Docker, Inc., profile picture
Uploaded byDocker, Inc.
PPTX, PDF8,502 views

Opinionated containers and the future of game servers by Brendan Fosberry

The document discusses opinionated containers and containerizing game server applications. Containerizing simple applications like TeamSpeak is straightforward, but complex games like Team Fortress 2 pose unique challenges due to requirements for specific configuration files, port mappings, and handling of persisted state. While containerizing opinionated applications is becoming more common, the game server ecosystem presents difficulties around proprietary assets, obscured documentation, and hacker behavior that promote inflexible environments. Standardizing configuration methods and allowing external persisted state could help containerized game servers become more compatible and deployable at scale.

Embed presentation

Downloaded 32 times
Opinionated containers and the future of game servers 1
2 • Brendan Fosberry • Software Engineer • Shopkeep POS • Core Services Team
3 Overview Opinionated Applications • Background • Containerizing Applications • Containerizing a Simple Application • Containerizing a Complex Application • The Future
4 • IPad POS Software and Hardware • Web based reporting and customization • 24/7 Support Background
Background 5 • Founded in 2008 • 180 employees • 4 Development teams + Devops • Rails, Objective C, Golang • 11k active registers • 100k transaction per hour at peak • 700k transactions per day
Background 6 Redesign Microservices • Transaction Service (Riak) • Reporting Service • Authentication Service • API Service • Etc.. Docker Stack • Apps • Docker CI Pipeline • Routing • Monitoring PB over RPC
Background 7 Containers Dockerfile FROM debian:jessie RUN mkdir -p /opt/go ADD ./core-api /opt/go/core-api VOLUME /var/log/ /opt/go/logs/ EXPOSE 8080 ENTRYPOINT ["/opt/go/core-api"] Procfile web: core-api
Containerizing Applications 8 Best Practices Based on Dockerfile best practices Applicable for in-house/black box applications Assumes working Dockerfile Mostly common sense
Containerizing Applications 9 Best Practices 1. File-less configuration • Load configuration from environment • Use Fracker to write environment file • Pass environment file to container • Otherwise use confd • Avoid chef • Disconnects container and application configuration
Containerizing Applications 10 Best Practices 1. File-less configuration 2. Separate tasks • Container = 1 instance of 1 application task • Separate web heads, crons, job runners • Makes resource allocation simpler
Containerizing Applications 3. Log to sink 11 Best Practices 1. File-less configuration 2. Separate tasks • Assume container is ephemeral • Log to stdout • Log to mounted volume
Containerizing Applications 12 Best Practices 1. File-less configuration 2. Separate tasks • Assume container is disposable • Externalize persisted state • External db or mounted volume 3. Log to sink 4. Separate datastores
Containerizing Applications 1. File-less configuration 13 Best Practices 4. Separate datastores 5. Externalize data extraction • Use application methods if possible • Dump to simple sink • Don’t juggle multiple tasks 2. Separate tasks 3. Log to sink
Containerizing Applications 1. File-less configuration 14 Best Practices 4. Separate datastores 5. Externalize data extraction 6. Don’t daemonize • Control process via container • Send signals with docker • Control through custom ports 2. Separate tasks 3. Log to sink
Containerizing Applications 15 Why Game Servers? • Each server is unique • Poor existing automation • Poor open source tooling • Daniel Gibbs • Poor isolation • Why not?
Containerizing Applications 16 Game Servers Containerization Levels Goals 1. Globally Deployable 2. Uniform Configuration 3. Disposable 1. Container Image 2. Docker 3. Clustered with Fleet
Simple Application 17 Simple Application Teamspeak Gaming Infrastructure Black box, client-server Clients negotiate state changes Server dispatches voice streams Simple setup - download and run
Simple Application 18 Best Practices 1. File-less configuration • Requires configuration files • Use confd
Simple Application 19 Best Practices 1. File-less configuration 2. Separate tasks • Single Task • No background Jobs
Simple Application 3. Log to sink 20 Best Practices 1. File-less configuration 2. Separate tasks • Configure log sink • Mount volume to host
21 Best Practices 4. Separate datastores • Mount volume for sqlite DB • Use external DB • Write db config file Simple Application 1. File-less configuration 2. Separate tasks 3. Log to sink
22 Best Practices 4. Separate datastores 5. Externalize data extraction • Can parse docker logs • Or mount logging volume • Use secondary container to parse token • Use MachineOf Simple Application 1. File-less configuration 2. Separate tasks 3. Log to sink
