Kubernetes on Openstack
|
|
- Clifford Williamson
- 5 years ago
- Views:
Transcription
1 Kubernetes on Openstack Saverio Proto Lugano 2018 SWITCH 1
2 Infrastructure & Data Services Your added value Our customers Our offer 2018 SWITCH 2
3 Your added value SWITCH made Swiss made Swiss law and data location Scalable storage and computing power on demand with immediate availability in accordance to the need of and controlled by the institutions Flexible usage and charging model, no up-front investment Simple administration; integrated into the academic network of SWITCH; security and identity services included Support for academic use cases Created together with you 2018 SWITCH 3
4 Our customers Higher education Cantonal universities ETH domain with research institutions Universities of applied sciences Universities of teacher education University-related organizations Spin-Offs Research institutions elearning Center University hospitals 2018 SWITCH 4
5 Our offer SWITCHengines Virtual Private Cloud (VPC) SCALE-UP (Project)* * For developing academic services with 9 universities, as part of the Scientific Information projects mandated by swissuniversities SWITCH 5
6 SWITCHengines Customer tailored computing and storage performance for universities, research and teaching further developed in the SCALE-UP project mandated by swissuniversities. Customers Universities Research institutions elearning Center University hospitals Spin-Offs Services SWITCHengines (IaaS) Virtual Private Cloud (VPC) SCALE-UP (academic project) Your benefits Your data in Switzerland Integrated network and security Support for academic use cases Simple administration and billing Created together with you 2018 SWITCH 6
7 Saverio Proto Openstack Cloud Engineer at SWITCH. He works in NRENs since 2011, first in Italy and then in Switzerland. He has significant experience in running critical infrastructures using Open Source software. He works together with the Infrastructure & Data team, to deliver an Openstack based cloud to the Swiss Universities SWITCH 7
8 Kubernetes (K8s): what is it? Container orchestration. Open Source system to deploy containerized applications. What you should already know: Docker, build docker containers Run your application in a container What Kubernentes will do for me? Manage the lifecycle of containers Schedule the containers to the hosts Attach storage volumes to the containers Setup networking 2018 SWITCH 8
9 Kubernetes on Openstack K8s can interact with the Openstack API Use keystone for authentication Create volumes Create load balancers Set routes in Neutron routers 2018 SWITCH 9
10 Deploy K8s on Openstack Forked from This ansible playbook will create Openstack instances, and will install Kubernetes on them. export KEY=keyname export IMAGE="Ubuntu Xenial (SWITCHengines)" export NETWORK=k8s ( read REAME for complete variables list) ansible-playbook site.yaml 2018 SWITCH 10
11 Start! kubectl get nodes NAME STATUS AGE VERSION k8s-1 Ready 3m v1.9.4 k8s-2 Ready 3m v1.9.4 k8s-3 Ready 3m v1.9.4 k8s-master Ready 4m v SWITCH 11
12 Client config The playbook returns an admin.conf that looks like this: apiversion: v1 clusters: - cluster: certificate-authority-data: [..CUT..] server: name: kubernetes contexts: - context: cluster: kubernetes user: kubernetes-admin name: kubernetes-admin@kubernetes current-context: kubernetes-admin@kubernetes kind: Config preferences: {} users: - name: kubernetes-admin user: client-certificate-data: [..CUT..] client-key-data: [..CUT..] 2018 SWITCH 12
13 Client config kubectl is the command line tool ~/.kube/config is the config file Supports Openstack Keystone authentication kubectl is able to read usual Openstack OS_ env vars kubectl config set-credentials \ osuser --auth-provider=openstack source ~/openrc 2018 SWITCH 13
14 Client config Create a context to use the Openstack User kubectl config set-context \ --cluster=kubernetes \ --user=osuser osuser@kubernetes Lets use the context kubectl config use-context osuser@kubernetes 2018 SWITCH 14
15 Keystone authentication for k8s 1. Token issue Openstack Keystone Kubectl client 4. Token validation with keystone 2. Request with bearer token WebHook KubeApi server 3. Calling WebHook for token validation 2018 SWITCH 15
