SlideShare a Scribd company logo

OpenRheinRuhr 2018 - Ops hates containers! Why?

Martin Alfke
Martin Alfke

“Docker, Docker, Docker, Docker,…” developers really love Docker. Usually one sees the no longer need for configuration management, the easy way to spin up a platform on a laptop, the low resource footprint. But how do you deploy laptops in data centers? This talk will give you an insight how we (more Ops then Dev) started to learn (and love) containers, the issues we saw when running them in larger scale and how Ops people should start dealing with Container technologies.

1 of 32
Download to read offline
Ops hates containers. Why? Martin Alfke - example42 GmbH
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH !2 Developers say: • Ops are responsible for • base container image • running container • staging containers • container security Customer meeting with Dev, Sec and Ops
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Customer meeting with Dev, Sec and Ops !3 Security / Developer dialogue: • Security: • “Dev must ensure security” • “Dev must name Kernel capabilities and CGroup settings” • Developers: • “what is CGroup settings?” • Security: • “We probably should meet when we all know the basics.”
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH DOCKER DOCKER DOCKER DOCKER DOCKER DOCKER !4 Image: wikimedia.org
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Container Myths !5 • No need for configuration management - anywhere • Easier to build, deploy and run • Easier to test and verify • Easier to fix issues Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Container Myths - Part 2 !6 • No need to check status and health? • No need to identify security? • No need to login, no need for logs? • No need for dedicated hardware, runs on cloud? Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Container de-mystified !7 • It is just a change-root, delivered as a ‘package’ • Build steps are layers like VCS commits • Containers need infrastructure • Containers are managed like binaries Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Container Runtime !8 • People start with docker because it is easy • docker pull / docker run • like curl -k | sudo bash Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !9 Simple can be harder than complex: You have to work hard to get your thinking clean to make it simple. But it's worth it in the end because once you get there, you can move mountains. - Steve Jobs [BusinessWeek, May 25, 1998]
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !10 • Mainframe • PC • VM • Container Image: example42 GmbH
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !11 • Uptime decreasing • Maintenance increasing Image: example42 GmbH
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !12 • Staff does not scale with platform Image: example42 GmbH
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !13 • 100% Automation ! Image: example42 GmbH
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !14 • 80/20 - Pattern: Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !15 • 80/20 - Pattern: • 80% time spending on 20% not automated Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Containers !16 Image: wikimedia.org
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Understanding containers !17 • Short living instances • 12factor (http://12factor.net) • Persistant vs volatile data • Single node view Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Troubleshoot containers !18 • registry and container build process • docker down • docker in docker Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Using containers !19 • CI/CD Pipelines • Build Processes • Dashboards • Puppet Infrastructure(!) (https:// github.com/puppetlabs/ pupperware/) Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Container Management !20 Image: wikimedia.org
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Understanding container management !21 • Multi node container runtime • Orchestration • Network (Egress / Ingress / Proxy) • Maintenance Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Troubleshoot container management !22 • Kill a node / container • Why running an CM API service as container might be a bad idea? • Misconfiguration • Upgrades Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Managing container orchestration !23 Installation and configuration of an application stack. • Puppet • Ansible • Chef • Saltstack Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Commercial container management !24 • Self hosted vs Managed • everybody does K8s? Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Other container management !25 • Mesos/Aurora/Marathon • Titus (Netflix) • Docker Swarm • Nomad/Terraform • CoreOS / rkt Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Was there something in the past? !26 Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Containers and CfgMgmt !27 • Where do you run your databases? • Can you move everything to containers? • What about legacy applications? Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Containers and Monitoring !28 • Dynamic Resources need dynamic monitoring solution • Global platform and service health • Some monitoring tools for containers: sysdig, cAdvisor, Puppet Discovery, Prometheus Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Containers and Hardware !29 • Serverless does not mean no hardware • Opsless does not mean no Ops • Check with finance (CAPEX vs. OPEX) Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Conclusion !30 Image: tatlin
Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Conclusion !31 • Containers adoption increases. • Ops people: start learning, stop play and complaining. • Security first - even on PoC • Automate everything • Choose your container tools and environments. Image: tatlin
Ops hate not having full control of their systems. Not containers. Martin Alfke - example42 GmbH

Recommended

PuppetConf 2016 Moving from Exec to Types and Provides
PuppetConf 2016 Moving from Exec to Types and ProvidesPuppetConf 2016 Moving from Exec to Types and Provides
PuppetConf 2016 Moving from Exec to Types and Provides
Martin Alfke
 
DevOps - How to get technical buy in
DevOps - How to get technical buy inDevOps - How to get technical buy in
DevOps - How to get technical buy in
Martin Alfke
 
ADDO 2019 DevOps in a containerized world
ADDO 2019 DevOps in a containerized worldADDO 2019 DevOps in a containerized world
ADDO 2019 DevOps in a containerized world
Martin Alfke
 
Puppet camp london-modulerewritingsmartway
Puppet camp london-modulerewritingsmartwayPuppet camp london-modulerewritingsmartway
Puppet camp london-modulerewritingsmartway
Martin Alfke
 
Puppet camp2021 testing modules and controlrepo
Puppet camp2021 testing modules and controlrepoPuppet camp2021 testing modules and controlrepo
Puppet camp2021 testing modules and controlrepo
Puppet
 
Modules of the twenties
Modules of the twentiesModules of the twenties
Modules of the twenties
Puppet
 
Troubleshooting Puppet
Troubleshooting PuppetTroubleshooting Puppet
Troubleshooting Puppet
Thomas Howard Uphill
 
Puppet Camp Dallas 2014: How Puppet Ops Rolls
Puppet Camp Dallas 2014: How Puppet Ops RollsPuppet Camp Dallas 2014: How Puppet Ops Rolls
Puppet Camp Dallas 2014: How Puppet Ops Rolls
Puppet
 