23 Best Practices 4. Separate datastores 5. Externalize data extraction 6. Don’t daemonize • Run in foreground Simple Application 1. File-less configuration 2. Separate tasks 3. Log to sink
24 Results Simple Application • No state within container • If host dies logs are lost • Single DB per container • Connect using mapped port • Runs on fleet
Simple Application 25 Teamspeak Containerization Levels Goals 1. Globally Deployable 2. Uniform Configuration 3. Disposable 1. Container Image 2. Docker 3. Clustered with Fleet
Complex Application 26 Complex Application Team Fortress 2 Game Server Black box, client-server Clients negotiate state changes Server dispatches voice streams Server dispatches state changes
27 Installing Tf2 #update_script @NoPromptForPassword 1 @ShutdownOnFailedCommand 1 login anonymous force_install_dir /opt/server/ app_update 4020 validate quit Complex Application #!/bin/bash install_steamcmd.sh steamcmd.sh +runscript ./update_script
28 Running Tf2 • Write simple server.cfg • Run srcds_run • Open/forward ports ./srcds_run -game tf2 +map “ctf_2fort” +maxplayers 24 -ip 0.0.0.0 -port 27015 Complex Application Great opportunity for extraction
Complex Application 29 Best Practices 1. File-less configuration • Requires configuration files • Use confd
Complex Application 30 Best Practices 1. File-less configuration 2. Separate tasks • Single Task • No background Jobs
Complex Application 3. Log to sink 31 Best Practices 1. File-less configuration 2. Separate tasks • Configure log sink • Mount volume to host
32 Best Practices 4. Separate datastores • No persisted state • External DB where mods need it Complex Application 1. File-less configuration 2. Separate tasks 3. Log to sink
33 Best Practices 4. Separate datastores 5. Externalize data extraction • Don’t need any data • Monitoring Complex Application 1. File-less configuration 2. Separate tasks 3. Log to sink
34 Best Practices 4. Separate datastores 5. Externalize data extraction 6. Don’t daemonize • Run in foreground Complex Application 1. File-less configuration 2. Separate tasks 3. Log to sink
35 Results Complex Application No state within container. If host dies logs are lost. Connect using mapped port. 8Gb is large for an image.
36 Port Mapping Complex Application Source servers report ip and port. Steam master list references static ports. Favouriting references static port. Direct connection works.
Complex Application 37 Port Remapping Remap the traffic to the correct port • External remapper (inbound proxy) • Cluster/Host-level dynamic remapper • Container-level dynamic remapper • Static port bindings - requires port allocator We can’t control the return journey
38 Port Remapping Host 49168 49170 Container 49168 Complex Application Tf2 49168 Client/Master Server HostIP:49168 Container 27015 Proxy 27015 -> HostIP:49170 HostIP:49168 Tf2 becomes dependent upon Proxy
39 Host 49168 Container 27015 Complex Application Tf2 49168 Client/Master Server HostIP:49168 Port Mapping HostIP:49168 Remapper 27015 -> 49168 Fewer containers, but multipurpose
Complex Application 40 Tcp/Udp Mapping Source Engine Server binds to both tcp and udp. Can’t separate port bindings. Docker may map to different port numbers. Open PR to allow EXPOSE 12345/tcpudp
Complex Application 41 Favouriting A favourite is an IP + Port. Invalidated by container changing Host/Port. Remapping containers allow port changes. No simple solution for host changes.
Complex Application 1. Container Image 2. Docker 3. Clustered with Fleet 42 Tf2 Containerization Levels Goals 1. Globally Deployable 2. Uniform Configuration 3. Disposable
Complex Application 43 Game Server Ecosystem Persisted state is critical. Many servers are windows only. Some assets/code are proprietary. Limited configuration options. Hackers promote constrictive environment. Obscured docs, varied user base.
The Future 44 The future of game servers Apply lessons from services to increase compatibility • Game Server Containers are becoming commonplace • Standardize configuration methods • Allow persisted state to be externalized • Dedicated linux • Support clustering
Summary 45 Summary • Containerizing opinionated apps is easy • Deploying an opinionated container may not be • Container deployment will become increasingly relevant • Container compatibility will become increasingly defining • Game servers have a lot of work to do
Summary 46 Questions? brendan@shopkeep.com @brendanfosberry bfosberry Fozz
Thank You. 47

More Related Content

PPTX
Docker in a big company
byDocker, Inc.
 
PPTX
DockerCon EU 2015: It's in the game: the path to micro-services at Electronic...
byDocker, Inc.
 
PPTX
DockerCon SF 2015: Cultural Change using Docker
byDocker, Inc.
 
PDF
Sharding Containers: Make Go Apps Computer-Friendly Again by Andrey Sibiryov
byDocker, Inc.
 
