
 
Get Hands-On with NGINX and QUIC+HTTP/3
byNGINX, Inc.
 
Unit 2: Microservices Secrets Management 101
byNGINX, Inc.
 
Shift Left for More Secure Apps with F5 NGINX
byNGINX, Inc.
 
NGINX Kubernetes API
byNGINX, Inc.
 
Successfully Implement Your API Strategy with NGINX
byNGINX, Inc.
 
How to Avoid the Top 5 NGINX Configuration Mistakes.pptx
byNGINX, Inc.
 

Recently uploaded

PPTX
Magnet-AXIOM_overview_tool_cyber_tool.pptx
byashishtjoseph
 
PDF
API_SECURITY CONSULTANCY SERVICES IN USA
bydavidjohansen1597
 
PDF
How Modern Custom Software is Revolutionizing Mortgage Lending Processes -Ma...
byMatellio
 
PDF
Constraints First - Why Our On-Prem Ticketing System Starts With Limits, Not ...
bySpirit Face
 
PDF
Imed Eddine Bouchoucha | computer engineer | software Architect
byImed Bouchoucha
 
PDF
How NetSuite Cloud ERP Helps Businesses Overcome Legacy System Downtime.
byTechWize
 
PPTX
SNG460-CNG489_Week8_17-21Nov25_Chp8-OdtuClass.pptx
byberayseray382
 
PDF
Navigating SEC Regulations for Crypto Exchanges Preparing for a Compliant Fut...
byzak jasper
 
PPTX
application security presentation 2 by harman
byharmanideapad
 
PDF
Intelligent CRM for Insurance Brokers: Managing Clients with Precision
byInsurance Tech Services
 
PPTX
#15 All About Anypoint MQ - Calicut MuleSoft Meetup Group
bycalicutmulesoftmeetu
 
PDF
Red Hat Summit 2025 - Triton GPU Kernel programming.pdf
bySanjeev Rampal
 
PPTX
AI Agent Overview - Why we need AI Agent
byAlokGope
 
PDF
What Is A Woman (WIAW) Token – Smart Contract Security Audit Report by EtherA...
byEtherAuthority
 
PDF
Cybersecurity Alert- What Organisations Must Watch Out For This Christmas Fes...
byCybernetic Global Intelligence
 
PDF
Design and Analysis of Algorithms(DAA): Unit-II Asymptotic Notations and Basi...
byKuvempu University
 
PPTX
Lecture 3 - Scheduling - Operating System
bynurulalomador
 
PPTX
AI Clinic Management Software for Pulmonology Clinics Bringing Clarity, Contr...
byEasy Clinic
 
PDF
KoderXpert – Odoo, Web & AI Solutions for Growing Businesses
byDhvanil Trivedi
 
PDF
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 
Magnet-AXIOM_overview_tool_cyber_tool.pptx
byashishtjoseph
 
API_SECURITY CONSULTANCY SERVICES IN USA
bydavidjohansen1597
 
How Modern Custom Software is Revolutionizing Mortgage Lending Processes -Ma...
byMatellio
 
Constraints First - Why Our On-Prem Ticketing System Starts With Limits, Not ...
bySpirit Face
 
Imed Eddine Bouchoucha | computer engineer | software Architect
byImed Bouchoucha
 
How NetSuite Cloud ERP Helps Businesses Overcome Legacy System Downtime.
byTechWize
 
SNG460-CNG489_Week8_17-21Nov25_Chp8-OdtuClass.pptx
byberayseray382
 
Navigating SEC Regulations for Crypto Exchanges Preparing for a Compliant Fut...
byzak jasper
 
application security presentation 2 by harman
byharmanideapad
 
Intelligent CRM for Insurance Brokers: Managing Clients with Precision
byInsurance Tech Services
 
#15 All About Anypoint MQ - Calicut MuleSoft Meetup Group
bycalicutmulesoftmeetu
 
Red Hat Summit 2025 - Triton GPU Kernel programming.pdf
bySanjeev Rampal
 
AI Agent Overview - Why we need AI Agent
byAlokGope
 
What Is A Woman (WIAW) Token – Smart Contract Security Audit Report by EtherA...
byEtherAuthority
 
Cybersecurity Alert- What Organisations Must Watch Out For This Christmas Fes...
byCybernetic Global Intelligence
 
Design and Analysis of Algorithms(DAA): Unit-II Asymptotic Notations and Basi...
byKuvempu University
 
Lecture 3 - Scheduling - Operating System
bynurulalomador
 
AI Clinic Management Software for Pulmonology Clinics Bringing Clarity, Contr...
byEasy Clinic
 
