This document discusses vSphere Integrated Containers, a solution from VMware that allows running containers natively on vSphere alongside traditional virtual machines. It provides an overview of key components like the Virtual Container Host, Photon OS, Harbor registry, and Admiral management portal. These components give developers a portable, lightweight container experience while also providing operations teams the visibility, management, and security capabilities of vSphere for containers in production.
VMware goes container crazy with vSphere integrated containersvmware academy
VMware is announcing foundational infrastructure that will enable customers to deploy cloud-native applications in production with confidence. Customers will be able to jump start their container initiatives on top of their existing VMware vSphere environments or consume new infrastructure designed specifically for cloud-native applications...
http://www.vmwaretraining-chennai.in/
A First Look at vSphere Integrated Containers and Photon PlatformDan Wendlandt
Talk presented at VMworld 2015 offering a sneak peak into two VMware technical previews announced at the conference: vSphere Integrated Containers and Photon Platform.
This was the deck I presented for a meetup organized by Software Circus.
Docker Datacenter (DDC) delivers Containers as a Service (CaaS) for enterprises to build, ship and run any application anywhere. With an integrated technology platform that spans across the application lifecycle with tooling and support for both developers and IT operations, Docker Datacenter delivers a secure software supply chain at enterprise scale. Join this talk to understand how DDC delivers CaaS, and hear examples of customer who have adopted DDC and their journey with it. A live demo will conclude the presentation.
Full video here:
https://www.youtube.com/watch?v=qboZCZfb0mc
VMware goes container crazy with vSphere integrated containersvmware academy
VMware is announcing foundational infrastructure that will enable customers to deploy cloud-native applications in production with confidence. Customers will be able to jump start their container initiatives on top of their existing VMware vSphere environments or consume new infrastructure designed specifically for cloud-native applications...
http://www.vmwaretraining-chennai.in/
A First Look at vSphere Integrated Containers and Photon PlatformDan Wendlandt
Talk presented at VMworld 2015 offering a sneak peak into two VMware technical previews announced at the conference: vSphere Integrated Containers and Photon Platform.
This was the deck I presented for a meetup organized by Software Circus.
Docker Datacenter (DDC) delivers Containers as a Service (CaaS) for enterprises to build, ship and run any application anywhere. With an integrated technology platform that spans across the application lifecycle with tooling and support for both developers and IT operations, Docker Datacenter delivers a secure software supply chain at enterprise scale. Join this talk to understand how DDC delivers CaaS, and hear examples of customer who have adopted DDC and their journey with it. A live demo will conclude the presentation.
Full video here:
https://www.youtube.com/watch?v=qboZCZfb0mc
This talk covered the OpenStack basics that VMware Administrators need to be aware of to be successful in their deployments. We also had the Tesora team join us on stage to discuss the importance of Database-as-a-Service with the Trove project!
Infinit's Next Generation Key-value Store - Julien Quintard and Quentin Hocqu...Docker, Inc.
Key-value store projects have been widely adopted as a way to store metadata, but also as a low-level construct on top of which can be built more advanced storage solutions from file systems, object storage APIs and more. Unfortunately, most key-value store constructs suffer the same limitations when it comes to scalability, performance, and resilience. Infinit's key-value store takes a different approach, relying on a decentralized architecture rather than a master/slave model while offering strong consistency.
This presentation was made as closing session for Container Conference 2018 on 03rd August in Bangalore by Anoop Kumar from Docker.
"In this session we will get familiarized with the technical aspects of the Docker EE 2.0 Platform. It will involve a walkthrough of the swarm as well as the relatively newly introduced Kubernetes integrations, how it enables organizational agility, choice and security and the future roadmap of the product suite. We'll finally do a quick demo of the platform and close with a Q&A section."