PPTX
DockerCon EU 2015: Docker Universal Control Plane (Gordon's Special Session)
byDocker, Inc.
 
PPTX
Docker for Ops: Docker Networking Deep Dive, Considerations and Troubleshooti...
byDocker, Inc.
 
PDF
DCEU 18: 5 Patterns for Success in Application Transformation
byDocker, Inc.
 
PDF
Taking Docker from Local to Production at Intuit JanJaap Lahpor, Intuit and H...
byDocker, Inc.
 
Docker in a big company
byDocker, Inc.
 
DockerCon EU 2015: It's in the game: the path to micro-services at Electronic...
byDocker, Inc.
 
DockerCon SF 2015: Cultural Change using Docker
byDocker, Inc.
 
Sharding Containers: Make Go Apps Computer-Friendly Again by Andrey Sibiryov
byDocker, Inc.
 
DockerCon EU 2015: Docker Universal Control Plane (Gordon's Special Session)
byDocker, Inc.
 
Docker for Ops: Docker Networking Deep Dive, Considerations and Troubleshooti...
byDocker, Inc.
 
DCEU 18: 5 Patterns for Success in Application Transformation
byDocker, Inc.
 
Taking Docker from Local to Production at Intuit JanJaap Lahpor, Intuit and H...
byDocker, Inc.
 

What's hot

PDF
DCSF19 Transforming a 15+ Year Old Semiconductor Manufacturing Environment
byDocker, Inc.
 
PDF
Nginx conference 2015
byING-IT
 
PPTX
Dell Trials and Triumphs using Docker on Client Systems by Sean McGinnis and ...
byDocker, Inc.
 
PPTX
NetflixOSS for Triangle Devops Oct 2013
byaspyker
 
PDF
DCSF19 Container Security: Theory & Practice at Netflix
byDocker, Inc.
 
PDF
Your Auto-Scaling Bot - Volkan Tufecki
byDocker, Inc.
 
PPTX
The Mushroom Cloud Effect or What Happens When Containers Fail? by Alois Mayr...
byDocker, Inc.
 
PDF
Provisioning Servers Made Easy
byAll Things Open
 
PDF
Docker for .NET Developers - Michele Leroux Bustamante, Solliance
byDocker, Inc.
 
PPTX
Structured Container Delivery by Oscar Renalias, Accenture
byDocker, Inc.
 
PDF
"[WORKSHOP] K8S for developers", Denis Romanuk
byFwdays
 
PPTX
DockerCon EU 2015: Zoe: Swarming Spark applications
byDocker, Inc.
 
PPTX
Introduction into Docker Containers, the Oracle Platform and the Oracle (Nati...
byLucas Jellema
 
PPTX
Take an Analytics-driven Approach to Container Performance with Splunk for Co...
byDocker, Inc.
 
PDF
Building a smarter application Stack by Tomas Doran from Yelp
bydotCloud
 
PPTX
Docker Practice in Alibaba Cloud by Li Yi (Mark) & Zuhe Li (Sogo)
byDocker, Inc.
 
PPTX
The Tale of a Docker-based Continuous Delivery Pipeline by Rafe Colton (ModCl...
byDocker, Inc.
 
PPTX
A New Centralized Volume Storage Solution for Docker and Container Cloud by W...
byDocker, Inc.
 
PDF
Persistent storage tailored for containers
byDocker, Inc.
 
PPTX
Docker SF Meetup January 2016
byPatrick Chanezon
 
DCSF19 Transforming a 15+ Year Old Semiconductor Manufacturing Environment
byDocker, Inc.
 
Nginx conference 2015
byING-IT
 
Dell Trials and Triumphs using Docker on Client Systems by Sean McGinnis and ...
byDocker, Inc.
 
NetflixOSS for Triangle Devops Oct 2013
byaspyker
 
DCSF19 Container Security: Theory & Practice at Netflix
byDocker, Inc.
 
Your Auto-Scaling Bot - Volkan Tufecki
byDocker, Inc.
 
The Mushroom Cloud Effect or What Happens When Containers Fail? by Alois Mayr...
byDocker, Inc.
 
Provisioning Servers Made Easy
byAll Things Open
 
Docker for .NET Developers - Michele Leroux Bustamante, Solliance
byDocker, Inc.
 
Structured Container Delivery by Oscar Renalias, Accenture
byDocker, Inc.
 
"[WORKSHOP] K8S for developers", Denis Romanuk
byFwdays
 
DockerCon EU 2015: Zoe: Swarming Spark applications
byDocker, Inc.
 