Recommended

PuppetConf 2016 Moving from Exec to Types and Provides
PuppetConf 2016 Moving from Exec to Types and ProvidesPuppetConf 2016 Moving from Exec to Types and Provides
PuppetConf 2016 Moving from Exec to Types and Provides
Martin Alfke
 
DevOps - How to get technical buy in
DevOps - How to get technical buy inDevOps - How to get technical buy in
DevOps - How to get technical buy in
Martin Alfke
 
ADDO 2019 DevOps in a containerized world
ADDO 2019 DevOps in a containerized worldADDO 2019 DevOps in a containerized world
ADDO 2019 DevOps in a containerized world
Martin Alfke
 
Puppet camp london-modulerewritingsmartway
Puppet camp london-modulerewritingsmartwayPuppet camp london-modulerewritingsmartway
Puppet camp london-modulerewritingsmartway
Martin Alfke
 
Puppet camp2021 testing modules and controlrepo
Puppet camp2021 testing modules and controlrepoPuppet camp2021 testing modules and controlrepo
Puppet camp2021 testing modules and controlrepo
Puppet
 
Modules of the twenties
Modules of the twentiesModules of the twenties
Modules of the twenties
Puppet
 
Troubleshooting Puppet
Troubleshooting PuppetTroubleshooting Puppet
Troubleshooting Puppet
Thomas Howard Uphill
 
Puppet Camp Dallas 2014: How Puppet Ops Rolls
Puppet Camp Dallas 2014: How Puppet Ops RollsPuppet Camp Dallas 2014: How Puppet Ops Rolls
Puppet Camp Dallas 2014: How Puppet Ops Rolls
Puppet
 
Configuring Highly Scalable Compile Masters, Vasco Cardoso, AWS
Configuring Highly Scalable Compile Masters, Vasco Cardoso, AWSConfiguring Highly Scalable Compile Masters, Vasco Cardoso, AWS
Configuring Highly Scalable Compile Masters, Vasco Cardoso, AWS
Puppet
 
Introduction to Griffon
Introduction to GriffonIntroduction to Griffon
Introduction to Griffon
James Williams
 
Test Driven Development with Puppet
Test Driven Development with Puppet Test Driven Development with Puppet
Test Driven Development with Puppet
Puppet
 
Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...
Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...
Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...
mfrancis
 
What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...
What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...
What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...
Simplilearn
 
Python in the land of serverless
Python in the land of serverlessPython in the land of serverless
Python in the land of serverless
David Przybilla
 
Proxy Deep Dive Voxxed Belgrad 2015
Proxy Deep Dive Voxxed Belgrad 2015Proxy Deep Dive Voxxed Belgrad 2015
Proxy Deep Dive Voxxed Belgrad 2015
Sven Ruppert
 
Red5 Open Source Flash Server
Red5 Open Source Flash ServerRed5 Open Source Flash Server
Red5 Open Source Flash Server
Sunil Swain
 
From an idea to production: building a recommender for BBC Sounds
From an idea to production: building a recommender for BBC SoundsFrom an idea to production: building a recommender for BBC Sounds
From an idea to production: building a recommender for BBC Sounds
Tatiana Al-Chueyr
 
Testing of javacript
Testing of javacriptTesting of javacript
Testing of javacriptLei Kang
 
Python harness fundamental
Python harness fundamentalPython harness fundamental
Python harness fundamentalRobin0590
 
Terraform - The Road to Self-Service
Terraform - The Road to Self-ServiceTerraform - The Road to Self-Service
Terraform - The Road to Self-Service
Ryan Boyce
 
KenRimple_ETE2015_ES6LikeNow
KenRimple_ETE2015_ES6LikeNowKenRimple_ETE2015_ES6LikeNow
KenRimple_ETE2015_ES6LikeNowkrimple
 
Serverless Networking - How We Provide Cloud-Native Connectivity for IoT Devices
Serverless Networking - How We Provide Cloud-Native Connectivity for IoT DevicesServerless Networking - How We Provide Cloud-Native Connectivity for IoT Devices
Serverless Networking - How We Provide Cloud-Native Connectivity for IoT Devices
Steffen Gebert
 
Puppet devops wdec
Puppet devops wdecPuppet devops wdec
Puppet devops wdec
Wojciech Dec
 
Helm intro
Helm introHelm intro
Helm intro
Haggai Philip Zagury
 
Optimizing Spring Boot apps for Docker
Optimizing Spring Boot apps for DockerOptimizing Spring Boot apps for Docker
Optimizing Spring Boot apps for Docker
Graham Charters
 
PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...
PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...
PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...
Chris Fregly
 
Getting started with Office365/SharePoint Patterns and Practices
Getting started with Office365/SharePoint Patterns and PracticesGetting started with Office365/SharePoint Patterns and Practices
Getting started with Office365/SharePoint Patterns and Practices
spsnyc
 
Agile Development with OSGi
Agile Development with OSGiAgile Development with OSGi
Agile Development with OSGi
Matt Stine
 
OSDC 2018 | Ops hates containers. Why? by Martin Alfke
OSDC 2018 | Ops hates containers. Why? by Martin AlfkeOSDC 2018 | Ops hates containers. Why? by Martin Alfke
OSDC 2018 | Ops hates containers. Why? by Martin Alfke
NETWAYS
 
OSDC 2019 | DevOps in a containerized world by Martin Alfke
OSDC 2019 | DevOps in a containerized world by Martin AlfkeOSDC 2019 | DevOps in a containerized world by Martin Alfke
OSDC 2019 | DevOps in a containerized world by Martin Alfke
NETWAYS
 

