The speed of containers, the security of VMs. KataContainers.io

Size: px
Start display at page:

Download "The speed of containers, the security of VMs. KataContainers.io"

Transcription

1 * The speed of containers, the security of VMs KataContainers.io

2 Contents Project Overview Technical Details Governance Get Involved

3 History Intel Clear Containers * May 2015 Dec 2017 *Other names and brands may be claimed as the property of others.

4 Technical Vision Light and fast VM-based containers Merge Intel Clear Containers and Hyper runv technologies Seamless integration with Kubernetes (CRI), Docker and Openstack Support multiple architectures (x86 today; others to come in the future) Support multiple hypervisors (KVM today; others to come in the future)

5 Intel Clear Containers Multi Architecture Multi Hypervisor Full Hotplug K8s Multi Tenancy VM templating Frakti native support Traffic Controller net Direct Device Assignment SRIOV NVDIMM Multi-OS KSM throttling CRI-O native support MacVTap, multi-queue net

6 Non-Technical Goals Open and vendor-neutral project All VM based containers, users and consumers under the same project Managed at the OpenStack Foundation* Independent from the OpenStack* software project

7 Containers in Cloud Container A Container B Container C App A App B App C Middleware A Middleware B Middleware C Linux* Kernel Virtual Machine Linux Kernel Server Hardware

8 Hypervisor Based Containers Container A Container B Container C App A App B App C Middleware A Middleware B Middleware C Linux Kernel A Linux Kernel B Linux Kernel C Virtual Machine Virtual Machine Virtual Machine Linux* Kernel Server Hardware Each container/pod is hypervisor isolated As secure as a VM As fast as a container Seamless integration with the container ecosystem and management layers

9 Isolation Speed

10 Technical Details

11 Virtual Machine I/O OCI cmd/spec Container Command Container Exec Shim Shim grpc Proxy Hypervisor serial interface Runtime grpc grpc over Yamux Container namespaces Agent Kernel Hypervisor

12 Virtual Machine I/O OCI cmd/spec Container Command Container Exec Container namespaces Shim Shim Runtime grpc Agent Kernel grpc Hypervisor Hypervisor VSOCK socket

13 Fast as a Container Create Start $ kubectl apply -f nginx.yml VM Boot Kernel Agent Start Pod Prepare container Image Prepare Volumes hotplug

14 Small as a Container Minimize memory footprint Minimal rootfs Minimal kernel VM Template DAX/nvdimm De-duplicate memory across VMs KSM (with throttling)

15 Networking Kubernetes* Overlay Network veth pair MacVTAP Tap Pod Virtual Machine Container networking namespace

16 Networking Kubernetes* Overlay Network veth pair tc mirror Tap Pod Virtual Machine Container networking namespace

17 Storage 9pfs/virtio-blk 9pfs/virtio-blk Container 1 Rootfs Overlay Volume Container 2 Rootfs Overlay 9pfs/virtio-b lk Virtual Machine 9pfs/virtio-blk Volume

18 Multi-tenant Kubernetes* k8s k8s k8s Pod Pod Pod Pod container container Pod container container Pod container container Pod container container Pod VM Pod VM Pod VM Pod VM Pod VM VM VM VM VM VM VM VM IaaS CaaS

19 Demo: Stackube - K8S with Hard Multi-tenancy kubectl k8s Node k8s Master kube-apiserver Tenant (CRD) Network (CRD) Keystone (Tenant mgmt) Cinder (Persistent Volume) Neutron (L2 Isolated Network) kubelet frakti (runtime shim) CNI

20 Project Status - Code Status Current Work Shim Initial implementation merged Terminal size, code coverage Proxy Initial implementation merged Code coverage, functional testing Agent Initial implementation merged Shared PID ns, sub-reaping (agent is PID 1) QEMU Vanilla 2.9 QEMU build config Linux Kernel one 9pfs patch Minimal kernel config definition OS builder Initial implementation merged Initrd/initramfs support Agent Protocol V0.0.1 merged (pre-alpha) More declarative APIs, network APIs improved

21 Project Status - Code - Runtime No runtime code at the moment Step 1: Add both Clear Containers and runv Adapted to Kata Containers architecture (grpc, new components) Both runtimes will work seamlessly with all the Kata Containers components Users can switch runtime implementations transparently Step 2: Merge runtimes into one single implementation Step 3: Deprecate Clear Containers and runv

22 Project Status - Documentation and CI Documentation CI Missing at the moment Clear Containers and runv documentation as a backup Travis based for now: Unit testing only Will move to a nested virtualization enabled and/or bare metal public cloud Functional and integration test From unit testing up to the higher levels of the stack (Kubernetes, OpenShift)

23 What s Next? 1H 2018 Horizon 1.0 Release (parity with RunV and CC 3.0 with upgrade path) CRI integration: Frakti, CRI-O, containerd-cri OCI runtime spec support for hypervisor based containers OSV support Documented case studies

24 Governance

25 Governance The Kata Containers project is governed according to the four opens, open source open design open development open community Technical decisions will be made by technical contributors and a representative Architecture Committee. The community is committed to diversity, openness, encouraging new contributors and leaders to rise up.

26 Governance Contributors At least one github contribution for the past 12 months Maintainers Active contributor, nominated by fellow maintainers Can merge code Architecture Committee Take high level architecture and roadmap decisions 5 seats, elected by contributors

27 Governance Architecture Committee The Architecture Committee is responsible for architectural decisions, including standardization, and making final decisions if Maintainers disagree. It will be comprised of 5 members, who are appointed by the Maintainers at launch but fully elected by Contributors within the first year. The initial Architecture committee members are Samuel Otiz (Intel), Xu Wang (Hyper), Zhang Wei (Huawei) and Tim AllClair (Google).