Introduction into Docker Containers, the Oracle Platform and the Oracle (Nati...
byLucas Jellema
 
Take an Analytics-driven Approach to Container Performance with Splunk for Co...
byDocker, Inc.
 
Building a smarter application Stack by Tomas Doran from Yelp
bydotCloud
 
Docker Practice in Alibaba Cloud by Li Yi (Mark) & Zuhe Li (Sogo)
byDocker, Inc.
 
The Tale of a Docker-based Continuous Delivery Pipeline by Rafe Colton (ModCl...
byDocker, Inc.
 
A New Centralized Volume Storage Solution for Docker and Container Cloud by W...
byDocker, Inc.
 
Persistent storage tailored for containers
byDocker, Inc.
 
Docker SF Meetup January 2016
byPatrick Chanezon
 

Viewers also liked

PDF
Docker and Radio Astronomy - Containing Fragile Scientific Software by Gijs M...
byDocker, Inc.
 
PPTX
Migrating a large code-base to containers by Doug Johnson and Jonathan Lozins...
byDocker, Inc.
 
PDF
Docker at Shopify: From This-Looks-Fun to Production by Simon Eskildsen (Shop...
byDocker, Inc.
 
PPTX
Enable Fig to deploy to multiple Docker servers by Willy Kuo
byDocker, Inc.
 
PDF
DockerCon SF 2015: Ben Golub's Keynote Day 1
byDocker, Inc.
 
PDF
Evaluating and ranking genome assemblers by Michael Barton (Joint Genome Inst...
byDocker, Inc.
 
PDF
Open Design at large scale by Solomon Hykes
byDocker, Inc.
 
PPTX
DockerCon 15 Keynote - Day 2
byDocker, Inc.
 
PDF
DockerCon SF 2015: Keynote Day 1
byDocker, Inc.
 
PDF
DockerCon SF 2015: AWS w/ Deepak Singh
byDocker, Inc.
 
PDF
DockerCon SF 2015: Resilient Routing and Discovery
byDocker, Inc.
 
PPTX
BBC: CI Problems and our Solutions by Simon Thulbourn
byDocker, Inc.
 
PPTX
A new model for Docker image distribution
byDocker, Inc.
 
PPTX
Revamping Development and Testing Using Docker – Transforming Enterprise IT b...
byDocker, Inc.
 
PDF
Docker Compose by Aanand Prasad
byDocker, Inc.
 
PPTX
Orchestrating Docker with Terraform and Consul by Mitchell Hashimoto
byDocker, Inc.
 
PDF
Building Web Scale Apps with Docker and Mesos by Alex Rukletsov (Mesosphere)
byDocker, Inc.
 
PDF
Docker Registry V2
byDocker, Inc.
 
PDF
Docker 101: Introduction to Docker
byDocker, Inc.
 
PDF
DockerCon SF 2015: From Months to Minutes
byDocker, Inc.
 
Docker and Radio Astronomy - Containing Fragile Scientific Software by Gijs M...
byDocker, Inc.
 
Migrating a large code-base to containers by Doug Johnson and Jonathan Lozins...
byDocker, Inc.
 
Docker at Shopify: From This-Looks-Fun to Production by Simon Eskildsen (Shop...
byDocker, Inc.
 
Enable Fig to deploy to multiple Docker servers by Willy Kuo
byDocker, Inc.
 
DockerCon SF 2015: Ben Golub's Keynote Day 1
byDocker, Inc.
 
Evaluating and ranking genome assemblers by Michael Barton (Joint Genome Inst...
byDocker, Inc.
 
Open Design at large scale by Solomon Hykes
byDocker, Inc.
 
DockerCon 15 Keynote - Day 2
byDocker, Inc.
 
DockerCon SF 2015: Keynote Day 1
byDocker, Inc.
 
DockerCon SF 2015: AWS w/ Deepak Singh
byDocker, Inc.
 
DockerCon SF 2015: Resilient Routing and Discovery
byDocker, Inc.
 
BBC: CI Problems and our Solutions by Simon Thulbourn
byDocker, Inc.
 
A new model for Docker image distribution
byDocker, Inc.
 
Revamping Development and Testing Using Docker – Transforming Enterprise IT b...
byDocker, Inc.
 
Docker Compose by Aanand Prasad
byDocker, Inc.
 
Orchestrating Docker with Terraform and Consul by Mitchell Hashimoto
byDocker, Inc.
 
Building Web Scale Apps with Docker and Mesos by Alex Rukletsov (Mesosphere)
byDocker, Inc.
 
Docker Registry V2
byDocker, Inc.
 
Docker 101: Introduction to Docker
byDocker, Inc.
 