More Related Content

What's hot

Configuring Highly Scalable Compile Masters, Vasco Cardoso, AWS
Configuring Highly Scalable Compile Masters, Vasco Cardoso, AWSConfiguring Highly Scalable Compile Masters, Vasco Cardoso, AWS
Configuring Highly Scalable Compile Masters, Vasco Cardoso, AWS
Puppet
 
Introduction to Griffon
Introduction to GriffonIntroduction to Griffon
Introduction to Griffon
James Williams
 
Test Driven Development with Puppet
Test Driven Development with Puppet Test Driven Development with Puppet
Test Driven Development with Puppet
Puppet
 
Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...
Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...
Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...
mfrancis
 
What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...
What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...
What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...
Simplilearn
 
Python in the land of serverless
Python in the land of serverlessPython in the land of serverless
Python in the land of serverless
David Przybilla
 
Proxy Deep Dive Voxxed Belgrad 2015
Proxy Deep Dive Voxxed Belgrad 2015Proxy Deep Dive Voxxed Belgrad 2015
Proxy Deep Dive Voxxed Belgrad 2015
Sven Ruppert
 
Red5 Open Source Flash Server
Red5 Open Source Flash ServerRed5 Open Source Flash Server
Red5 Open Source Flash Server
Sunil Swain
 
From an idea to production: building a recommender for BBC Sounds
From an idea to production: building a recommender for BBC SoundsFrom an idea to production: building a recommender for BBC Sounds
From an idea to production: building a recommender for BBC Sounds
Tatiana Al-Chueyr
 
Testing of javacript
Testing of javacriptTesting of javacript
Testing of javacriptLei Kang
 
Python harness fundamental
Python harness fundamentalPython harness fundamental
Python harness fundamentalRobin0590
 
Terraform - The Road to Self-Service
Terraform - The Road to Self-ServiceTerraform - The Road to Self-Service
Terraform - The Road to Self-Service
Ryan Boyce
 
KenRimple_ETE2015_ES6LikeNow
KenRimple_ETE2015_ES6LikeNowKenRimple_ETE2015_ES6LikeNow
KenRimple_ETE2015_ES6LikeNowkrimple
 
Serverless Networking - How We Provide Cloud-Native Connectivity for IoT Devices
Serverless Networking - How We Provide Cloud-Native Connectivity for IoT DevicesServerless Networking - How We Provide Cloud-Native Connectivity for IoT Devices
Serverless Networking - How We Provide Cloud-Native Connectivity for IoT Devices
Steffen Gebert
 
Puppet devops wdec
Puppet devops wdecPuppet devops wdec
Puppet devops wdec
Wojciech Dec
 
Helm intro
Helm introHelm intro
Helm intro
Haggai Philip Zagury
 
Optimizing Spring Boot apps for Docker
Optimizing Spring Boot apps for DockerOptimizing Spring Boot apps for Docker
Optimizing Spring Boot apps for Docker
Graham Charters
 
PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...
PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...
PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...
Chris Fregly
 
Getting started with Office365/SharePoint Patterns and Practices
Getting started with Office365/SharePoint Patterns and PracticesGetting started with Office365/SharePoint Patterns and Practices
Getting started with Office365/SharePoint Patterns and Practices
spsnyc
 
Agile Development with OSGi
Agile Development with OSGiAgile Development with OSGi
Agile Development with OSGi
Matt Stine
 

What's hot (20)

Configuring Highly Scalable Compile Masters, Vasco Cardoso, AWS
Configuring Highly Scalable Compile Masters, Vasco Cardoso, AWSConfiguring Highly Scalable Compile Masters, Vasco Cardoso, AWS
Configuring Highly Scalable Compile Masters, Vasco Cardoso, AWS
 
Introduction to Griffon
Introduction to GriffonIntroduction to Griffon
Introduction to Griffon
 
Test Driven Development with Puppet
Test Driven Development with Puppet Test Driven Development with Puppet
Test Driven Development with Puppet
 
Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...
Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...
Build bundles in the cloud - How Cloudyle PaaS+ helps creating OSGi applicati...
 
What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...
What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...
What is Puppet? | How Puppet Works? | Puppet Tutorial For Beginners | DevOps ...
 
Python in the land of serverless
Python in the land of serverlessPython in the land of serverless
Python in the land of serverless
 
Proxy Deep Dive Voxxed Belgrad 2015
Proxy Deep Dive Voxxed Belgrad 2015Proxy Deep Dive Voxxed Belgrad 2015
Proxy Deep Dive Voxxed Belgrad 2015
 
Red5 Open Source Flash Server
Red5 Open Source Flash ServerRed5 Open Source Flash Server
Red5 Open Source Flash Server
 
From an idea to production: building a recommender for BBC Sounds
From an idea to production: building a recommender for BBC SoundsFrom an idea to production: building a recommender for BBC Sounds
From an idea to production: building a recommender for BBC Sounds
 
Testing of javacript
Testing of javacriptTesting of javacript
Testing of javacript
 
Python harness fundamental
Python harness fundamentalPython harness fundamental
Python harness fundamental
 
Terraform - The Road to Self-Service
Terraform - The Road to Self-ServiceTerraform - The Road to Self-Service
Terraform - The Road to Self-Service
 
KenRimple_ETE2015_ES6LikeNow
KenRimple_ETE2015_ES6LikeNowKenRimple_ETE2015_ES6LikeNow
KenRimple_ETE2015_ES6LikeNow
 
Serverless Networking - How We Provide Cloud-Native Connectivity for IoT Devices
Serverless Networking - How We Provide Cloud-Native Connectivity for IoT DevicesServerless Networking - How We Provide Cloud-Native Connectivity for IoT Devices
Serverless Networking - How We Provide Cloud-Native Connectivity for IoT Devices
 
Puppet devops wdec
Puppet devops wdecPuppet devops wdec
Puppet devops wdec
 
Helm intro
Helm introHelm intro
Helm intro
 
Optimizing Spring Boot apps for Docker
Optimizing Spring Boot apps for DockerOptimizing Spring Boot apps for Docker
Optimizing Spring Boot apps for Docker
 
PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...
PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...
PipelineAI Continuous Machine Learning and AI - Rework Deep Learning Summit -...
 