28 Governance Working Committee The Working Committee is intended to make non-technical decisions and help influence the project strategy, including marketing and communications, product management and ecosystem support. Representatives are expected to be active contributors who are committed to the health and success of the project. Recognizing the project will grow and change quickly in the first six months, and in order to encourage diversity and participation, the Working Committee will be forming up and finalizing it s structure after the project launch. Initial appointed members include Amy Leeland (Intel) and James Kulina (Hyper). During this initial period, the participants will appoint a leader to help organize and run regular meetings, coordinate the various work streams and help define the long-term structure. The initial task will be to determine 2018 plans and appropriate work streams, working groups and funding to execute on those plans. Anyone can join! Get involved in the #working-committee channel on Slack: bit.ly/kataslack (case sensitive)

29 Get Involved

30 Contribute Code and documentation hosted on Major releases managed through Github* Projects Intel (Intel Clear Containers) & Hyper (runv) contributing initial IP Apache 2 license Slack: katacontainers.slack.com IRC: #kata-dev@freenode Mailing-list: kata-dev@lists.katacontainers.io

31 Where To Contribute? Code Unit tests for agent, shim and proxy PR reviews (agent, shim) Osbuilder support for more distros Documentation Getting Started guides Code documentation Features Requests grpc Input needed: Do we cover it all? API documentation Open issues and PRs for any feature that you d like to get from Kata Containers

32 Community You do not need to be an Individual Member of the OpenStack Foundation in order to contribute, but if you want to vote in the annual OpenStack Foundation Board of Directors election, you may join: openstack.org/join If you are contributing on behalf of an employer, they will need to sign a corporate contributor license agreement, which now covers all projects hosted by the OpenStack Foundation (same model as Apache and CNCF) Independent contributors may be submitted with a sign off header under the DCO

33 Communication KataContainers Slack bit.ly/kataslack (case sensitive) #kata-dev IRC freenode (Slack and IRC have a gateway to share messages) Mailing Lists: lists.katacontainers.io info@katacontainers.io

34 Thank you! KataContainers.io

The speed of containers, the security of VMs

The speed of containers, the security of VMs * The speed of containers, the security of VMs Xu Wang, Hyper Samuel Ortiz, Intel *Other names and brands may be claimed as the property of others. Contents Project

More information

Kata Containers The way to run virtualized containers. Sebastien Boeuf, Linux Software Engineer Intel Corporation

Kata Containers The way to run virtualized containers. Sebastien Boeuf, Linux Software Engineer Intel Corporation Kata Containers The way to run virtualized containers Sebastien Boeuf, Linux Software Engineer Intel Corporation https://regmedia.co.uk/2017/09/11/shutterstock_containers_in_port.jpg Containers 101 Process

More information

Unified Kubernetes CRI runtimes based on Kata Containers. Xu Wang hyper.sh

Unified Kubernetes CRI runtimes based on Kata Containers. Xu Wang hyper.sh Unified Kubernetes CRI runtimes based on Kata s Xu Wang (@gnawux) hyper.sh Agenda Kubernetes CRI Deep Dive The Current CRI Implementations CRI and Kata s A Brief History of K8S CRI Once upon a time rkt

More information

How Container Runtimes matter in Kubernetes?

How Container Runtimes matter in Kubernetes? How Container Runtimes matter in Kubernetes? Kunal Kushwaha NTT OSS Center About me Works @ NTT Open Source Software Center Contributes to containerd and other related projects. Docker community leader,

More information

Multitenancy Deep Dive

Multitenancy Deep Dive Multitenancy Deep Dive Thursday, December 7 2:00pm - 3:20pm David Oppenheimer (Google) davidopp@google.com Quinton Hoole (Huawei) quinton.hoole@huawei.com Agenda Presentations Discussion of topics of interest

More information

Launching StarlingX. The Journey to Drive Compute to the Edge Pilot Project Supported by the OpenStack

Launching StarlingX. The Journey to Drive Compute to the Edge Pilot Project Supported by the OpenStack Launching StarlingX The Journey to Drive Compute to the Edge Pilot Project Supported by the OpenStack Foundation Ian Jolliffe, WIND RIVER SYSTEMS Director Engineering @ian_jolliffe Project Overview An

More information

Intel Clear Containers. Amy Leeland Program Manager Clear Linux, Clear Containers And Ciao

Intel Clear Containers. Amy Leeland Program Manager Clear Linux, Clear Containers And Ciao Intel Clear Containers Amy Leeland Program Manager Clear Linux, Clear Containers And Ciao Containers are... Speedy Fast create, update and uninstall cycle. Request and provision in (milli)seconds Manageable

More information

Bringing Security and Multitenancy. Lei (Harry) Zhang

Bringing Security and Multitenancy. Lei (Harry) Zhang Bringing Security and Multitenancy to Kubernetes Lei (Harry) Zhang About Me Lei (Harry) Zhang #Microsoft MVP in cloud and datacenter management though I m a Linux guy :/ Previous: VMware, Baidu Feature

More information

OPENSTACK + KUBERNETES + HYPERCONTAINER. The Container Platform for NFV

OPENSTACK + KUBERNETES + HYPERCONTAINER. The Container Platform for NFV OPENSTACK + KUBERNETES + HYPERCONTAINER The Container Platform for NFV ABOUT ME Harry Zhang ID: @resouer Coder, Author, Speaker Member of Hyper Feature Maintainer & Project Manager of Kubernetes sig-scheduling,

More information

A Big Little Hypervisor for IoT Development February 2018

A Big Little Hypervisor for IoT Development February 2018 A Big Little Hypervisor for IoT Development February 2018 Contents PROJECT OVERVIEW TECHNICAL OVERVIEW GOVERNANCE JOIN US! PROJECT OVERVIEW Current State of Affairs IoT Development IoT device devices requires

More information

Kubernetes 101. Doug Davis, STSM September, 2017

Kubernetes 101. Doug Davis, STSM September, 2017 Kubernetes 101 Doug Davis, STSM September, 2017 Today's Agenda What is Kubernetes? How was Kubernetes created? Where is the Kubernetes community? Technical overview What's the current status of Kubernetes?