16 Configure the webhook kube-apiserver --authentication-token-webhook-config-file=webhook.kubeconfig.yaml --- apiversion: v1 clusters: - cluster: insecure-skip-tls-verify: true server: name: webhook contexts: - context: cluster: webhook user: webhook name: webhook current-context: webhook kind: Config preferences: {} users: - name: webhook 2018 SWITCH 16
17 Start the webhook container It is just a container: More recent source code can be found here: make image-k8s-keystone-auth 2018 SWITCH 17
18 Authorization via RBAC Keystone tested for Authentication Default RBAC for Kubernetes implements Authorization Keystone projects are mapped to Kubernetes Groups 2018 SWITCH 18
19 K8s Master interaction with Openstack /etc/kubernetes/cloud-config [Global] auth-url = username = saverio.proto@switch.ch password = ****** tenant-name = saverio.proto@switch.ch region = ZH [BlockStorage] trust-device-path = false bs-version = v2 [Route] router-id = 3a6cd142-91cd-4a04-9a86-a73455a0155d [LoadBalancer] lb-version = v2 floating-network-id = 3cc83f7d b-ba17-f3510c7902e8 subnet-id = 5e18c72c bd84-ec54cf SWITCH 19
20 Interaction with Openstack /etc/kubernetes/manifests/kube-controller-manager.yaml spec: containers: - command: - kube-controller-manager - --cloud-provider=openstack - --cloud-config=/etc/kubernetes/cloud-config 2018 SWITCH 20
21 Kubernetes Neutron Networking I changed my the way of doing Networking after the Openstack summit in Sydney Use --network-plugin=kubenet b /kubernetes-on-openstack-the-technical-details 2018 SWITCH 21
22 Kubernetes Neutron Networking neutron router Has static routes to reach Pod Networks Default gateway is the neutron router VM aka k8s node Default gateway is the neutron router VM aka k8s node Pod network assigned by the k8s master Pod network assigned by the k8s master Pod Pod Pod Pod 2018 SWITCH 22
23 Persistent Storage Docker containers run into Openstack instances Persistent storage is cinder volumes K8s will attach the Cinder Volume to the right Openstack instance were the docker container is scheduled volumes: - name: mysql-persistent-storage cinder: volumeid: <uuid> fstype: ext SWITCH 23
24 Persistent storage This method is not practical we have to manage Cinder volumes on the side Export UUID Solution Define a Storage Class 2018 SWITCH 24
25 Storage Class kind: StorageClass apiversion: storage.k8s.io/v1 metadata: name: default annotations: storageclass.beta.kubernetes.io/isdefault-class: "true" provisioner: kubernetes.io/cinder parameters: type: fast availability: nova 2018 SWITCH 25
26 Persistent Storage pvc kind: PersistentVolumeClaim apiversion: v1 metadata: name: mysql-pvc annotations: volume.beta.kubernetes.io/storage-class: default spec: accessmodes: - ReadWriteOnce resources: requests: storage: 30Gi 2018 SWITCH 26
27 Persistent Storage with pvc volumes: - name: mysql-persistent-storage persistentvolumeclaim: claimname: mysql-pvc 2018 SWITCH 27
28 Openstack LBaaSv2 with K8s I suggest not to use it, at least in Openstack Newton Both DNAT and SNAT are necessary you lose the client IP information IPv6 support status is unknown to me It is a pure L4 loadbalancer, cannot terminate TLS connections or rewrite HTTP headers 2018 SWITCH 28
29 Openstack LBaaSv2 Svc FloatingIP configured here Both DNAT and SNAT are necessary here. neutron LBaaS neutron router Openstack project network VM aka k8s node Default gateway is the neutron router VM aka k8s node Default gateway is the neutron router Pod network assigned by the k8s master Pod network assigned by the k8s master Pod Pod Pod Pod 2018 SWITCH 29
30 Kubernetes NGINX Ingress An API object that manages external access to the services in a cluster, typically HTTP. Ingress can provide load balancing, TLS termination and name-based virtual hosting. At least two known implementations Nginx based HAProxy 2018 SWITCH 30
31 Kubernetes NGINX Ingress It is a special privileged Docker container running NGINX On the k8s master (s) or dedicated VM Has access to external IP addresses and cluster IP addresses Kubernetes cluster network VM k8s master VM aka k8s node VM aka k8s node Default network namespace (docker net=host) Kubernetes-nginx-ingress Pod network assigned by the k8s master Pod network assigned by the k8s master Pod Pod Pod Pod 2018 SWITCH 31
32 How I use the Ingress? 2018 SWITCH 32
33 Getting involved Slack channel #sig-openstack Join via Follow our cloud blog: Get in touch with me 2018 SWITCH 33
34 2018 SWITCH 34 Thank you! Questions?