Yuvraj Mehta - Group Product Manager, Docker
Steve Richards - Solutions Architect, Docker
Creating a Secure Supply Chain for your applications is vitally important for a compliant and smooth-running application development organization. Every organization needs to understand where their container images come from, who has access to them, understand the security risks to weigh ALL options available before deploying . In this session, we will take a closer look at how Docker Enterprise helps developers, DevOps and DevSecOps teams securely Build and Ship applications through the software pipeline. We’ll dive into security features of the platform’s private registry Image Signing which provides authenticity for image sources and Image Scanning which provides insight into any vulnerabilities. We’ll also look at how this can be automated by policy and seamlessly integrated with your software pipeline to provide a succinct audit trail.
Containers and workload security an overview Krishna-Kumar
Beginner Level Talk - Presented at Bangalore container conf 2018 - Containers and workload security an overview. Hope it get starts your container security journey :-)
Docker Online Meetup #30: Docker Trusted Registry 1.4.1Docker, Inc.
In this Docker Online Meetup, Docker Software Engineer Tony Holdstock-Brown discusses the latest features in Docker Trusted Registry 1.4.1 including:
- Image deletion and garbage collection
- Set up, and manage user accounts, teams, organizations, and repositories from either APIs or through the Trusted Registry user interface
- Search, browse, and discover images created by other users through either APIs or through the Trusted Registry UI
- New APIs for accessing repositories, account management, indexing, searching, and reindexing
- New experimental feature: Docker Trusted Registry now integrates with Docker Content Trust using Notary
Developing Enterprise Applications for the Cloud,from Monolith to MicroservicesDavid Currie
Presented at IBM InterConnect 2105. Is your next enterprise application ready for the cloud? Do you know how to build the kind of low-latency, highly available, highly scalable, omni-channel, micro-service modern-day application that customers expect? This introductory presentation will cover what it takes to build such an application using the multiple language runtimes and composing services offered on IBM Bluemix cloud.
WebSphere Application Server Liberty Profile and DockerDavid Currie
Latest incarnation of my Liberty and Docker presentation including coverage of the Java EE7 images and the auto-scaling beta. As presented to the UK WebSphere User Group on 1 October 2015.
WebSphere Application Server Liberty Profile and DockerDavid Currie
Presentation from IBM InterConnect 2015 covering a brief introduction to Docker, the relationship between IBM and Docker, and then using WebSphere Application Server Liberty Profile under Docker.
Introduction to Docker | Docker and Kubernetes TrainingShailendra Chauhan
Learn to build modern infrastructure using docker and Kubernetes containers. Develop and deploy your ASP.NET Core application using Docker. Leverage to learn container technology to build your ASP.NET Core application.
This talk covered the OpenStack basics that VMware Administrators need to be aware of to be successful in their deployments. We also had the Tesora team join us on stage to discuss the importance of Database-as-a-Service with the Trove project!
Infinit's Next Generation Key-value Store - Julien Quintard and Quentin Hocqu...Docker, Inc.
Key-value store projects have been widely adopted as a way to store metadata, but also as a low-level construct on top of which can be built more advanced storage solutions from file systems, object storage APIs and more. Unfortunately, most key-value store constructs suffer the same limitations when it comes to scalability, performance, and resilience. Infinit's key-value store takes a different approach, relying on a decentralized architecture rather than a master/slave model while offering strong consistency.
This presentation was made as closing session for Container Conference 2018 on 03rd August in Bangalore by Anoop Kumar from Docker.
"In this session we will get familiarized with the technical aspects of the Docker EE 2.0 Platform. It will involve a walkthrough of the swarm as well as the relatively newly introduced Kubernetes integrations, how it enables organizational agility, choice and security and the future roadmap of the product suite. We'll finally do a quick demo of the platform and close with a Q&A section."
Yuvraj Mehta - Group Product Manager, Docker
Steve Richards - Solutions Architect, Docker
Creating a Secure Supply Chain for your applications is vitally important for a compliant and smooth-running application development organization. Every organization needs to understand where their container images come from, who has access to them, understand the security risks to weigh ALL options available before deploying . In this session, we will take a closer look at how Docker Enterprise helps developers, DevOps and DevSecOps teams securely Build and Ship applications through the software pipeline. We’ll dive into security features of the platform’s private registry Image Signing which provides authenticity for image sources and Image Scanning which provides insight into any vulnerabilities. We’ll also look at how this can be automated by policy and seamlessly integrated with your software pipeline to provide a succinct audit trail.