More information

CONTAINERS AND MICROSERVICES WITH CONTRAIL

CONTAINERS AND MICROSERVICES WITH CONTRAIL CONTAINERS AND MICROSERVICES WITH CONTRAIL Scott Sneddon Sree Sarva DP Ayyadevara Sr. Director Sr. Director Director Cloud and SDN Contrail Solutions Product Line Management This statement of direction

More information

Secure Kubernetes Container Workloads

Secure Kubernetes Container Workloads Secure Kubernetes Container Workloads with Production-Grade Networking Cynthia Thomas Irena Berezovsky Tim Hockin CIA IT operations have top secret apps for their agents, most of which require isolation

More information

Managing and Protecting Persistent Volumes for Kubernetes. Xing Yang, Huawei and Jay Bryant, Lenovo

Managing and Protecting Persistent Volumes for Kubernetes. Xing Yang, Huawei and Jay Bryant, Lenovo Managing and Protecting Persistent Volumes for Kubernetes Xing Yang, Huawei and Jay Bryant, Lenovo Bio Xing Yang Principal Architect at Huawei Project and Architecture Lead of OpenSDS Core Reviewer in

More information

Simple custom Linux distributions with LinuxKit. Justin Cormack

Simple custom Linux distributions with LinuxKit. Justin Cormack Simple custom Linux distributions with LinuxKit Justin Cormack Who am I? Engineer at Docker in Cambridge, UK. @justincormack 3 Tools for building custom Linux Tools for building custom Linux Existing

More information

Docker All The Things

Docker All The Things OpenStack Services Docker All The Things and Kubernetes and Atomic OpenStack Summit Paris, November 2014 @brentholden @jameslabocki Agenda The Problem Current Solutions Tomorrow s Improvements Demonstration

More information

Building Kubernetes cloud: real world deployment examples, challenges and approaches. Alena Prokharchyk, Rancher Labs

Building Kubernetes cloud: real world deployment examples, challenges and approaches. Alena Prokharchyk, Rancher Labs Building Kubernetes cloud: real world deployment examples, challenges and approaches Alena Prokharchyk, Rancher Labs Making a right choice is not easy The illustrated children guide to Kubernetes https://www.youtube.com/watch?v=4ht22rebjno

More information

1. What is Cloud Computing (CC)? What are the Pros and Cons of CC? Technologies of CC 27

1. What is Cloud Computing (CC)? What are the Pros and Cons of CC? Technologies of CC 27 1. What is Cloud Computing (CC)? 3 1.1. Utility Computing First 3 1.2. The New Features of Cloud Computing (CC) 4 1.3. Cloud Service Provider (CSP) 6 1.3.1 Thin Provisioning 7 1.4. CC via a CSP (not via

More information

Cloud & container monitoring , Lars Michelsen Check_MK Conference #4

Cloud & container monitoring , Lars Michelsen Check_MK Conference #4 Cloud & container monitoring 04.05.2018, Lars Michelsen Some cloud definitions Applications Data Runtime Middleware O/S Virtualization Servers Storage Networking Software-as-a-Service (SaaS) Applications

More information

Full Scalable Media Cloud Solution with Kubernetes Orchestration. Zhenyu Wang, Xin(Owen)Zhang

Full Scalable Media Cloud Solution with Kubernetes Orchestration. Zhenyu Wang, Xin(Owen)Zhang Full Scalable Media Cloud Solution with Kubernetes Orchestration Zhenyu Wang, Xin(Owen)Zhang Agenda Media in the Network and Cloud Intel Media Server Reference Software Stack Container with MSS enablement

More information

Stackube Documentation

Stackube Documentation Stackube Documentation Release Stackube development team Oct 29, 2017 Contents 1 Stackube Authors 3 2 Introduction 5 2.1 Stackube Architecture.......................................... 5 2.2 Stackube

More information

Container Security and new container technologies. Dan

Container Security and new container technologies. Dan Container Security and new container technologies Dan Walsh @rhatdan Please Stand Please read out loud all text in RED I Promise To say Container Registries Rather than Docker registries I Promise To say

More information

Next Generation Tools for container technology. Dan

Next Generation Tools for container technology. Dan Next Generation Tools for container technology Dan Walsh @rhatdan Please Stand Please read out loud all text in RED I Promise To say Container Registries Rather than Docker registries I Promise To say

More information

rkt and Kubernetes What's new (and coming) with Container Runtimes and Orchestration

rkt and Kubernetes What's new (and coming) with Container Runtimes and Orchestration rkt and Kubernetes What's new (and coming) with Container Runtimes and Orchestration Jonathan Boulle github.com/jonboulle - @baronboulle Why rkt and Kubernetes? Why rkt and Kubernetes? Why container runtimes