VMware Integrated OpenStack with Kubernetes Getting Started Guide. VMware Integrated OpenStack 4.0
VMware Integrated OpenStack with Kubernetes Getting Started Guide VMware Integrated OpenStack 4.0 VMware Integrated OpenStack with Kubernetes Getting Started Guide You can find the most up-to-date technical
More informationVMware Integrated OpenStack with Kubernetes Getting Started Guide. VMware Integrated OpenStack 4.1
VMware Integrated OpenStack with Kubernetes Getting Started Guide VMware Integrated OpenStack 4.1 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/
More informationCONTAINERS AND MICROSERVICES WITH CONTRAIL
CONTAINERS AND MICROSERVICES WITH CONTRAIL Scott Sneddon Sree Sarva DP Ayyadevara Sr. Director Sr. Director Director Cloud and SDN Contrail Solutions Product Line Management This statement of direction
More informationIntroduction to Kubernetes Storage Primitives for Stateful Workloads
September 12, 2017 Introduction to Kubernetes Storage Primitives for Stateful Workloads Saad Ali Google @the_saad_ali Chris Duchesne {code} @ChrisDuchesne Agenda Presentation Quick intro to Kubernetes
More informationStackube Documentation
Stackube Documentation Release Stackube development team Oct 29, 2017 Contents 1 Stackube Authors 3 2 Introduction 5 2.1 Stackube Architecture.......................................... 5 2.2 Stackube
More informationWhat s New in Kubernetes 1.10
What s New in Kubernetes 1.10 1 Presenters Ihor Dvoretskyi, CNCF, ihor@cncf.io - Release Team Member, 1.10 Release Features Lead, SIG-PM Lead Saad Ali, Google, saadali@google.com - SIG-Storage Lead Michelle
More informationMcAfee Cloud Workload Security Installation Guide. (McAfee epolicy Orchestrator)
McAfee Cloud Workload Security 5.1.0 Installation Guide (McAfee epolicy Orchestrator) COPYRIGHT Copyright 2018 McAfee, LLC TRADEMARK ATTRIBUTIONS McAfee and the McAfee logo, McAfee Active Protection, epolicy
More informationNote: Currently (December 3, 2017), the new managed Kubernetes service on Azure (AKS) does not yet support Windows agents.
Create a Hybrid Kubernetes Linux/Windows Cluster in 7 Easy Steps Azure Container Service (ACS) makes it really easy to provision a Kubernetes cluster in Azure. Today, we'll walk through the steps to set
More informationManaging Compute and Storage at Scale with Kubernetes. Dan Paik / Google
Managing Compute and Storage at Scale with Kubernetes Dan Paik / Google Have You Recently... played a hit mobile game? shopped at an online marketplace? followed breaking news? attended a concert? filed
More informationGetting Started with VMware Integrated OpenStack with Kubernetes. VMware Integrated OpenStack 5.1
Getting Started with VMware Integrated OpenStack with Kubernetes VMware Integrated OpenStack 5.1 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/
More informationManaging and Protecting Persistent Volumes for Kubernetes. Xing Yang, Huawei and Jay Bryant, Lenovo
Managing and Protecting Persistent Volumes for Kubernetes Xing Yang, Huawei and Jay Bryant, Lenovo Bio Xing Yang Principal Architect at Huawei Project and Architecture Lead of OpenSDS Core Reviewer in
More informationHow to build scalable, reliable and stable Kubernetes cluster atop OpenStack.
How to build scalable, reliable and stable Kubernetes cluster atop OpenStack Bo Wang HouMing Wang bo.wang@easystack.cn houming.wang@easystack.cn Cluster resources management Cluster data persistence Contents
More informationOpenShift 3 Technical Architecture. Clayton Coleman, Dan McPherson Lead Engineers
OpenShift 3 Technical Architecture Clayton Coleman, Dan McPherson Lead Engineers Principles The future of *aas Redefine the Application Networked components wired together Not just a web frontend anymore
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
NET1522BE Kubernetes Networking with NSX-T Deep Dive Ali Al Idrees Yves Fauser #VMworld #NET1522BE Disclaimer This presentation may contain product features that are currently under development. This overview
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
NET1522BU Kubernetes Networking with NSX-T Deep Dive #VMworld #NET1522BU Disclaimer This presentation may contain product features that are currently under development. This overview of new technology
More informationRed Hat OpenStack Platform 10 Product Guide
Red Hat OpenStack Platform 10 Product Guide Overview of Red Hat OpenStack Platform OpenStack Team Red Hat OpenStack Platform 10 Product Guide Overview of Red Hat OpenStack Platform OpenStack Team rhos-docs@redhat.com
More informationVirtual Infrastructure: VMs and Containers
Virtual Infrastructure: VMs and Containers Andy Bavier and Gopinath Taget ONF CORD Build Nov. 7-9, 2017 An Operator Led Consortium CORD platform evolution Cutting edge innovate Initial CORD prototype (ONS
More informationNGINX: From North/South to East/West
NGINX: From North/South to East/West Reducing Complexity with API and Microservices Traffic Management and NGINX Plus Speakers: Alan Murphy, Regional Solution Architect, APAC September, 2018 About NGINX,
More informationBuilding a Kubernetes on Bare-Metal Cluster to Serve Wikipedia. Alexandros Kosiaris Giuseppe Lavagetto
Building a Kubernetes on Bare-Metal Cluster to Serve Wikipedia Alexandros Kosiaris Giuseppe Lavagetto Introduction The Wikimedia Foundation is the organization running the infrastructure supporting Wikipedia
More informationInfoblox IPAM Driver for Kubernetes User's Guide
Infoblox IPAM Driver for Kubernetes User's Guide 1. Infoblox IPAM Driver for Kubernetes...................................................................... 3 1.1 Overview.......................................................................................