KoderXpert – Odoo, Web & AI Solutions for Growing Businesses
byDhvanil Trivedi
 
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 

MRA AMA Part 6: Service Mesh Models

  • 2.
    NGINX Microservices Reference Architecture(MRA) Ask Me Anything (AMA) Part 6 – Service Mesh Models Wednesday, November 1, 2017 2
  • 3.
    MORE INFORMATION ATNGINX.COM Who Are We? Charles Pretzer Technical Architect Formerly: - Software architecture consultant - Engineering lead at Zinio, StyleHive, others Floyd Smith Technical Marketing Writer Formerly: - Apple, Alta Vista, Google, and more - Author of multiple books on technology including web, marketing, usability
  • 4.
    Job Titles Analyst Architect CEO, CIO,CTO Consultant cool guy Cloud Architect, Engineer Developer DevOps Engineer IT Lead, Manager Security Architect Systems Analyst Tech Lead Organization Types Airlines Computer technology Consultancy Ecommerce Finance Freelance Government Higher education Mobile phones Networking technology Press SaaS Telecoms Reasons for Attending “Build ms platforms” “Client proposals” “Compare the three models to our solution” “Create API Gateway” “Developing microservices” “DevOps” “Microservices strategies” “Migrate from F5” “Move from .NET” “Move from Apache” “Moving from monolith” “Playing with microservices” Who Attends? 4
  • 5.
    1. Introducing NGINX 2.Problems Solved by Using a Service Mesh Model for Microservices 3. Service Mesh Models in the MRA 4. How the NGINX Kubernetes Ingress Controller works with Istio, linkerd, and other service mesh models 5. NGINX Professional Services Agenda 5
  • 6.
  • 7.
    About NGINX, Inc. 7 •NGINX Open Source project early 2000s • Company founded in 2011 • NGINX Plus first released in 2013 • VC-backed by enterprise software industry leaders • Offices in San Francisco, Sunnyvale, Cork, Cambridge, and Moscow • 1,000+ commercial customers • 100+ employees
  • 8.
    8 50%of the top100,000 busiest websites Source: W3Techs Web Technology Survey >
  • 9.
  • 10.
    Where NGINX Plusfits 10 Internet Web Server Serve content from disk Application Gateway FastCGI, uWSGI, Passenger… Reverse Proxy Caching, load balancing… HTTP traffic
  • 11.
    NGINX Plus worksin all environments 11 Public/Private/Hybrid Cloud Bare Metal Containers
  • 12.
    NGINX and Microservices 12 •Two-thirds of surveyed developers using or investigating microservices • Microservices is #1 topic on our website • Chris Richardson series, Introduction to Microservices • Chris Stetson series, NGINX MRA** • Three Models webinar • MRA Training • NGINX Professional Services – creators of the MRA …and much more ** = backup for this presentation
  • 13.
    The Role ofa Service Mesh 13
  • 14.
    What is aservice mesh? A service mesh is a dedicated infrastructure layer for making service-to- service communication safe, fast, and reliable. If you’re building a cloud native application, you need a service mesh! - buoyant.io
  • 15.
    MORE INFORMATION AT NGINX.COM ProxyModel • Focus on internet traffic • A shock absorber for your app • Dynamic connectivity
  • 16.
    MORE INFORMATION AT NGINX.COM ProxyModel • Inbound traffic is managed through a reverse proxy/load balancer • Services are left to themselves to connect to each other. • Often through round-robin DNS
  • 17.
    MORE INFORMATION AT NGINX.COM RouterMesh • Robust service discovery • Advanced load balancing • Circuit breaker pattern
  • 18.
    MORE INFORMATION AT NGINX.COM RouterMesh Model • Inbound routing through reverse proxy • Centralized load balancing through a separate load balancing service • Deis Router works like this
  • 19.
  • 20.
    MORE INFORMATION AT NGINX.COM FabricModel • Robust service discovery • Advanced load balancing • Circuit breaker pattern • Persistent SSL network
  • 21.
    MORE INFORMATION AT NGINX.COM Inter-Process Communication •Routing is done at the container level • Services connect to each other as needed • NGINX Plus acts as the forward and reverse proxy for all requests
  • 22.
    MORE INFORMATION AT NGINX.COM KubernetesLoad Balancing • Implemented by Services as internal or external load balancers • Ingress and Ingress Controllers are more robust forms of load balancing in Kubernetes • The NGINX Ingress Controller provides all the load balancing features NGINX within Kubernetes • https://github.com/nginxinc/kubernetes-ingress
  • 23.
    MORE INFORMATION AT NGINX.COM NGINXIngress Controller for Kubernetes - Open source repository on github
  • 24.
    MORE INFORMATION AT NGINX.COM IstioLoad Balancing • In order to discover services Istio assumes the presence of a service registry • NGINX has built the nginxmesh repository which provides an implementation of a sidecar proxy for Istio using NGINX • https://github.com/nginmesh/nginmesh
  • 25.
    MORE INFORMATION AT NGINX.COM nginmesh forIstio - Open source repository on github
  • 26.
    NGINX Professional Services 26 •Developers of the NGINX MRA • Highlights: NGINX Plus Quick Start and Microservices Architecture Strategy and Consultation • Find the Fabric Model on GitHub • MRA Training • Contact NGINX Sales to discuss
  • 27.
  • 28.