More information

Datacenter Network Solutions Group

Datacenter Network Solutions Group 1 Enabling NFV features in kubernetes IVAN COUGHLAN IVAN.COUGHLAN@INTEL.COM Software Architect Kuralamudhan Ramakrishnan kuralamudhan.ramakrishnan@intel.com Senior Software Engineer Data Center Network

More information

Dan Williams Networking Services, Red Hat

Dan Williams Networking Services, Red Hat Networking Containers with Kubernetes and OpenShift Dan Williams Networking Services, Red Hat Kubernetes Components Web UI Pod apiserver etcd Container 1 Container 2 scheduler controller Command-line interface

More information

OPENSTACK Building Block for Cloud. Ng Hwee Ming Principal Technologist (Telco) APAC Office of Technology

OPENSTACK Building Block for Cloud. Ng Hwee Ming Principal Technologist (Telco) APAC Office of Technology OPENSTACK Building Block for Cloud Ng Hwee Ming Principal Technologist (Telco) APAC Office of Technology ABOUT RED HAT FROM COMMUNITY TO PRODUCT STABILIZ E INTEGRAT E PARTICIPATE INTEGRAT E STABILIZ E

More information

Kubernetes 1.9 Features and Future

Kubernetes 1.9 Features and Future OpenShift Commons Briefing: Kubernetes 1.9 Features and Future Derek Carr - Lead Engineer, Kubernetes What s new this time around? RELEASE STATS Shorter release (end of year) 6000+ pull requests merged

More information

Onto Petaflops with Kubernetes

Onto Petaflops with Kubernetes Onto Petaflops with Kubernetes Vishnu Kannan Google Inc. vishh@google.com Key Takeaways Kubernetes can manage hardware accelerators at Scale Kubernetes provides a playground for ML ML journey with Kubernetes

More information

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme NET1522BE Kubernetes Networking with NSX-T Deep Dive Ali Al Idrees Yves Fauser #VMworld #NET1522BE Disclaimer This presentation may contain product features that are currently under development. This overview

More information

Buenos Aires 31 de Octubre de 2018

Buenos Aires 31 de Octubre de 2018 Buenos Aires 31 de Octubre de 2018 VMware NSX Data Center & Containers in the Dell EMC Ecosystem Gonzalo Atienza Sr Systems Engineer, Network & Security Business Unit, VMware Containers are Here to stay!

More information

Project Calico v3.2. Overview. Architecture and Key Components. Project Calico provides network security for containers and virtual machine workloads.

Project Calico v3.2. Overview. Architecture and Key Components. Project Calico provides network security for containers and virtual machine workloads. Project Calico v3.2 Overview Benefits Simplicity. Traditional Software Defined Networks (SDNs) are complex, making them hard to deploy and troubleshoot. Calico removes that complexity, with a simplified

More information

Reimagining OpenStack*

Reimagining OpenStack* Reimagining OpenStack* Kristen Accardi *Other names and brands may be claimed as the property of others. 1 "Evaluators of OpenStack believe that complexity and difficulty of deployment are decreasing,

More information

Kuber-what?! Learn about Kubernetes

Kuber-what?! Learn about Kubernetes DEVNET-1999 Kuber-what?! Learn about Kubernetes Ashley Roach, Principal Engineer Evangelist Agenda Objectives A brief primer on containers The problems with running containers at scale Orchestration systems

More information

Project Kuryr. Here comes advanced services for containers networking. Antoni Segura

Project Kuryr. Here comes advanced services for containers networking. Antoni Segura Project Kuryr Here comes advanced services for containers networking Mohammad Banikazemi @MBanikazemi Gal Sagie @GalSagie Antoni Segura Puimedon @celebdor Outline Motivation and Introduction Current state

More information

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme NET1522BU Kubernetes Networking with NSX-T Deep Dive #VMworld #NET1522BU Disclaimer This presentation may contain product features that are currently under development. This overview of new technology

More information

Kubernetes. An open platform for container orchestration. Johannes M. Scheuermann. Karlsruhe,

Kubernetes. An open platform for container orchestration. Johannes M. Scheuermann. Karlsruhe, Kubernetes An open platform for container orchestration Johannes M. Scheuermann Karlsruhe, 30.08.2017 Johannes M. Scheuermann Cloud Platform Engineer @ inovex Software-Defined Datacenters Infrastructure

More information

Introduction to Virtualization and Containers Phil Hopkins

Introduction to Virtualization and Containers Phil Hopkins Introduction to Virtualization and Containers Phil Hopkins @twitterhandle Virtualization What is it? Introduction to Virtualization and Containers What the heck is a hypervisor? Why are there so many of

More information

Convergence of VM and containers orchestration using KubeVirt. Chunfu Wen

Convergence of VM and containers orchestration using KubeVirt. Chunfu Wen Convergence of VM and containers orchestration using KubeVirt Chunfu Wen chwen@redhat.com Agenda Context Introduction What Is Kubevirt And How It Feel Kubevirt Architecture And Design Demo FIRST A LITTLE

More information

NET1821BU THE FUTURE OF NETWORKING AND SECURITY WITH NSX-T Bruce Davie CTO, APJ 2

NET1821BU THE FUTURE OF NETWORKING AND SECURITY WITH NSX-T Bruce Davie CTO, APJ 2 NET1821BU The Future of Network Virtualization with NSX-T #VMworld #NET1821BU NET1821BU THE FUTURE OF NETWORKING AND SECURITY WITH NSX-T Bruce Davie CTO, APJ 2 DISCLAIMER This presentation may contain

More information

Code: Slides:

Code:   Slides: Workshop Resources Code: https://github.com/beekpr/public-workshops Slides: https://tinyurl.com/yc2uo3wk Make sure minikube and kubectl is setup (labs/1-setup-cluster.md has some instructions) Kubernetes

More information

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme CNA1612BU Deploying real-world workloads on Kubernetes and Pivotal Cloud Foundry VMworld 2017 Fred Melo, Director of Technology, Pivotal Merlin Glynn, Sr. Technical Product Manager, VMware Content: Not

More information

Making Immutable Infrastructure simpler with LinuxKit. Justin Cormack

Making Immutable Infrastructure simpler with LinuxKit. Justin Cormack Making Immutable Infrastructure simpler with LinuxKit Justin Cormack Who am I? Engineer at Docker in Cambridge, UK. Work on security, operating systems, LinuxKit, containers @justincormack 3 Some history

More information

Akraino & Starlingx: a technical overview

Akraino & Starlingx: a technical overview Akraino & Starlingx: a technical overview Agenda Why Edge Computing? What s Edge Computing? Akraino and its Building Blocks StarlingX and its Technical Overview Collaboration in Akraino Community 2 Emerging

More information

ViryaOS RFC: Secure Containers for Embedded and IoT. A proposal for a new Xen Project sub-project

ViryaOS RFC: Secure Containers for Embedded and IoT. A proposal for a new Xen Project sub-project ViryaOS RFC: Secure Containers for Embedded and IoT A proposal for a new Xen Project sub-project Stefano Stabellini @stabellinist The problem Package applications for the target Contain all dependencies

More information

Cloud I - Introduction

Cloud I - Introduction Cloud I - Introduction Chesapeake Node.js User Group (CNUG) https://www.meetup.com/chesapeake-region-nodejs-developers-group START BUILDING: CALLFORCODE.ORG 3 Agenda Cloud Offerings ( Cloud 1.0 ) Infrastructure

More information

Red Hat Roadmap for Containers and DevOps

Red Hat Roadmap for Containers and DevOps Red Hat Roadmap for Containers and DevOps Brian Gracely, Director of Strategy Diogenes Rettori, Principal Product Manager Red Hat September, 2016 Digital Transformation Requires an evolution in... 2 APPLICATIONS

More information

THE STATE OF CONTAINERS

THE STATE OF CONTAINERS THE STATE OF CONTAINERS Engines & Runtimes in RHEL & OpenShift Scott McCarty Principal Technology Product Manager - Containers 10/15/2018 What if... I told you there is container innovation happening in

More information

Kubernetes made easy with Docker EE. Patrick van der Bleek Sr. Solutions Engineer NEMEA

Kubernetes made easy with Docker EE. Patrick van der Bleek Sr. Solutions Engineer NEMEA Kubernetes made easy with Docker EE Patrick van der Bleek Sr. Solutions Engineer NEMEA Docker Enterprise Edition is More than Containers + Orchestration... DOCKER ENTERPRISE EDITION Kubernetes integration

More information

WHITE PAPER. RedHat OpenShift Container Platform. Benefits: Abstract. 1.1 Introduction

WHITE PAPER. RedHat OpenShift Container Platform. Benefits: Abstract. 1.1 Introduction WHITE PAPER RedHat OpenShift Container Platform Abstract Benefits: Applications are designed around smaller independent components called microservices. Elastic resources: Scale up or down quickly and

More information

Container Orchestration on Amazon Web Services. Arun

Container Orchestration on Amazon Web Services. Arun Container Orchestration on Amazon Web Services Arun Gupta, @arungupta Docker Workflow Development using Docker Docker Community Edition Docker for Mac/Windows/Linux Monthly edge and quarterly stable

More information

Project Calico v3.1. Overview. Architecture and Key Components

Project Calico v3.1. Overview. Architecture and Key Components Project Calico v3.1 Overview Benefits Simplicity. Traditional Software Defined Networks (SDNs) are complex, making them hard to deploy and troubleshoot. Calico removes that complexity, with a simplified

More information

Part2: Let s pick one cloud IaaS middleware: OpenStack. Sergio Maffioletti

Part2: Let s pick one cloud IaaS middleware: OpenStack. Sergio Maffioletti S3IT: Service and Support for Science IT Cloud middleware Part2: Let s pick one cloud IaaS middleware: OpenStack Sergio Maffioletti S3IT: Service and Support for Science IT, University of Zurich http://www.s3it.uzh.ch/

More information

Dataplane Networking journey in Containers

Dataplane Networking journey in Containers Dataplane Networking journey in Gary Loughnane gary.loughnane@intel.com Kuralamudhan Ramakrishnan kuralamudhan.ramakrishnan@intel.com DPDK Summit Userspace - Dublin- 2017 Discussion topics Container Deployment

More information

Using DC/OS for Continuous Delivery

Using DC/OS for Continuous Delivery Using DC/OS for Continuous Delivery DevPulseCon 2017 Elizabeth K. Joseph, @pleia2 Mesosphere 1 Elizabeth K. Joseph, Developer Advocate, Mesosphere 15+ years working in open source communities 10+ years

More information

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme CNA2080BU Deep Dive: How to Deploy and Operationalize Kubernetes Cornelia Davis, Pivotal Nathan Ness Technical Product Manager, CNABU @nvpnathan #VMworld #CNA2080BU Disclaimer This presentation may contain

More information

Kubernetes on Azure. Daniel Neumann Technology Solutions Professional Microsoft. Build, run and monitor your container applications