Containers and workload security an overview Krishna-Kumar
Beginner Level Talk - Presented at Bangalore container conf 2018 - Containers and workload security an overview. Hope it get starts your container security journey :-)
Docker Online Meetup #30: Docker Trusted Registry 1.4.1Docker, Inc.
In this Docker Online Meetup, Docker Software Engineer Tony Holdstock-Brown discusses the latest features in Docker Trusted Registry 1.4.1 including:
- Image deletion and garbage collection
- Set up, and manage user accounts, teams, organizations, and repositories from either APIs or through the Trusted Registry user interface
- Search, browse, and discover images created by other users through either APIs or through the Trusted Registry UI
- New APIs for accessing repositories, account management, indexing, searching, and reindexing
- New experimental feature: Docker Trusted Registry now integrates with Docker Content Trust using Notary
Developing Enterprise Applications for the Cloud,from Monolith to MicroservicesDavid Currie
Presented at IBM InterConnect 2105. Is your next enterprise application ready for the cloud? Do you know how to build the kind of low-latency, highly available, highly scalable, omni-channel, micro-service modern-day application that customers expect? This introductory presentation will cover what it takes to build such an application using the multiple language runtimes and composing services offered on IBM Bluemix cloud.
WebSphere Application Server Liberty Profile and DockerDavid Currie
Latest incarnation of my Liberty and Docker presentation including coverage of the Java EE7 images and the auto-scaling beta. As presented to the UK WebSphere User Group on 1 October 2015.
WebSphere Application Server Liberty Profile and DockerDavid Currie
Presentation from IBM InterConnect 2015 covering a brief introduction to Docker, the relationship between IBM and Docker, and then using WebSphere Application Server Liberty Profile under Docker.
Introduction to Docker | Docker and Kubernetes TrainingShailendra Chauhan
Learn to build modern infrastructure using docker and Kubernetes containers. Develop and deploy your ASP.NET Core application using Docker. Leverage to learn container technology to build your ASP.NET Core application.
Deploying Windows Containers on Windows Server 2016Ben Hall
Introduction into the new Windows Containers and Windows Hyper-V Containers coming in Windows Server 2016.
Presented at WinOps Meetup #5 on Wednesday 20th April 2016. http://www.meetup.com/WinOps/events/229065341/
VMworld 2015: Containers without Compromise - Persistent Storage for Docker C...VMworld
Containers are showing rising interest in the enterprise world for cloud-native applications, but there remain significant roadblocks to adoption. For example, containers have had significant issues in using existing storage for interacting with persistent, stateful applications and data. VMware is developing new features that leverage vSphere to help provide persistent storage and data lifecycle management for Docker containers. In this technical session, we will go over use cases for container-based storage, describe how VMware is providing solutions for storage pain points, and showcase a demo so you can see some solutions in action. Come see how VMware provides Containers without Compromise.
Building Distributed Systems without Docker, Using Docker Plumbing Projects -...Patrick Chanezon
Docker provides an integrated and opinionated toolset to build, ship and run distributed applications. Over the past year, the Docker codebase has been refactored extensively to extract infrastructure plumbing components that can be used independently, following the UNIX philosophy of small tools doing one thing well: runC, containerd, swarmkit, hyperkit, vpnkit, datakit and the newly introduced InfraKit.
This talk will give an overview of these tools and how you can use them to build your own distributed systems without Docker.
Patrick Chanezon & David Chung, Docker & Phil Estes, IBM
Docker is a tool designed to make it easier to create, deploy, and run applications
by using containers. Containers allow a developer to package up
an application with all of the parts it needs, such as libraries and other dependencies,
and ship it all out as one package. By doing so, thanks to the
container, the developer can rest assured that the application will run on
any other Linux machine regardless of any customized settings that machine
might have that could differ from the machine used for writing and testing
the code.
In a way, Docker is a bit like a virtual machine. But unlike a virtual
machine, rather than creating a whole virtual operating system, Docker allows
applications to use the same Linux kernel as the system that they’re
running on and only requires applications be shipped with things not already
running on the host computer. This gives a significant performance boost
and reduces the size of the application.