DockerCon SF 2015: From Months to Minutes
byDocker, Inc.
 

Similar to Opinionated containers and the future of game servers by Brendan Fosberry

PPTX
Cloud Foundry Roadmap (Cloud Foundry Summit 2014)
byVMware Tanzu
 
PPTX
Cf summit2014 roadmap
byJames Bayer
 
PDF
Microservices, Kubernetes, and Application Modernization Done Right
byLightbend
 
PDF
Containers, microservices and serverless for realists
byKarthik Gaekwad
 
PDF
Digital Transformation with Kubernetes, Containers, and Microservices
byLightbend
 
PPTX
UNITde II - Docker-Containerization.pptx,
byaman0710p
 
PDF
Rackspace::Solve NYC - The Future of Applications with Ken Cochrane, Engineer...
byRackspace
 
PDF
Immutable Infrastructure: Rise of the Machine Images
byC4Media
 
PPTX
Why containers
byLuca Ravazzolo
 
PDF
Docker in Production: How RightScale Delivers Cloud Applications
byRightScale
 
PDF
Docker Enterprise Deployment Planning
byStephane Woillez
 
PDF
Strategy, planning and governance for enterprise deployments of containers - ...
byThe Incredible Automation Day
 
PDF
Creating Microservices Application with IBM Cloud Private (ICP) - Container a...
byPT Datacomm Diangraha
 
PDF
Introduction to Docker
byRafael Konlechner
 
PDF
Containerizing legacy applications
byAndrew Kirkpatrick
 
KEY
Real World Cloud Application Security
byJason Chan
 
PPTX
Containers and workload security an overview
byKrishna-Kumar
 
PDF
Microservices: How loose is loosely coupled?
byJohn Rofrano
 
PPTX
The challenge of application distribution - Introduction to Docker (2014 dec ...
bySébastien Portebois
 
PPTX
Hardcore container debugging v3
byNitu Parimi
 
Cloud Foundry Roadmap (Cloud Foundry Summit 2014)
byVMware Tanzu
 
Cf summit2014 roadmap
byJames Bayer
 
Microservices, Kubernetes, and Application Modernization Done Right
byLightbend
 
Containers, microservices and serverless for realists
byKarthik Gaekwad
 
Digital Transformation with Kubernetes, Containers, and Microservices
byLightbend
 
UNITde II - Docker-Containerization.pptx,
byaman0710p
 
Rackspace::Solve NYC - The Future of Applications with Ken Cochrane, Engineer...
byRackspace
 
Immutable Infrastructure: Rise of the Machine Images
byC4Media
 
Why containers
byLuca Ravazzolo
 
Docker in Production: How RightScale Delivers Cloud Applications
byRightScale
 
Docker Enterprise Deployment Planning
byStephane Woillez
 
Strategy, planning and governance for enterprise deployments of containers - ...
byThe Incredible Automation Day
 
Creating Microservices Application with IBM Cloud Private (ICP) - Container a...
byPT Datacomm Diangraha
 
Introduction to Docker
byRafael Konlechner
 
Containerizing legacy applications
byAndrew Kirkpatrick
 
Real World Cloud Application Security
byJason Chan
 
Containers and workload security an overview
byKrishna-Kumar
 
Microservices: How loose is loosely coupled?
byJohn Rofrano
 
The challenge of application distribution - Introduction to Docker (2014 dec ...
bySébastien Portebois
 
Hardcore container debugging v3
byNitu Parimi
 

More from Docker, Inc.

PDF
Containerize Your Game Server for the Best Multiplayer Experience
byDocker, Inc.
 
PDF
How to Improve Your Image Builds Using Advance Docker Build
byDocker, Inc.
 
PDF
Build & Deploy Multi-Container Applications to AWS
byDocker, Inc.
 
PDF
Securing Your Containerized Applications with NGINX
byDocker, Inc.
 
PDF
How To Build and Run Node Apps with Docker and Compose
byDocker, Inc.
 
PDF
Hands-on Helm
byDocker, Inc.
 
PDF
Distributed Deep Learning with Docker at Salesforce
byDocker, Inc.
 
PDF
The First 10M Pulls: Building The Official Curl Image for Docker Hub
byDocker, Inc.
 
PDF
Monitoring in a Microservices World
byDocker, Inc.
 
PDF
COVID-19 in Italy: How Docker is Helping the Biggest Italian IT Company Conti...
byDocker, Inc.
 
PDF
Predicting Space Weather with Docker
byDocker, Inc.
 
PDF
Become a Docker Power User With Microsoft Visual Studio Code
byDocker, Inc.
 