Editor's Notes

  • #5 Attendees from recent AMA
  • #9 Half of the top 10,000 We’re now the number one web server for the top 100,000 as well, and climbing fast in every category.
  • #10 NGINX Plus extends NGINX with advanced features such as health monitoring, session persistence, and an advanced monitoring interface. NGINX Plus is a complete application delivery platform.
  • #11 NGINX Plus gives you all the tools you need to deliver your application reliably. Web Server NGINX is a fully featured web server that can directly serve static content. NGINX Plus can scale to handle hundreds of thousands of clients simultaneously, and serve hundreds of thousands of content resources per second. Application Gateway NGINX handles all HTTP traffic, and forwards requests in a smooth, controlled manner to PHP, Ruby, Java, and other application types, using FastCGI, uWSGI, and Linux sockets. Reverse Proxy NGINX is a reverse proxy that you can put in front of your applications. NGINX can cache both static and dynamic content to improve overall performance, as well as load balance traffic enabling you to scale-out.
  • #12 Being software NGINX Plus can operate in any environment, from bare metal to VMs to containers. We don’t need to QA and qualify every environment. If you can run Linux you can run NGINX and it will just work. Not just across infrastructure, but the same NGINX software that runs in production can also run in staging and development environments without incurring additional capital costs. Keeping the different environments in sync as much as possible is an industry best practice and helps to reduce issues where it worked in dev but broke in production. With NGINX Plus enterprises can easily eliminate this potential gap in the deployment process.
  • #16 We have a solution to the network problem that provides Service discovery Robust load balancing Fast encryption at the transmission layer
  • #17 This model focuses entirely on in-bound traffic and ignores the whole inter process communication problem. Basically think of it as putting NGINX on a public facing server and letting the associated services on the private network fend for themselves. The good thing is that: You get all the benefit of HTTP traffic management in this system that you normally get with NGINX SSL termination Traffic shaping and security Caching With NGINX plus you get robust load-balancing and service discovery This model works well for a simple and flat API or a monolith with some basic microservices attached. For Kubernetes we have an open source Ingress Controller that allows you to easily implement this system using our OSS or commercial version NGINX Plus gives you dynamic upstreams, active health checks, and robust monitoring NGINX Plus can also act as a Web Application Firewall using the ModSecurity module
  • #18 The Router mesh architecture adds to the Proxy Model architecture by also providing Service discovery Robust load balancing Fast encryption at the transmission layer As well as Fast failure detection Advanced Load Balancing among services
  • #19 Like the proxy model, it has NGINX running in front of the system to manage in bound traffic and gives you all of the benefits of the proxy model Where it differs is in the introduction of a centralized load balancer between the services When services need to communicate with other services, they route through the this centralized load balancer and the traffic is distributed to other instances The Deis Router with NGINX/NGINX Plus work in this manner Service discovery through DNS and monitoring the service event stream in the registry But it exacerbates the performance problem by adding another hop in the network connection requiring another SSL handshake to make it work So instead of a 9 step SSL handshake, you need to do an 18 step SSL handshake
  • #20 As an added benefit, you can build the Circuit Breaker pattern into your microservices using NGINX Plus active health checks You define an active health check for your service that queries a healthcheck end point You can have a variety of responses that NGINX can evaluate using our regex functionality If the system is marked as unhealthy, we will throttle back traffic to that instance until it has time to recover You can even configure a slow start feature so NGINX will delay sending requests to a service for a specified period of time in order to allow the application to start
  • #21 We have a solution to the network problem that provides Service discovery Robust load balancing Fast encryption at the transmission layer
  • #22 The final model is what we call the fabric model. Like the other two models you have a public proxy in front of the system to handle incoming HTTP traffic Where it differs from other models is that Instead of a centralized router, each container has an instance of NGINX Plus running in the container This system acts as a local reverse and forward proxy for all http traffic Using this system you get service discovery, robust load balancing, and most importantly, high performance, encrypted networking
  • #23 Services default to internal load balancers to pods Services defined as NodePort or LoadBalancer types will act as load balancers for cloud providers that support them: GKE/AWS Ingress and Ingress Controllers are more robust implementations of load balancers for kubernetes NGINX provides an open source Ingress Controller with instructions for building and an example This Ingress Controller uses NGINX Plus upstreams to route requests to different internal services which, in turn, balance requests to the associated podshttps://github.com/nginxinc/kubernetes-ingress
  • #24 Ingress Resource built on NGINX for service discovery Written in go and dynamically updates the NGINX configuration when services are added/scaled Easy routing implementation
  • #25 The service registry required by Istio is usually provided by Kubernetes or Mesos The nginmesh repository plays an integral role in the load balancing within Istio, thereby providing a service mesh
  • #26 nginmesh repository