Cloud foundry Docker Openstack - Leading Open Source TriumvirateAnimesh Singh
OpenStack, Docker, and Cloud Foundry are the three most popular open source projects according to a recent cloud software survey. Docker has taken the cloud world by storm as a revolutionary way to not only run isolated application containers, but also to package them. But how does Docker fit into the paradigm of IaaS and PaaS? More specifically, how does it integrate with OpenStack and Cloud Foundry, the world's most popular infrastructure and platform service implementations? OpenStack, Docker, and Cloud Foundry are the three most popular open source projects according to a recent cloud software survey. Docker has taken the cloud world by storm as a revolutionary way to not only run isolated application containers, but also to package them. But how does Docker fit into the paradigm of IaaS and PaaS? More specifically, how does it integrate with OpenStack and Cloud Foundry, the world's most popular infrastructure and platform service implementations?
These charts from our OpenStack Summit talk Vancouver talk how the three leading open source cloud technologies are evolving to work together to support next generation workloads!
Container and Cloud Native Application: What is VMware doing in this space? -...gguglie
A quick view on VMware products and technologies in the Container and Cloud Native Application space. This preso was done at VMUGIT Meeting in Cremona on june 2017.
Evénement Docker Paris: Anticipez les nouveaux business model et réduisez vos...Docker, Inc.
Au programme : la mise en place de plateformes agiles pour s’adapter aux nouveaux business models, l’optimisation des coûts IT dans le cadre de vos déploiements applicatifs, réussir la mise en oeuvre de Kubernetes, garantir la sécurité de vos applications tout au long de leur cycle de vie et bien plus encore.
Docker Datacenter Overview and Production Setup SlidesDocker, Inc.
An overview on Docker Data Center and Universal Control Plane. We will cover how to install for production and integrate Docker Trusted Registry.
Led by DDC + UCP Champ:
Vivek Saraswat
Experience Level: Attendees need no prior experience with Docker, but should be familiar with basic linux command-line.
Develop and deploy Kubernetes applications with Docker - IBM Index 2018Patrick Chanezon
Docker Desktop and Enterprise Edition now both include Kubernetes as an optional orchestration component. This talk will explain how to use Docker Desktop (Mac or Windows) to develop and debug a cloud native application, then how Docker Enterprise Edition helps you deploy it to Kubernetes in production.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Generating a custom Ruby SDK for your web service or Rails API using Smithyg2nightmarescribd
Have you ever wanted a Ruby client API to communicate with your web service? Smithy is a protocol-agnostic language for defining services and SDKs. Smithy Ruby is an implementation of Smithy that generates a Ruby SDK using a Smithy model. In this talk, we will explore Smithy and Smithy Ruby to learn how to generate custom feature-rich SDKs that can communicate with any web service, such as a Rails JSON API.
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
3. Hardware
OS Kernel
OS File system
Userspace
Container
Appprocess
Appprocess
Appprocess
Appprocess
Appprocess
Container
Appprocess
Appprocess
Introduction To Linux Containers
OS-level Isolation
• Isolation at individual kernel subsystem level
(e.g. filesystem, process table, etc)
• User-level process (LXC, libcontainer)
orchestrates these subsystems to create a
container
Existed for Many Years
Solaris Zones, FreeBSD Jails, OpenVZ
Why?
• Process isolation
• Reproducible environment
• Enables management at scale
3CONFIDENTIAL
4. Containers Help You Iterate Quickly
DEV TEST PROD
Drive Business Agility
4CONFIDENTIAL
5. But I’m a vSphere Admin, Why
Do I Care about Containers?