More informationPart2: Let s pick one cloud IaaS middleware: OpenStack. Sergio Maffioletti
S3IT: Service and Support for Science IT Cloud middleware Part2: Let s pick one cloud IaaS middleware: OpenStack Sergio Maffioletti S3IT: Service and Support for Science IT, University of Zurich http://www.s3it.uzh.ch/
More informationOpenStack Magnum Hands-on. By Saulius Alisauskas and Bryan Havenstein
OpenStack Magnum Hands-on By Saulius Alisauskas and Bryan Havenstein Prerequisites & Expectations 8GB RAM minimum Expectations This will be very slow due to 2 layers of virtualization Things might fail
More informationInfoblox IPAM Driver for Kubernetes. Page 1
Infoblox IPAM Driver for Kubernetes Page 1 1. CNI-Infoblox IPAM Driver for Kubernetes.................................................................. 3 1.1 Overview.......................................................................................
More informationServices and Networking
This chapter contains the following topics: Load Balancing Kubernetes Services using NGINX, on page 1 Network Policies, on page 6 Load Balancer Services, on page 7 Load Balancing Kubernetes Services using
More informationOpenShift Dedicated 3 Release Notes
OpenShift Dedicated 3 Release Notes Last Updated: 2018-05-17 OpenShift Dedicated 3 Release Notes Legal Notice Copyright 2018 Red Hat, Inc. The text of and illustrations in this document are licensed by
More informationKuryr & Fuxi. OpenStack networking and storage for Docker Swarm containers. Hongbin Lu Antoni Segura Puimedon
Kuryr & Fuxi OpenStack networking and storage for Docker Swarm containers Hongbin Lu Antoni Segura Puimedon A bit of background Kuryr-libnetwork Fuxi Started during Liberty Brings Neutron Networking to
More informationDisaster Recovery and Data Protection for Kubernetes Persistent Volumes. Xing Yang, Principal Architect, Huawei
Disaster Recovery and Data Protection for Kubernetes Persistent Volumes Xing Yang, Principal Architect, Huawei Agenda Kubernetes Persistent Volumes and CSI Why OpenSDS for Kubernetes and CSI OpenSDS Overview
More information"Charting the Course... H8Q14S HPE Helion OpenStack. Course Summary
Course Summary Description This course will take students through an in-depth look at HPE Helion OpenStack V5.0. The course flow is optimized to address the high-level architecture and HPE Helion OpenStack
More informationRed Hat JBoss Middleware for OpenShift 3
Red Hat JBoss Middleware for OpenShift 3 OpenShift Primer Get started with OpenShift Last Updated: 2018-01-09 Red Hat JBoss Middleware for OpenShift 3 OpenShift Primer Get started with OpenShift Legal
More informationSecure Kubernetes Container Workloads
Secure Kubernetes Container Workloads with Production-Grade Networking Cynthia Thomas Irena Berezovsky Tim Hockin CIA IT operations have top secret apps for their agents, most of which require isolation
More informationSecuring Microservice Interactions in Openstack and Kubernetes
Securing Microservice Interactions in Openstack and Kubernetes Yoshio Turner & Jayanth Gummaraju Co- Founders @ Banyan https://www.banyanops.com Banyan Founded in the middle of 2015 In San Francisco, CA
More informationWhat s New in Red Hat OpenShift Container Platform 3.4. Torben Jäger Red Hat Solution Architect
What s New in Red Hat OpenShift Container Platform 3.4 Torben Jäger Red Hat Solution Architect OpenShift Roadmap OpenShift Container Platform 3.2 Kubernetes 1.2 & Docker 1.9 Red Hat
More informationKubernetes, Persistent Volumes and the Pure Service Orchestrator. Simon Dodsley, Director of New Stack Technologies
Kubernetes, Persistent Volumes and the Pure Service Orchestrator Simon Dodsley, Director of New Stack Technologies Version 3.0, 2 July 2018 Contents Notices... 4 Executive Summary... 5 Audience... 5 Kubernetes
More informationKuber-what?! Learn about Kubernetes
DEVNET-1999 Kuber-what?! Learn about Kubernetes Ashley Roach, Principal Engineer Evangelist Agenda Objectives A brief primer on containers The problems with running containers at scale Orchestration systems
More informationgcp / gke / k8s microservices
gcp / gke / k8s microservices managing microservices with kubernetes 08.17.2016 Austin GCPUG Lou Scalpati CTO RxWiki microservices What are Microservices generally REST APIs returning json organized around
More informationKubeNow Documentation
KubeNow Documentation Release 0.3.0 mcapuccini Dec 13, 2017 Getting Started 1 Prerequisites 3 1.1 Install Docker.............................................. 3 1.2 Get KubeNow..............................................