Getting started with Office365/SharePoint Patterns and Practices
Getting started with Office365/SharePoint Patterns and PracticesGetting started with Office365/SharePoint Patterns and Practices
Getting started with Office365/SharePoint Patterns and Practices
 
Agile Development with OSGi
Agile Development with OSGiAgile Development with OSGi
Agile Development with OSGi
 

Similar to OpenRheinRuhr 2018 - Ops hates containers! Why?

OSDC 2018 | Ops hates containers. Why? by Martin Alfke
OSDC 2018 | Ops hates containers. Why? by Martin AlfkeOSDC 2018 | Ops hates containers. Why? by Martin Alfke
OSDC 2018 | Ops hates containers. Why? by Martin Alfke
NETWAYS
 
OSDC 2019 | DevOps in a containerized world by Martin Alfke
OSDC 2019 | DevOps in a containerized world by Martin AlfkeOSDC 2019 | DevOps in a containerized world by Martin Alfke
OSDC 2019 | DevOps in a containerized world by Martin Alfke
NETWAYS
 
TDD for jenkins pipelines
TDD for jenkins pipelinesTDD for jenkins pipelines
TDD for jenkins pipelines
Mauro Ferratello
 
Shrinking the container_zurich_july_2018
Shrinking the container_zurich_july_2018Shrinking the container_zurich_july_2018
Shrinking the container_zurich_july_2018
Ewan Slater
 
Flink Forward San Francisco 2018: Andrew Gao & Jeff Sharpe - "Finding Bad Ac...
Flink Forward San Francisco 2018: Andrew Gao & Jeff Sharpe - "Finding Bad Ac...Flink Forward San Francisco 2018: Andrew Gao & Jeff Sharpe - "Finding Bad Ac...
Flink Forward San Francisco 2018: Andrew Gao & Jeff Sharpe - "Finding Bad Ac...
Flink Forward
 
Why real integration developers ride Camels
Why real integration developers ride CamelsWhy real integration developers ride Camels
Why real integration developers ride Camels
Christian Posta
 
VMworld 2015 San Francisco - INF5432 - Infrastructure as Code - Ban Snowflake...
VMworld 2015 San Francisco - INF5432 - Infrastructure as Code - Ban Snowflake...VMworld 2015 San Francisco - INF5432 - Infrastructure as Code - Ban Snowflake...
VMworld 2015 San Francisco - INF5432 - Infrastructure as Code - Ban Snowflake...
Jonas Rosland
 
DevSecOps in a cloudnative world
DevSecOps in a cloudnative worldDevSecOps in a cloudnative world
DevSecOps in a cloudnative world
Karthik Gaekwad
 
DESIGN West 2013 Presentation: Accelerating Android Development and Delivery
DESIGN West 2013 Presentation: Accelerating Android Development and DeliveryDESIGN West 2013 Presentation: Accelerating Android Development and Delivery
DESIGN West 2013 Presentation: Accelerating Android Development and Delivery
David Rosen
 
Kubernetes in Highly Restrictive Environments
Kubernetes in Highly Restrictive EnvironmentsKubernetes in Highly Restrictive Environments
Kubernetes in Highly Restrictive Environments
Kublr
 
Design for Scale / Surge 2010
Design for Scale / Surge 2010Design for Scale / Surge 2010
Design for Scale / Surge 2010
Christopher Brown
 
Использование AzureDevOps при разработке микросервисных приложений
Использование AzureDevOps при разработке микросервисных приложенийИспользование AzureDevOps при разработке микросервисных приложений
Использование AzureDevOps при разработке микросервисных приложений
Vitebsk Miniq
 
MLSEC 2020
MLSEC 2020MLSEC 2020
MLSEC 2020
Zoltan Balazs
 
10 tips for Cloud Native Security
10 tips for Cloud Native Security10 tips for Cloud Native Security
10 tips for Cloud Native Security
Karthik Gaekwad
 
201811xx foredrag c_cpp
201811xx foredrag c_cpp201811xx foredrag c_cpp
201811xx foredrag c_cpp
InfinIT - Innovationsnetværket for it
 
Containerized Build & Deployment Pipelines
Containerized Build & Deployment PipelinesContainerized Build & Deployment Pipelines
Containerized Build & Deployment Pipelines
Nico Meisenzahl
 
Kubernetes 101 and Fun
Kubernetes 101 and FunKubernetes 101 and Fun
Kubernetes 101 and Fun
QAware GmbH
 
Kubernetes 101 and Fun
Kubernetes 101 and FunKubernetes 101 and Fun
Kubernetes 101 and Fun
Mario-Leander Reimer
 
Meetup Openshift Geneva 03/10
Meetup Openshift Geneva 03/10Meetup Openshift Geneva 03/10
Meetup Openshift Geneva 03/10
MagaliDavidCruz
 

Similar to OpenRheinRuhr 2018 - Ops hates containers! Why? (20)

OSDC 2018 | Ops hates containers. Why? by Martin Alfke
OSDC 2018 | Ops hates containers. Why? by Martin AlfkeOSDC 2018 | Ops hates containers. Why? by Martin Alfke
OSDC 2018 | Ops hates containers. Why? by Martin Alfke
 