Kubernetes on Azure. Daniel Neumann Technology Solutions Professional Microsoft. Build, run and monitor your container applications Daniel Neumann Technology Solutions Professional Microsoft Daniel.Neumann@microsoft.com @neumanndaniel Kubernetes on Azure Build, run and monitor your container applications Session objectives Learn how

More information

Container Networking and Openstack. Fernando Sanchez Fawad Khaliq March, 2016

Container Networking and Openstack. Fernando Sanchez Fawad Khaliq March, 2016 Container Networking and Openstack Fernando Sanchez - @fernandosanchez Fawad Khaliq - @fawadkhaliq March, 2016 Agenda Containers, Orchestration and Networking Containers: runtimes Container Orchestration

More information

TEN LAYERS OF CONTAINER SECURITY

TEN LAYERS OF CONTAINER SECURITY TEN LAYERS OF CONTAINER SECURITY Tim Hunt Kirsten Newcomer May 2017 ABOUT YOU Are you using containers? What s your role? Security professionals Developers / Architects Infrastructure / Ops Who considers

More information

Kubernetes on Openstack

Kubernetes on Openstack Kubernetes on Openstack Saverio Proto saverio.proto@switch.ch Lugano 2018 SWITCH 1 Infrastructure & Data Services Your added value Our customers Our offer 2018 SWITCH 2 Your added value SWITCH made Swiss

More information

Microservices. Chaos Kontrolle mit Kubernetes. Robert Kubis - Developer Advocate,

Microservices. Chaos Kontrolle mit Kubernetes. Robert Kubis - Developer Advocate, Microservices Chaos Kontrolle mit Kubernetes Robert Kubis - Developer Advocate, Google @hostirosti About me Robert Kubis Developer Advocate Google Cloud Platform London, UK hostirosti github.com/hostirosti

More information

Cisco Cloud Strategy. Uwe Müller. Leader PreSales Cloud & Datacenter Germany

Cisco Cloud Strategy. Uwe Müller. Leader PreSales Cloud & Datacenter Germany Cisco Cloud Strategy Uwe Müller Leader PreSales Cloud & Datacenter Germany 277X Data created by IoE devices v. end-user 30M New devices connected every week 180B Mobile apps downloaded in 2015 78% Workloads

More information

Kubernetes - Networking. Konstantinos Tsakalozos

Kubernetes - Networking. Konstantinos Tsakalozos Kubernetes - Networking Konstantinos Tsakalozos Kubernetes From the greek word κυβερνήτης originally designed by Google and donated to the Cloud Native Computing Foundation. Presented at "Large-scale cluster

More information

Red Hat OpenShift Roadmap Q4 CY16 and H1 CY17 Releases. Lutz Lange Solution

Red Hat OpenShift Roadmap Q4 CY16 and H1 CY17 Releases. Lutz Lange Solution Red Hat OpenShift Roadmap Q4 CY16 and H1 CY17 Releases Lutz Lange Solution Architect @AtomicContainer OpenShift Roadmap OpenShift Container Platform 3.2 Kubernetes 1.2 & Docker 1.9

More information

IT S COMPLICATED: THE ENTERPRISE OPEN SOURCE VENDOR RELATIONSHIP. Red Hat s POV

IT S COMPLICATED: THE ENTERPRISE OPEN SOURCE VENDOR RELATIONSHIP. Red Hat s POV IT S COMPLICATED: THE ENTERPRISE OPEN SOURCE VENDOR RELATIONSHIP Red Hat s POV Diane Mueller Director, Community Development Red Hat dmueller@redhat.com @openshiftcommon 11/14/18 FINOS Open Source Strategy

More information

Contrail Networking: Evolve your cloud with Containers

Contrail Networking: Evolve your cloud with Containers Contrail Networking: Evolve your cloud with Containers INSIDE Containers and Microservices Transformation of the Cloud Building a Network for Containers Juniper Networks Contrail Solution BUILD MORE THAN

More information

[Docker] Containerization

[Docker] Containerization [Docker] Containerization ABCD-LMA Working Group Will Kinard October 12, 2017 WILL Kinard Infrastructure Architect Software Developer Startup Venture IC Husband Father Clemson University That s me. 2 The

More information

More Containers, More Problems

More Containers, More Problems More Containers, More Problems Ed Rooth @sym3tri ed.rooth@coreos.com coreos.com Agenda 1. 2. 3. 4. Define problems Define vision of the solution How CoreOS is building solutions How you can get started

More information

OpenStack and OVN What s New with OVS 2.7 OpenStack Summit -- Boston 2017

OpenStack and OVN What s New with OVS 2.7 OpenStack Summit -- Boston 2017 OpenStack and OVN What s New with OVS 2.7 OpenStack Summit -- Boston 2017 Russell Bryant (@russellbryant) Justin Pettit (@Justin_D_Pettit) Ben Pfaff (@Ben_Pfaff) Virtual Networking Overview Provides a

More information

Project Kuryr. Antoni Segura Puimedon (apuimedo) Gal Sagie (gsagie)

Project Kuryr. Antoni Segura Puimedon (apuimedo) Gal Sagie (gsagie) Project Kuryr Antoni Segura Puimedon (apuimedo) Gal Sagie (gsagie) What are the problems? Reinventing networking abstractions Changing and vendor specific solutions Flannel Weave SocketPlane Overlay2 for

More information

Delivering Red Hat OpenShift at Ease on Red Hat OpenStack and RHV

Delivering Red Hat OpenShift at Ease on Red Hat OpenStack and RHV Delivering Red Hat OpenShift at Ease on Red Hat OpenStack and RHV Subheading goes here Francesco Vollero - Specialist Solution Architect OpenStack Natale Vinto - Specialist Solution Architect OpenShift