6. Because There Are Still Many Challenges with Containers
6
CONTAINERS IN
DEVELOPMENT
CONTAINERS IN
PRODUCTION
THE
“LEARNING
CLIFF”
Source: https://twitter.com/mfdii/status/697532387240996864
High Availability
Security
Disaster Recovery
Monitoring
Diagnosis
Repeatable Deployments
Portability
Accounting
Docker
Docker
@cloudnativeapps #vmwcna
CONFIDENTIAL
10. Full Visibility Proven Security Mature Ecosystem
Developer
Portable
Fast
Light
Security
Visibility
Management
IT
vSphere
Linux
Kernel
Linux
Kernel
Linux
Kernel
CCC
VM
Virtual Container Host
10CONFIDENTIAL
11. Photon OS - Secure Container Runtime
Container Optimized Linux OS
Docker, Rocket and Garden (Pivotal) support
Minimal footprint to run containers
vSphere and Photon Platform Integration
Boots in 6 sec.
Hypervisor-optimized container runtime
Updates from VMware
Enterprise support
Security and update patches from VMware
Open Source
GPL v2 License
1.0 released June 2016
CONFIDENTIAL 11
12. Virtual Container Host
Endpoint VM
vSphere Integrated Containers Engine – In Detail
Linux
Kernel
Container VM
Traditional App
Guest OS
Traditional App
Guest OS
Container VMContainer VM
Traditional App
Guest OS
Container VM
Virtual Container Host
Endpoint VM Linux
Kernel
Container VM
Container VMContainer VM
Container VM
vSphere Administrator Creates a Virtual Container Host
Developer connects and issues a Docker run command
Developer connects and issues a Docker run command
12CONFIDENTIAL
18. What Developers Want
Light
What IT Ops Needs
Data
Persistence
Rich
SLAsPortable Fast
Consistent
Management
VM, vSphere
Distributed
Switch, NSX
vVols,
VSAN
vSphere
DRS, I/O
Controls
vCenter
Server
• Run Standard Containers Formats and integrated with Developer Tools
• Common APIs for Orchestration
• Container in Seconds
• Isolation and Multi-Tenancy
• Network Provisioning and Configuration
• Choice of Storage and Guarantee of Services
• Align SLAs per Workload
• Manage with Existing Tool Sets
Open container
formats +
orchestration APIs
Instant
Clone, fast
boot
Photon
OS
VMware Validation and Differentiation – Giving the Best of Both World (Developers and IT Ops)
Network
& Security
18
@cloudnativeapps #vmwcna
CONFIDENTIAL
19. VCENTER SERVER
PORTABLE +
FAST + LIGHT
NSX
vSAN
VCH 1 VCH 2
CONSISTENT MGMT
+ RICH SLAS
VM
VM
VM
VM
VM
VM
VM
VM
C-VM C-VM C-VM
C-VM C-VM C-VM
C-VM C-VM C-VM
C-VM Container VMLinux KernelVM Traditional VM
NETWORK + SECURITY
DATA PERSISTENCE
C-VM C-VM C-VM
C-VM C-VM C-VM
C-VM C-VM C-VM
CONTAINER ENDPOINT CONTAINER ENDPOINT
vSphere Integrated Containers Engine
19CONFIDENTIAL
20. VCENTER SERVER
PORTABLE +
FAST + LIGHT
NSX
vSAN
VCH 1 VCH 2
CONSISTENT MGMT
+ RICH SLAS
VM
VM
VM
VM
VM
VM
VM
VM
REGISTRY
C-VM C-VM C-VM
C-VM C-VM C-VM
C-VM C-VM C-VM
C-VM Container VMLinux KernelVM Traditional VM
NETWORK + SECURITY
DATA PERSISTENCE
C-VM C-VM C-VM
C-VM C-VM C-VM
C-VM C-VM C-VM
CONTAINER ENDPOINT CONTAINER ENDPOINT
vSphere Integrated Containers – Enterprise Registry
20CONFIDENTIAL
21. Introduction of Harbor : Enterprise-Class Registry
An open source enterprise class private registry.
Part of VIC, and it also can be used independently.
Why does one need a private registry?