OSDC 2019 | DevOps in a containerized world by Martin Alfke
OSDC 2019 | DevOps in a containerized world by Martin AlfkeOSDC 2019 | DevOps in a containerized world by Martin Alfke
OSDC 2019 | DevOps in a containerized world by Martin Alfke
 
TDD for jenkins pipelines
TDD for jenkins pipelinesTDD for jenkins pipelines
TDD for jenkins pipelines
 
Shrinking the container_zurich_july_2018
Shrinking the container_zurich_july_2018Shrinking the container_zurich_july_2018
Shrinking the container_zurich_july_2018
 
Flink Forward San Francisco 2018: Andrew Gao & Jeff Sharpe - "Finding Bad Ac...
Flink Forward San Francisco 2018: Andrew Gao & Jeff Sharpe - "Finding Bad Ac...Flink Forward San Francisco 2018: Andrew Gao & Jeff Sharpe - "Finding Bad Ac...
Flink Forward San Francisco 2018: Andrew Gao & Jeff Sharpe - "Finding Bad Ac...
 
Why real integration developers ride Camels
Why real integration developers ride CamelsWhy real integration developers ride Camels
Why real integration developers ride Camels
 
VMworld 2015 San Francisco - INF5432 - Infrastructure as Code - Ban Snowflake...
VMworld 2015 San Francisco - INF5432 - Infrastructure as Code - Ban Snowflake...VMworld 2015 San Francisco - INF5432 - Infrastructure as Code - Ban Snowflake...
VMworld 2015 San Francisco - INF5432 - Infrastructure as Code - Ban Snowflake...
 
DevSecOps in a cloudnative world
DevSecOps in a cloudnative worldDevSecOps in a cloudnative world
DevSecOps in a cloudnative world
 
DESIGN West 2013 Presentation: Accelerating Android Development and Delivery
DESIGN West 2013 Presentation: Accelerating Android Development and DeliveryDESIGN West 2013 Presentation: Accelerating Android Development and Delivery
DESIGN West 2013 Presentation: Accelerating Android Development and Delivery
 
Kubernetes in Highly Restrictive Environments
Kubernetes in Highly Restrictive EnvironmentsKubernetes in Highly Restrictive Environments
Kubernetes in Highly Restrictive Environments
 
Design for Scale / Surge 2010
Design for Scale / Surge 2010Design for Scale / Surge 2010
Design for Scale / Surge 2010
 
Использование AzureDevOps при разработке микросервисных приложений
Использование AzureDevOps при разработке микросервисных приложенийИспользование AzureDevOps при разработке микросервисных приложений
Использование AzureDevOps при разработке микросервисных приложений
 
MLSEC 2020
MLSEC 2020MLSEC 2020
MLSEC 2020
 
10 tips for Cloud Native Security
10 tips for Cloud Native Security10 tips for Cloud Native Security
10 tips for Cloud Native Security
 
201811xx foredrag c_cpp
201811xx foredrag c_cpp201811xx foredrag c_cpp
201811xx foredrag c_cpp
 
Containerized Build & Deployment Pipelines
Containerized Build & Deployment PipelinesContainerized Build & Deployment Pipelines
Containerized Build & Deployment Pipelines
 
Kubernetes 101 and Fun
Kubernetes 101 and FunKubernetes 101 and Fun
Kubernetes 101 and Fun
 
Kubernetes 101 and Fun
Kubernetes 101 and FunKubernetes 101 and Fun
Kubernetes 101 and Fun
 
SD Times - Docker v2
SD Times - Docker v2SD Times - Docker v2
SD Times - Docker v2
 
Meetup Openshift Geneva 03/10
Meetup Openshift Geneva 03/10Meetup Openshift Geneva 03/10
Meetup Openshift Geneva 03/10
 

More from Martin Alfke

CfgMgmtCamp 2023 - Puppet is YAML.pdf
CfgMgmtCamp 2023 - Puppet is YAML.pdfCfgMgmtCamp 2023 - Puppet is YAML.pdf
CfgMgmtCamp 2023 - Puppet is YAML.pdf
Martin Alfke
 
HashiTalksDACH-Terraform-Managing training instances in the Cloud
HashiTalksDACH-Terraform-Managing training instances in the CloudHashiTalksDACH-Terraform-Managing training instances in the Cloud
HashiTalksDACH-Terraform-Managing training instances in the Cloud
Martin Alfke
 
PuppetCamp2021-Testing Modules and ControlRepo.pdf
PuppetCamp2021-Testing Modules and ControlRepo.pdfPuppetCamp2021-Testing Modules and ControlRepo.pdf
PuppetCamp2021-Testing Modules and ControlRepo.pdf
Martin Alfke
 
Puppet Camp Germany 2020 - Puppet Control Repo and GIT
Puppet Camp Germany 2020 - Puppet Control Repo and GITPuppet Camp Germany 2020 - Puppet Control Repo and GIT
Puppet Camp Germany 2020 - Puppet Control Repo and GIT
Martin Alfke
 
Puppet Camp Paris 2016 Data in Modules
Puppet Camp Paris 2016 Data in ModulesPuppet Camp Paris 2016 Data in Modules
Puppet Camp Paris 2016 Data in Modules
Martin Alfke
 
Power of Puppet 4
Power of Puppet 4Power of Puppet 4
Power of Puppet 4
Martin Alfke
 
Can you upgrade to Puppet 4.x?
Can you upgrade to Puppet 4.x?Can you upgrade to Puppet 4.x?
Can you upgrade to Puppet 4.x?
Martin Alfke
 