More information

Continuous delivery while migrating to Kubernetes

Continuous delivery while migrating to Kubernetes Continuous delivery while migrating to Kubernetes Audun Fauchald Strand Øyvind Ingebrigtsen Øvergaard @audunstrand @oyvindio FINN Infrastructure History Kubernetes at FINN Agenda Finn Infrastructure As

More information

Linux Containers Roadmap Red Hat Enterprise Linux 7 RC. Bhavna Sarathy Senior Technology Product Manager, Red Hat

Linux Containers Roadmap Red Hat Enterprise Linux 7 RC. Bhavna Sarathy Senior Technology Product Manager, Red Hat Linux Containers Roadmap Red Hat Enterprise Linux 7 RC Bhavna Sarathy Senior Technology Product Manager, Red Hat Linda Wang Senior Eng. Manager, Red Hat Bob Kozdemba Principal Soln. Architect, Red Hat

More information

Multiple Networks and Isolation in Kubernetes. Haibin Michael Xie / Principal Architect Huawei

Multiple Networks and Isolation in Kubernetes. Haibin Michael Xie / Principal Architect Huawei Multiple Networks and Isolation in Kubernetes Haibin Michael Xie / Principal Architect Huawei Agenda CNI and network plug-ins Multiple network use cases, design and implementation Network multi-tenancy

More information

OpenShift Roadmap Enterprise Kubernetes for Developers. Clayton Coleman, Architect, OpenShift

OpenShift Roadmap Enterprise Kubernetes for Developers. Clayton Coleman, Architect, OpenShift OpenShift Roadmap Enterprise Kubernetes for Developers Clayton Coleman, Architect, OpenShift What Is OpenShift? Application-centric Platform INFRASTRUCTURE APPLICATIONS Use containers for efficiency Hide

More information

Kuberiter White Paper. Kubernetes. Cloud Provider Comparison Chart. Lawrence Manickam Kuberiter Inc

Kuberiter White Paper. Kubernetes. Cloud Provider Comparison Chart. Lawrence Manickam Kuberiter Inc Kuberiter White Paper Kubernetes Cloud Provider Comparison Chart Lawrence Manickam Kuberiter Inc Oct 2018 Executive Summary Kubernetes (K8S) has become the de facto standard for Cloud Application Deployments.

More information

So, I have all these containers! Now what?

So, I have all these containers! Now what? So, I have all these containers! Now what? Image by Connie Zhou Developer View job hello_world = { runtime = { cell = 'ic' } // Cell (cluster) to run in binary = '.../hello_world_webserver' // Program

More information

Kontejneri u Azureu uz pomoć Kubernetesa što i kako? Tomislav Tipurić Partner Technology Strategist Microsoft

Kontejneri u Azureu uz pomoć Kubernetesa što i kako? Tomislav Tipurić Partner Technology Strategist Microsoft Kontejneri u Azureu uz pomoć Kubernetesa što i kako? Tomislav Tipurić Partner Technology Strategist Microsoft Source: Softpedia Credits: James Niccolai A decade ago no one could have seen this coming.

More information

Safe Harbor Statement

Safe Harbor Statement Safe Harbor Statement The following is intended to outline the general direction of Pivotal's offerings. It is intended for information purposes only and may not be incorporated into any contract. Any

More information

CS-580K/480K Advanced Topics in Cloud Computing. OpenStack

CS-580K/480K Advanced Topics in Cloud Computing. OpenStack CS-580K/480K dvanced Topics in Cloud Computing OpenStack 1 Where we are 2 Virtualization Layer Operating System 1 2 3 4 Operating System 1 2 3 4 Operating System 1 2 3 4 VM1 VM2 VM3 Virtualization Layer

More information

Define Your Future with SUSE

Define Your Future with SUSE Define Your Future with SUSE SUSE Linux Enterprise and more Bo Jin Sales Engineer bo.jin@suse.com SUSE auf einen Blick 25+ +8% Jahre Erfahrung in der Open-SourceEntwicklung SUSE-Wachstum vgl. mit anderen

More information

Kubernetes: Integration vs Native Solution

Kubernetes: Integration vs Native Solution Kubernetes: Integration vs Native Solution Table of Contents 22 Table of Contents 01 Introduction...3 02 DC/OS...4 03 Docker Enterprise...7 04 Rancher...10 05 Azure...13 06 Conclusion...15 3 01 Introduction

More information

OCI Runtime Tools for Container Standardization

OCI Runtime Tools for Container Standardization OCI Runtime Tools for Container Standardization Ma Shimiao Agenda Background OCI Introduction Runtime Tools Our Contribution Future Plans Q&A 1 Background Container-based

More information

Introduction to Kubernetes

Introduction to Kubernetes Introduction to Kubernetes Neil Peterson @nepeters #ITDEVCONNECTIONS Session Topics - Quick primer on containers - Container mgmt solutions - Kubernetes basics - Kubernetes deeper dive - Kubernetes beyond

More information

Replacing Docker With Podman. By Dan

Replacing Docker With Podman. By Dan Replacing Docker With Podman By Dan Walsh @rhatdan dnf install -y podman dnf install -y podman alias docker=podman Questions Blog: https://podman.io/blogs Github: https://github.com/projectatomic/libpod

More information

How to build scalable, reliable and stable Kubernetes cluster atop OpenStack.