PDF
How to Use Mirroring and Caching to Optimize your Container Registry
byDocker, Inc.
 
PDF
Monolithic to Microservices + Docker = SDLC on Steroids!
byDocker, Inc.
 
PDF
Kubernetes at Datadog Scale
byDocker, Inc.
 
PDF
Labels, Labels, Labels
byDocker, Inc.
 
PDF
Using Docker Hub at Scale to Support Micro Focus' Delivery and Deployment Model
byDocker, Inc.
 
PDF
Build & Deploy Multi-Container Applications to AWS
byDocker, Inc.
 
PDF
From Fortran on the Desktop to Kubernetes in the Cloud: A Windows Migration S...
byDocker, Inc.
 
PDF
Developing with Docker for the Arm Architecture
byDocker, Inc.
 
Containerize Your Game Server for the Best Multiplayer Experience
byDocker, Inc.
 
How to Improve Your Image Builds Using Advance Docker Build
byDocker, Inc.
 
Build & Deploy Multi-Container Applications to AWS
byDocker, Inc.
 
Securing Your Containerized Applications with NGINX
byDocker, Inc.
 
How To Build and Run Node Apps with Docker and Compose
byDocker, Inc.
 
Hands-on Helm
byDocker, Inc.
 
Distributed Deep Learning with Docker at Salesforce
byDocker, Inc.
 
The First 10M Pulls: Building The Official Curl Image for Docker Hub
byDocker, Inc.
 
Monitoring in a Microservices World
byDocker, Inc.
 
COVID-19 in Italy: How Docker is Helping the Biggest Italian IT Company Conti...
byDocker, Inc.
 
Predicting Space Weather with Docker
byDocker, Inc.
 
Become a Docker Power User With Microsoft Visual Studio Code
byDocker, Inc.
 
How to Use Mirroring and Caching to Optimize your Container Registry
byDocker, Inc.
 
Monolithic to Microservices + Docker = SDLC on Steroids!
byDocker, Inc.
 
Kubernetes at Datadog Scale
byDocker, Inc.
 
Labels, Labels, Labels
byDocker, Inc.
 
Using Docker Hub at Scale to Support Micro Focus' Delivery and Deployment Model
byDocker, Inc.
 
Build & Deploy Multi-Container Applications to AWS
byDocker, Inc.
 
From Fortran on the Desktop to Kubernetes in the Cloud: A Windows Migration S...
byDocker, Inc.
 
Developing with Docker for the Arm Architecture
byDocker, Inc.
 

Recently uploaded

PDF
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
PDF
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
PPTX
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
PDF
AI Meets Integration: Delivering AI-Ready Data in Real Time.pdf
byPrecisely
 
PDF
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
PPTX
Coded Agents – with UiPath SDK + LangGraph [Virtual Hands-on Workshop]
byUiPathCommunity
 
PDF
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
PPTX
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
PPTX
communication-skills-with-technology tools
byJaleto Sunkemo
 
PDF
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
PDF
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
PPTX
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
PPT
software-security-intro in information security.ppt
byismaeelsahib032
 
PPTX
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
PDF
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
PDF
The year in review - MarvelClient in 2025
bypanagenda
 
PPTX
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
PPTX
UiPath Autonomous Agents | Building and Orchestrating Agents End-to-End
byUiPathCommunity
 
PDF
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
AI Meets Integration: Delivering AI-Ready Data in Real Time.pdf
byPrecisely
 
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
Coded Agents – with UiPath SDK + LangGraph [Virtual Hands-on Workshop]
byUiPathCommunity
 
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
communication-skills-with-technology tools
byJaleto Sunkemo
 
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
software-security-intro in information security.ppt
byismaeelsahib032
 
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
The year in review - MarvelClient in 2025
bypanagenda
 
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
UiPath Autonomous Agents | Building and Orchestrating Agents End-to-End
byUiPathCommunity
 