Upgrading Puppet CommitterConf Essen 2014
Upgrading Puppet CommitterConf Essen 2014Upgrading Puppet CommitterConf Essen 2014
Upgrading Puppet CommitterConf Essen 2014
Martin Alfke
 
GUUG Hamburg OpenNebula
GUUG Hamburg OpenNebulaGUUG Hamburg OpenNebula
GUUG Hamburg OpenNebula
Martin Alfke
 
One
OneOne
One
Martin Alfke
 
Puppet future parser
Puppet future parserPuppet future parser
Puppet future parser
Martin Alfke
 
developing sysadmin, sysadmining developersGuug devops puppet
developing sysadmin, sysadmining developersGuug devops puppetdeveloping sysadmin, sysadmining developersGuug devops puppet
developing sysadmin, sysadmining developersGuug devops puppet
Martin Alfke
 
Gluster fs buero20_presentation
Gluster fs buero20_presentationGluster fs buero20_presentation
Gluster fs buero20_presentationMartin Alfke
 
Puppet buero20 presentation
Puppet buero20 presentationPuppet buero20 presentation
Puppet buero20 presentationMartin Alfke
 

More from Martin Alfke (14)

CfgMgmtCamp 2023 - Puppet is YAML.pdf
CfgMgmtCamp 2023 - Puppet is YAML.pdfCfgMgmtCamp 2023 - Puppet is YAML.pdf
CfgMgmtCamp 2023 - Puppet is YAML.pdf
 
HashiTalksDACH-Terraform-Managing training instances in the Cloud
HashiTalksDACH-Terraform-Managing training instances in the CloudHashiTalksDACH-Terraform-Managing training instances in the Cloud
HashiTalksDACH-Terraform-Managing training instances in the Cloud
 
PuppetCamp2021-Testing Modules and ControlRepo.pdf
PuppetCamp2021-Testing Modules and ControlRepo.pdfPuppetCamp2021-Testing Modules and ControlRepo.pdf
PuppetCamp2021-Testing Modules and ControlRepo.pdf
 
Puppet Camp Germany 2020 - Puppet Control Repo and GIT
Puppet Camp Germany 2020 - Puppet Control Repo and GITPuppet Camp Germany 2020 - Puppet Control Repo and GIT
Puppet Camp Germany 2020 - Puppet Control Repo and GIT
 
Puppet Camp Paris 2016 Data in Modules
Puppet Camp Paris 2016 Data in ModulesPuppet Camp Paris 2016 Data in Modules
Puppet Camp Paris 2016 Data in Modules
 
Power of Puppet 4
Power of Puppet 4Power of Puppet 4
Power of Puppet 4
 
Can you upgrade to Puppet 4.x?
Can you upgrade to Puppet 4.x?Can you upgrade to Puppet 4.x?
Can you upgrade to Puppet 4.x?
 
Upgrading Puppet CommitterConf Essen 2014
Upgrading Puppet CommitterConf Essen 2014Upgrading Puppet CommitterConf Essen 2014
Upgrading Puppet CommitterConf Essen 2014
 
GUUG Hamburg OpenNebula
GUUG Hamburg OpenNebulaGUUG Hamburg OpenNebula
GUUG Hamburg OpenNebula
 
One
OneOne
One
 
Puppet future parser
Puppet future parserPuppet future parser
Puppet future parser
 
developing sysadmin, sysadmining developersGuug devops puppet
developing sysadmin, sysadmining developersGuug devops puppetdeveloping sysadmin, sysadmining developersGuug devops puppet
developing sysadmin, sysadmining developersGuug devops puppet
 
Gluster fs buero20_presentation
Gluster fs buero20_presentationGluster fs buero20_presentation
Gluster fs buero20_presentation
 
Puppet buero20 presentation
Puppet buero20 presentationPuppet buero20 presentation
Puppet buero20 presentation
 

Recently uploaded

1.Wireless Communication System_Wireless communication is a broad term that i...
1.Wireless Communication System_Wireless communication is a broad term that i...1.Wireless Communication System_Wireless communication is a broad term that i...
1.Wireless Communication System_Wireless communication is a broad term that i...
JeyaPerumal1
 
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
3ipehhoa
 
guildmasters guide to ravnica Dungeons & Dragons 5...
guildmasters guide to ravnica Dungeons & Dragons 5...guildmasters guide to ravnica Dungeons & Dragons 5...
guildmasters guide to ravnica Dungeons & Dragons 5...
Rogerio Filho
 
History+of+E-commerce+Development+in+China-www.cfye-commerce.shop
History+of+E-commerce+Development+in+China-www.cfye-commerce.shopHistory+of+E-commerce+Development+in+China-www.cfye-commerce.shop
History+of+E-commerce+Development+in+China-www.cfye-commerce.shop
laozhuseo02
 
急速办(bedfordhire毕业证书)英国贝德福特大学毕业证成绩单原版一模一样
急速办(bedfordhire毕业证书)英国贝德福特大学毕业证成绩单原版一模一样急速办(bedfordhire毕业证书)英国贝德福特大学毕业证成绩单原版一模一样
急速办(bedfordhire毕业证书)英国贝德福特大学毕业证成绩单原版一模一样
3ipehhoa
 
一比一原版(LBS毕业证)伦敦商学院毕业证成绩单专业办理
一比一原版(LBS毕业证)伦敦商学院毕业证成绩单专业办理一比一原版(LBS毕业证)伦敦商学院毕业证成绩单专业办理
一比一原版(LBS毕业证)伦敦商学院毕业证成绩单专业办理
eutxy
 
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptxBridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
Brad Spiegel Macon GA
 