How to build scalable, reliable and stable Kubernetes cluster atop OpenStack. How to build scalable, reliable and stable Kubernetes cluster atop OpenStack Bo Wang HouMing Wang bo.wang@easystack.cn houming.wang@easystack.cn Cluster resources management Cluster data persistence Contents

More information

OpenShift 3 Technical Architecture. Clayton Coleman, Dan McPherson Lead Engineers

OpenShift 3 Technical Architecture. Clayton Coleman, Dan McPherson Lead Engineers OpenShift 3 Technical Architecture Clayton Coleman, Dan McPherson Lead Engineers Principles The future of *aas Redefine the Application Networked components wired together Not just a web frontend anymore

More information

A REFERENCE ARCHITECTURE FOR DEPLOYING WSO2 MIDDLEWARE ON KUBERNETES

A REFERENCE ARCHITECTURE FOR DEPLOYING WSO2 MIDDLEWARE ON KUBERNETES A REFERENCE ARCHITECTURE FOR DEPLOYING WSO2 BY FRANK LEYMANN MIDDLEWARE ON KUBERNETES BY IMESH GUNARATNE SENIOR TECHNICAL LEAD, WSO2 WSO2 REST API DESIGN GUIDELINES TABLE OF CONTENTS 1. An Introduction

More information

An Introduction to Kubernetes

An Introduction to Kubernetes 8.10.2016 An Introduction to Kubernetes Premys Kafka premysl.kafka@hpe.com kafkapre https://github.com/kafkapre { History }???? - Virtual Machines 2008 - Linux containers (LXC) 2013 - Docker 2013 - CoreOS

More information

NephOS. A Single Turn-key Solution for Public, Private, and Hybrid Clouds

NephOS. A Single Turn-key Solution for Public, Private, and Hybrid Clouds NephOS A Single Turn-key Solution for Public, Private, and Hybrid Clouds What is NephOS? NephoScale NephOS is a turn-key OpenStack-based service-provider-grade cloud software suite designed for multi-tenancy.

More information

ACCELERATE APPLICATION DELIVERY WITH OPENSHIFT. Siamak Sadeghianfar Sr Technical Marketing Manager, April 2016

ACCELERATE APPLICATION DELIVERY WITH OPENSHIFT. Siamak Sadeghianfar Sr Technical Marketing Manager, April 2016 ACCELERATE APPLICATION DELIVERY WITH Siamak Sadeghianfar Sr Technical Marketing Manager, OpenShift @siamaks April 2016 IT Must Evolve to Stay Ahead of Demands WA CPU R RAM isc tar SI Jar vm dk MSI nic

More information

Application Centric Microservices Ken Owens, CTO Cisco Intercloud Services. Redhat Summit 2015

Application Centric Microservices Ken Owens, CTO Cisco Intercloud Services. Redhat Summit 2015 Application Centric Microservices Ken Owens, CTO Cisco Intercloud Services Redhat Summit 2015 Agenda Introduction Why Application Centric Application Deployment Options What is Microservices Infrastructure

More information

This document (including, without limitation, any product roadmap or statement of direction data) illustrates the planned testing, release and

This document (including, without limitation, any product roadmap or statement of direction data) illustrates the planned testing, release and Download the App to download the TIBCO NOW App visit now.tibco.com/2018/mobile-app 2 Mashery Local The Cloud Native API Platform for your Unique Environment Beerinder Rodey - Product Murty Gurajada - Senior

More information

Implementing SaaS on Kubernetes

Implementing SaaS on Kubernetes Implementing SaaS on Kubernetes Multi-Tenancy and Tenant Isolation on Kubernetes Michael Knapp Senior Software Engineer October 11, 2018 Certified Kubernetes Administrator Andrew Gao Software Engineer

More information

Kubernetes: Twelve KeyFeatures

Kubernetes: Twelve KeyFeatures Kubernetes: Twelve KeyFeatures Kubernetes is a Greek word which means helmsman, or the pilot of a ship. It is an open source project that was started by Google and derived from Borg, which is used inside

More information

Introduction to OpenDaylight: An Open Source Community around Software-Defined Networking

Introduction to OpenDaylight: An Open Source Community around Software-Defined Networking Introduction to OpenDaylight: An Open Source Community around Software-Defined Networking Terry Nakajima NEC Corporation OpenDaylight Board Member May 29, 2013 What is OpenDaylight? OpenDaylight is an

More information

KVM Weather Report. Amit Shah SCALE 14x

KVM Weather Report. Amit Shah SCALE 14x KVM Weather Report amit.shah@redhat.com SCALE 14x Copyright 2016, Licensed under the Creative Commons Attribution-ShareAlike License, CC-BY-SA. Virtualization Stack Virtualization Stack 3 QEMU Creates

More information

NVMe over Fabrics (NVMe-oF) For Containers

NVMe over Fabrics (NVMe-oF) For Containers NVMe over Fabrics (NVMe-oF) For s Scaling Cloud-Native lications With Elastic And High-Performance Storage Sudhakar Mungamoori Director Storage Solutions, Toshiba Memory America Inc. Venkat Ramakrishnan

More information

What s New in Red Hat OpenShift Container Platform 3.4. Torben Jäger Red Hat Solution Architect

What s New in Red Hat OpenShift Container Platform 3.4. Torben Jäger Red Hat Solution Architect What s New in Red Hat OpenShift Container Platform 3.4 Torben Jäger Red Hat Solution Architect OpenShift Roadmap OpenShift Container Platform 3.2 Kubernetes 1.2 & Docker 1.9 Red Hat

More information

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme NET1510 Introduction to NSX-T Architecture Dimitri Desmidt ddesmidt@vmware.com Andrew Voltmer avoltmer@vmware.com #VMworld #NET1510BU Disclaimer This presentation may contain product features that are

More information