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 

Opinionated containers and the future of game servers by Brendan Fosberry

  • 1.
    Opinionated containers andthe future of game servers 1
  • 2.
    2 • BrendanFosberry • Software Engineer • Shopkeep POS • Core Services Team
  • 3.
    3 Overview OpinionatedApplications • Background • Containerizing Applications • Containerizing a Simple Application • Containerizing a Complex Application • The Future
  • 4.
    4 • IPadPOS Software and Hardware • Web based reporting and customization • 24/7 Support Background
  • 5.
    Background 5 •Founded in 2008 • 180 employees • 4 Development teams + Devops • Rails, Objective C, Golang • 11k active registers • 100k transaction per hour at peak • 700k transactions per day
  • 6.
    Background 6 Redesign Microservices • Transaction Service (Riak) • Reporting Service • Authentication Service • API Service • Etc.. Docker Stack • Apps • Docker CI Pipeline • Routing • Monitoring PB over RPC
  • 7.
    Background 7 Containers Dockerfile FROM debian:jessie RUN mkdir -p /opt/go ADD ./core-api /opt/go/core-api VOLUME /var/log/ /opt/go/logs/ EXPOSE 8080 ENTRYPOINT ["/opt/go/core-api"] Procfile web: core-api
  • 8.
    Containerizing Applications 8 Best Practices Based on Dockerfile best practices Applicable for in-house/black box applications Assumes working Dockerfile Mostly common sense
  • 9.
    Containerizing Applications 9 Best Practices 1. File-less configuration • Load configuration from environment • Use Fracker to write environment file • Pass environment file to container • Otherwise use confd • Avoid chef • Disconnects container and application configuration
  • 10.
    Containerizing Applications 10 Best Practices 1. File-less configuration 2. Separate tasks • Container = 1 instance of 1 application task • Separate web heads, crons, job runners • Makes resource allocation simpler
  • 11.
    Containerizing Applications 3.Log to sink 11 Best Practices 1. File-less configuration 2. Separate tasks • Assume container is ephemeral • Log to stdout • Log to mounted volume
  • 12.
    Containerizing Applications 12 Best Practices 1. File-less configuration 2. Separate tasks • Assume container is disposable • Externalize persisted state • External db or mounted volume 3. Log to sink 4. Separate datastores
  • 13.
    Containerizing Applications 1.File-less configuration 13 Best Practices 4. Separate datastores 5. Externalize data extraction • Use application methods if possible • Dump to simple sink • Don’t juggle multiple tasks 2. Separate tasks 3. Log to sink
  • 14.
    Containerizing Applications 1.File-less configuration 14 Best Practices 4. Separate datastores 5. Externalize data extraction 6. Don’t daemonize • Control process via container • Send signals with docker • Control through custom ports 2. Separate tasks 3. Log to sink
  • 15.
    Containerizing Applications 15 Why Game Servers? • Each server is unique • Poor existing automation • Poor open source tooling • Daniel Gibbs • Poor isolation • Why not?
  • 16.
    Containerizing Applications 16 Game Servers Containerization Levels Goals 1. Globally Deployable 2. Uniform Configuration 3. Disposable 1. Container Image 2. Docker 3. Clustered with Fleet
  • 17.
    Simple Application 17 Simple Application Teamspeak Gaming Infrastructure Black box, client-server Clients negotiate state changes Server dispatches voice streams Simple setup - download and run
  • 18.
    Simple Application 18 Best Practices 1. File-less configuration • Requires configuration files • Use confd
  • 19.
    Simple Application 19 Best Practices 1. File-less configuration 2. Separate tasks • Single Task • No background Jobs
  • 20.
    Simple Application 3.Log to sink 20 Best Practices 1. File-less configuration 2. Separate tasks • Configure log sink • Mount volume to host
  • 21.
    21 Best Practices 4. Separate datastores • Mount volume for sqlite DB • Use external DB • Write db config file Simple Application 1. File-less configuration 2. Separate tasks 3. Log to sink
  • 22.
    22 Best Practices 4. Separate datastores 5. Externalize data extraction • Can parse docker logs • Or mount logging volume • Use secondary container to parse token • Use MachineOf Simple Application 1. File-less configuration 2. Separate tasks 3. Log to sink
  • 23.
    23 Best Practices 4. Separate datastores 5. Externalize data extraction 6. Don’t daemonize • Run in foreground Simple Application 1. File-less configuration 2. Separate tasks 3. Log to sink
  • 24.
    24 Results SimpleApplication • No state within container • If host dies logs are lost • Single DB per container • Connect using mapped port • Runs on fleet
  • 25.
    Simple Application 25 Teamspeak Containerization Levels Goals 1. Globally Deployable 2. Uniform Configuration 3. Disposable 1. Container Image 2. Docker 3. Clustered with Fleet
  • 26.
    Complex Application 26 Complex Application Team Fortress 2 Game Server Black box, client-server Clients negotiate state changes Server dispatches voice streams Server dispatches state changes
  • 27.