Latest trends in computer networking.pptx
Latest trends in computer networking.pptxLatest trends in computer networking.pptx
Latest trends in computer networking.pptx
JungkooksNonexistent
 
Internet-Security-Safeguarding-Your-Digital-World (1).pptx
Internet-Security-Safeguarding-Your-Digital-World (1).pptxInternet-Security-Safeguarding-Your-Digital-World (1).pptx
Internet-Security-Safeguarding-Your-Digital-World (1).pptx
VivekSinghShekhawat2
 
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdfJAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
Javier Lasa
 
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
3ipehhoa
 
test test test test testtest test testtest test testtest test testtest test ...
test test test test testtest test testtest test testtest test testtest test ...test test test test testtest test testtest test testtest test testtest test ...
test test test test testtest test testtest test testtest test testtest test ...
Arif0071
 
Comptia N+ Standard Networking lesson guide
Comptia N+ Standard Networking lesson guideComptia N+ Standard Networking lesson guide
Comptia N+ Standard Networking lesson guide
GTProductions1
 
The+Prospects+of+E-Commerce+in+China.pptx
The+Prospects+of+E-Commerce+in+China.pptxThe+Prospects+of+E-Commerce+in+China.pptx
The+Prospects+of+E-Commerce+in+China.pptx
laozhuseo02
 
This 7-second Brain Wave Ritual Attracts Money To You.!
This 7-second Brain Wave Ritual Attracts Money To You.!This 7-second Brain Wave Ritual Attracts Money To You.!
This 7-second Brain Wave Ritual Attracts Money To You.!
nirahealhty
 
Multi-cluster Kubernetes Networking- Patterns, Projects and Guidelines
Multi-cluster Kubernetes Networking- Patterns, Projects and GuidelinesMulti-cluster Kubernetes Networking- Patterns, Projects and Guidelines
Multi-cluster Kubernetes Networking- Patterns, Projects and Guidelines
Sanjeev Rampal
 
BASIC C++ lecture NOTE C++ lecture 3.pptx
BASIC C++ lecture NOTE C++ lecture 3.pptxBASIC C++ lecture NOTE C++ lecture 3.pptx
BASIC C++ lecture NOTE C++ lecture 3.pptx
natyesu
 
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
ufdana
 
How to Use Contact Form 7 Like a Pro.pptx
How to Use Contact Form 7 Like a Pro.pptxHow to Use Contact Form 7 Like a Pro.pptx
How to Use Contact Form 7 Like a Pro.pptx
Gal Baras
 
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
APNIC
 

Recently uploaded (20)

1.Wireless Communication System_Wireless communication is a broad term that i...
1.Wireless Communication System_Wireless communication is a broad term that i...1.Wireless Communication System_Wireless communication is a broad term that i...
1.Wireless Communication System_Wireless communication is a broad term that i...
 
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
原版仿制(uob毕业证书)英国伯明翰大学毕业证本科学历证书原版一模一样
 
guildmasters guide to ravnica Dungeons & Dragons 5...
guildmasters guide to ravnica Dungeons & Dragons 5...guildmasters guide to ravnica Dungeons & Dragons 5...
guildmasters guide to ravnica Dungeons & Dragons 5...
 
History+of+E-commerce+Development+in+China-www.cfye-commerce.shop
History+of+E-commerce+Development+in+China-www.cfye-commerce.shopHistory+of+E-commerce+Development+in+China-www.cfye-commerce.shop
History+of+E-commerce+Development+in+China-www.cfye-commerce.shop
 
急速办(bedfordhire毕业证书)英国贝德福特大学毕业证成绩单原版一模一样
急速办(bedfordhire毕业证书)英国贝德福特大学毕业证成绩单原版一模一样急速办(bedfordhire毕业证书)英国贝德福特大学毕业证成绩单原版一模一样
急速办(bedfordhire毕业证书)英国贝德福特大学毕业证成绩单原版一模一样
 
一比一原版(LBS毕业证)伦敦商学院毕业证成绩单专业办理
一比一原版(LBS毕业证)伦敦商学院毕业证成绩单专业办理一比一原版(LBS毕业证)伦敦商学院毕业证成绩单专业办理
一比一原版(LBS毕业证)伦敦商学院毕业证成绩单专业办理
 
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptxBridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptx
 
Latest trends in computer networking.pptx
Latest trends in computer networking.pptxLatest trends in computer networking.pptx
Latest trends in computer networking.pptx
 
Internet-Security-Safeguarding-Your-Digital-World (1).pptx
Internet-Security-Safeguarding-Your-Digital-World (1).pptxInternet-Security-Safeguarding-Your-Digital-World (1).pptx
Internet-Security-Safeguarding-Your-Digital-World (1).pptx
 
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdfJAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
JAVIER LASA-EXPERIENCIA digital 1986-2024.pdf
 
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
1比1复刻(bath毕业证书)英国巴斯大学毕业证学位证原版一模一样
 
test test test test testtest test testtest test testtest test testtest test ...
test test test test testtest test testtest test testtest test testtest test ...test test test test testtest test testtest test testtest test testtest test ...
test test test test testtest test testtest test testtest test testtest test ...
 
Comptia N+ Standard Networking lesson guide
Comptia N+ Standard Networking lesson guideComptia N+ Standard Networking lesson guide
Comptia N+ Standard Networking lesson guide
 
The+Prospects+of+E-Commerce+in+China.pptx
The+Prospects+of+E-Commerce+in+China.pptxThe+Prospects+of+E-Commerce+in+China.pptx
The+Prospects+of+E-Commerce+in+China.pptx
 
This 7-second Brain Wave Ritual Attracts Money To You.!
This 7-second Brain Wave Ritual Attracts Money To You.!This 7-second Brain Wave Ritual Attracts Money To You.!
This 7-second Brain Wave Ritual Attracts Money To You.!
 