• Efficiency
– LAN vs WAN
• Security
– Intellectual property stays in organization
– Access Control
21CONFIDENTIAL
22. Harbor Key Features
• User management & access control
– RBAC: admin, developer, guest
– AD/LDAP integration
• Policy based image replication
• Web UI
• Audit and logs
• Restful API for integration
• HA with vSAN
• Lightweight and easy deployment
22CONFIDENTIAL
23. Explaining Harbor Architecture
Basic Registry
(Docker Distribution)
Docker
Client
Reverse
Proxy
(Nginx)
API
Harbor
Browser
Auth
UI
DB
AD /
LDAP
Admin
Server
Log Collector
Replication
Service
Remote
Harbor
23CONFIDENTIAL
24. Role Based Access Control
Project
Members Images
Guest:
Developer:
Admin:
${Project}/ubuntu:14.04
${Project}/nginx:1.8, 1.9
${Project}/golang:1.6.2
${Project}/redis:3.0
…...
dockerpull ...
dockerpull/push ...
24CONFIDENTIAL
31. VCENTER SERVER
PORTABLE +
FAST + LIGHT
NSX
vSAN
VCH 1 VCH 2
CONSISTENT MGMT
+ RICH SLAS
VM
VM
VM
VM
VM
VM
VM
VM
REGISTRY
C-VM C-VM C-VM
C-VM C-VM C-VM
C-VM C-VM C-VM
C-VM Container VMLinux KernelVM Traditional VM
NETWORK + SECURITY
DATA PERSISTENCE
C-VM C-VM C-VM
C-VM C-VM C-VM
C-VM C-VM C-VM
CONTAINER ENDPOINT CONTAINER ENDPOINT
CONTAINER MANAGEMENT PORTAL
vSphere Integrated Containers – Container Management Portal
31CONFIDENTIAL
32. Admiral: Container Management Portal
• An open source container management portal
• Part of VIC product, and it also can be used independently with other solutions
• Container management available via both API and UI
• Integration with vRealize platform is also available – accepting beta nominations!
32CONFIDENTIAL
33. Provisioning of Container Hosts
33
• Mapping to deployment
policies
• Usage of pre-defined resource
pools
• Security credentials storage
• Custom properties for affinity
rules or any extensibility use
cases
• VCH can be added as well
CONFIDENTIAL
34. Resource Pools and Policies
34
• Resource pools between
different teams
• Deployment policies for the
consumption of resource pools
• Affinity and anti-affinity policies
for deployment
CONFIDENTIAL
35. Container Provisioning from Templates
35
• Different registries can be used
with Project Admiral
• Docker compose import /
export support is available
• Containers can be provisioned
from images or templates
• vSphere Integrated Containers
(VIC) provisioning also
supported
CONFIDENTIAL
36. Auto Discovery of Containers
36
• Visibility of ports and last
commands
• Mapping to specific container
hosts
• Both container and application
views available
CONFIDENTIAL
37. Container Details and Lifecycle Actions
37
• Visibility into resources – CPU,
memory, network
• Information about IP address,
image used
• Executed commands on
containers with log details
CONFIDENTIAL
38. vRealize Integration with Project Admiral
38
• Model application using
containers as a first-class
blueprint object
• Import from Docker compose
as a starting point
• Mix containers and VMs in the
same blueprint
• Configure networking and
security options
• Configure persistent storage
• Specify dynamic placement
policies
CONFIDENTIAL
40. The Best Way To Run Containers On vSphere
Run Containers Natively Alongside Existing Workloads
Provision containers natively on vSphere with fine grain controls while giving developers the
portability, speed and agility they want
Combine Portability with Security, Visibility and Management
Leverage the core capabilities of vSphere to run containers in production
Leverage Your Existing Infrastructure, Scale Easily.
Avoid costly and time consuming re-architecture of your infrastructure that results in silos. Scale
application deployments instantly.
vSphere Integrated Containers
CONFIDENTIAL 40
41. Docker compatible interface
Container management portal
Enterprise-class Container registry
Familiarity of vSphere
No new tooling or technologies
Full enterprise-grade power of
the Software-Defined Data Center
vSphere Integrated Containers – Enabling the Best of
Both Worlds
41CONFIDENTIAL
42. Availability
Available as Open Source Software
http://github.com/vmware/vic-product
vSphere Integrated Container as VMware Cloud Native
Solutions
https://www.vmware.com/solutions/cloudnative.html
42CONFIDENTIAL