    27 Installing Tf2 #update_script @NoPromptForPassword 1 @ShutdownOnFailedCommand 1 login anonymous force_install_dir /opt/server/ app_update 4020 validate quit Complex Application #!/bin/bash install_steamcmd.sh steamcmd.sh +runscript ./update_script
  • 28.
    28 Running Tf2 • Write simple server.cfg • Run srcds_run • Open/forward ports ./srcds_run -game tf2 +map “ctf_2fort” +maxplayers 24 -ip 0.0.0.0 -port 27015 Complex Application Great opportunity for extraction
  • 29.
    Complex Application 29 Best Practices 1. File-less configuration • Requires configuration files • Use confd
  • 30.
    Complex Application 30 Best Practices 1. File-less configuration 2. Separate tasks • Single Task • No background Jobs
  • 31.
    Complex Application 3.Log to sink 31 Best Practices 1. File-less configuration 2. Separate tasks • Configure log sink • Mount volume to host
  • 32.
    32 Best Practices 4. Separate datastores • No persisted state • External DB where mods need it Complex Application 1. File-less configuration 2. Separate tasks 3. Log to sink
  • 33.
    33 Best Practices 4. Separate datastores 5. Externalize data extraction • Don’t need any data • Monitoring Complex Application 1. File-less configuration 2. Separate tasks 3. Log to sink
  • 34.
    34 Best Practices 4. Separate datastores 5. Externalize data extraction 6. Don’t daemonize • Run in foreground Complex Application 1. File-less configuration 2. Separate tasks 3. Log to sink
  • 35.
    35 Results ComplexApplication No state within container. If host dies logs are lost. Connect using mapped port. 8Gb is large for an image.
  • 36.
    36 Port Mapping Complex Application Source servers report ip and port. Steam master list references static ports. Favouriting references static port. Direct connection works.
  • 37.
    Complex Application 37 Port Remapping Remap the traffic to the correct port • External remapper (inbound proxy) • Cluster/Host-level dynamic remapper • Container-level dynamic remapper • Static port bindings - requires port allocator We can’t control the return journey
  • 38.
    38 Port Remapping Host 49168 49170 Container 49168 Complex Application Tf2 49168 Client/Master Server HostIP:49168 Container 27015 Proxy 27015 -> HostIP:49170 HostIP:49168 Tf2 becomes dependent upon Proxy
  • 39.
    39 Host 49168 Container 27015 Complex Application Tf2 49168 Client/Master Server HostIP:49168 Port Mapping HostIP:49168 Remapper 27015 -> 49168 Fewer containers, but multipurpose
  • 40.
    Complex Application 40 Tcp/Udp Mapping Source Engine Server binds to both tcp and udp. Can’t separate port bindings. Docker may map to different port numbers. Open PR to allow EXPOSE 12345/tcpudp
  • 41.
    Complex Application 41 Favouriting A favourite is an IP + Port. Invalidated by container changing Host/Port. Remapping containers allow port changes. No simple solution for host changes.
  • 42.
    Complex Application 1.Container Image 2. Docker 3. Clustered with Fleet 42 Tf2 Containerization Levels Goals 1. Globally Deployable 2. Uniform Configuration 3. Disposable
  • 43.
    Complex Application 43 Game Server Ecosystem Persisted state is critical. Many servers are windows only. Some assets/code are proprietary. Limited configuration options. Hackers promote constrictive environment. Obscured docs, varied user base.
  • 44.
    The Future 44 The future of game servers Apply lessons from services to increase compatibility • Game Server Containers are becoming commonplace • Standardize configuration methods • Allow persisted state to be externalized • Dedicated linux • Support clustering
  • 45.
    Summary 45 Summary • Containerizing opinionated apps is easy • Deploying an opinionated container may not be • Container deployment will become increasingly relevant • Container compatibility will become increasingly defining • Game servers have a lot of work to do
  • 46.
    Summary 46 Questions? brendan@shopkeep.com @brendanfosberry bfosberry Fozz
  • 47.

Editor's Notes

  • #3 Talk about background more where you came from
  • #4 how I got into what I do talk about game servers & personal projects Pause between sections
  • #5 customer outcomes focused
  • #7 tight coupling Container crazy mention health checks
  • #8 Reduced docker footprint Prepare for next section (best practices)
  • #9 Starting point of working dockerfile None of this should be surprising
  • #10 Container level, application generic configuration interface Specify over defaults
  • #11 Single purpose containers
  • #14 * Will give example of this later
  • #15 Monitoring through container I made all these mistakes Dont trust anything I say
  • #16 Beautiful snowflakes * contention around filesystem and network resources
  • #17 * Application generic configuration interface
  • #25 Not very opinionated
  • #29 * extraction keeps game server specific docker file trivial
  • #44 Wine
  • #45 First talk about commonplace Being a services engineer….
  • #46 The opinionated nature of some applications acts as a barrier to containerization Hopefully this talk has provided some insight into some mitigation methods
  • #47 Thank Most likely to be found on steam