Multi-cluster Kubernetes Networking- Patterns, Projects and Guidelines
Multi-cluster Kubernetes Networking- Patterns, Projects and GuidelinesMulti-cluster Kubernetes Networking- Patterns, Projects and Guidelines
Multi-cluster Kubernetes Networking- Patterns, Projects and Guidelines
 
BASIC C++ lecture NOTE C++ lecture 3.pptx
BASIC C++ lecture NOTE C++ lecture 3.pptxBASIC C++ lecture NOTE C++ lecture 3.pptx
BASIC C++ lecture NOTE C++ lecture 3.pptx
 
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
一比一原版(CSU毕业证)加利福尼亚州立大学毕业证成绩单专业办理
 
How to Use Contact Form 7 Like a Pro.pptx
How to Use Contact Form 7 Like a Pro.pptxHow to Use Contact Form 7 Like a Pro.pptx
How to Use Contact Form 7 Like a Pro.pptx
 
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024
 

OpenRheinRuhr 2018 - Ops hates containers! Why?

  • 1. Ops hates containers. Why? Martin Alfke - example42 GmbH
  • 2. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH !2 Developers say: • Ops are responsible for • base container image • running container • staging containers • container security Customer meeting with Dev, Sec and Ops
  • 3. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Customer meeting with Dev, Sec and Ops !3 Security / Developer dialogue: • Security: • “Dev must ensure security” • “Dev must name Kernel capabilities and CGroup settings” • Developers: • “what is CGroup settings?” • Security: • “We probably should meet when we all know the basics.”
  • 4. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH DOCKER DOCKER DOCKER DOCKER DOCKER DOCKER !4 Image: wikimedia.org
  • 5. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Container Myths !5 • No need for configuration management - anywhere • Easier to build, deploy and run • Easier to test and verify • Easier to fix issues Image: tatlin
  • 6. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Container Myths - Part 2 !6 • No need to check status and health? • No need to identify security? • No need to login, no need for logs? • No need for dedicated hardware, runs on cloud? Image: tatlin
  • 7. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Container de-mystified !7 • It is just a change-root, delivered as a ‘package’ • Build steps are layers like VCS commits • Containers need infrastructure • Containers are managed like binaries Image: tatlin
  • 8. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Container Runtime !8 • People start with docker because it is easy • docker pull / docker run • like curl -k | sudo bash Image: tatlin
  • 9. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !9 Simple can be harder than complex: You have to work hard to get your thinking clean to make it simple. But it's worth it in the end because once you get there, you can move mountains. - Steve Jobs [BusinessWeek, May 25, 1998]
  • 10. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !10 • Mainframe • PC • VM • Container Image: example42 GmbH
  • 11. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !11 • Uptime decreasing • Maintenance increasing Image: example42 GmbH
  • 12. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !12 • Staff does not scale with platform Image: example42 GmbH
  • 13. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !13 • 100% Automation ! Image: example42 GmbH
  • 14. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !14 • 80/20 - Pattern: Image: tatlin
  • 15. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH OPS, NET, SEC: Act! !15 • 80/20 - Pattern: • 80% time spending on 20% not automated Image: tatlin
  • 16. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Containers !16 Image: wikimedia.org
  • 17. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Understanding containers !17 • Short living instances • 12factor (http://12factor.net) • Persistant vs volatile data • Single node view Image: tatlin
  • 18. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Troubleshoot containers !18 • registry and container build process • docker down • docker in docker Image: tatlin
  • 19. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Using containers !19 • CI/CD Pipelines • Build Processes • Dashboards • Puppet Infrastructure(!) (https:// github.com/puppetlabs/ pupperware/) Image: tatlin
  • 20. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Container Management !20 Image: wikimedia.org
  • 21. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Understanding container management !21 • Multi node container runtime • Orchestration • Network (Egress / Ingress / Proxy) • Maintenance Image: tatlin
  • 22. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Troubleshoot container management !22 • Kill a node / container • Why running an CM API service as container might be a bad idea? • Misconfiguration • Upgrades Image: tatlin
  • 23. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Managing container orchestration !23 Installation and configuration of an application stack. • Puppet • Ansible • Chef • Saltstack Image: tatlin
  • 24. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Commercial container management !24 • Self hosted vs Managed • everybody does K8s? Image: tatlin
  • 25. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Other container management !25 • Mesos/Aurora/Marathon • Titus (Netflix) • Docker Swarm • Nomad/Terraform • CoreOS / rkt Image: tatlin
  • 26. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Was there something in the past? !26 Image: tatlin
  • 27. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Containers and CfgMgmt !27 • Where do you run your databases? • Can you move everything to containers? • What about legacy applications? Image: tatlin
  • 28. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Containers and Monitoring !28 • Dynamic Resources need dynamic monitoring solution • Global platform and service health • Some monitoring tools for containers: sysdig, cAdvisor, Puppet Discovery, Prometheus Image: tatlin
  • 29. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Containers and Hardware !29 • Serverless does not mean no hardware • Opsless does not mean no Ops • Check with finance (CAPEX vs. OPEX) Image: tatlin
  • 30. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Conclusion !30 Image: tatlin
  • 31. Ops hates containers! Why? OpenRheinRuhr 2018 - Martin Alfke © example42 GmbH Conclusion !31 • Containers adoption increases. • Ops people: start learning, stop play and complaining. • Security first - even on PoC • Automate everything • Choose your container tools and environments. Image: tatlin
  • 32. Ops hate not having full control of their systems. Not containers. Martin Alfke - example42 GmbH