More informationOpenStack Tutorial. Shihabur R. Chowdhury CS Winter 2017 University of Waterloo
OpenStack Tutorial Shihabur R. Chowdhury CS 856 - Winter 2017 University of Waterloo Environment Setup Download the VirtualBox image from here Open VirtualBox and go to File > Import Appliance Choose the
More informationConvergence of VM and containers orchestration using KubeVirt. Chunfu Wen
Convergence of VM and containers orchestration using KubeVirt Chunfu Wen chwen@redhat.com Agenda Context Introduction What Is Kubevirt And How It Feel Kubevirt Architecture And Design Demo FIRST A LITTLE
More informationImplementing SaaS on Kubernetes
Implementing SaaS on Kubernetes Multi-Tenancy and Tenant Isolation on Kubernetes Michael Knapp Senior Software Engineer October 11, 2018 Certified Kubernetes Administrator Andrew Gao Software Engineer
More informationRaw Block Volume in Kubernetes Mitsuhiro Tanino, Principal Software Engineer, Hitachi Vantara
Raw Block Volume in Kubernetes Mitsuhiro Tanino, Principal Software Engineer, Hitachi Vantara Agenda Background Raw Block Volume Support Usage of Raw Block Volumes Implementation deep dive Future Work
More informationVMWARE PIVOTAL CONTAINER SERVICE
DATASHEET VMWARE PIVOTAL CONTAINER SERVICE AT A GLANCE VMware Pivotal Container Service (PKS) is a production-grade Kubernetes-based container solution equipped with advanced networking, a private container
More informationApplication Centric Microservices Ken Owens, CTO Cisco Intercloud Services. Redhat Summit 2015
Application Centric Microservices Ken Owens, CTO Cisco Intercloud Services Redhat Summit 2015 Agenda Introduction Why Application Centric Application Deployment Options What is Microservices Infrastructure
More informationHow to Re-Architect without Breaking Stuff (too much) Owen Garrett March 2018
How to Re-Architect without Breaking Stuff (too much) Owen Garrett March 2018 owen@nginx.com All problems in computer science can be solved by another layer of indirection --- David Wheeler, FRS This giant
More informationUsing PCF Ops Manager to Deploy Hyperledger Fabric
Using PCF Ops Manager to Deploy Hyperledger Fabric By VMware Introduction Pivotal Cloud Foundry Operations Manager (PCF Ops Manager for short) is a graphical interface used to configure and deploy various
More informationOTC API Technical White Paper. Issue 2.0. Date
Issue 2.0 Date 2016-10-26 About This Document Content About This Document... iv 1 OTC API Overview... 1 1.1 OTC Introduction... 1 1.2 OpenStack Introduction... 2 1.3 Relationship Between OTC and OpenStack...
More informationContinuous delivery while migrating to Kubernetes
Continuous delivery while migrating to Kubernetes Audun Fauchald Strand Øyvind Ingebrigtsen Øvergaard @audunstrand @oyvindio FINN Infrastructure History Kubernetes at FINN Agenda Finn Infrastructure As
More informationAvi LBaaS Driver Installation Instructions for Contrail
Page 1 of 6 Avi LBaaS Driver Installation Instructions for Contrail view online This article details installation of the Avi LBaaS driver in an OpenStack + Contrail environment. There are two mutually
More informationInfoblox Kubernetes1.0.0 IPAM Plugin
2h DEPLOYMENT GUIDE Infoblox Kubernetes1.0.0 IPAM Plugin NIOS version 8.X August 2018 2018 Infoblox Inc. All rights reserved. Infoblox Kubernetes 1.0.0 IPAM Deployment Guide August 2018 Page 1 of 18 Overview...
More informationMinimal OpenStack Starting Your OpenStack Journey
Minimal OpenStack Starting Your OpenStack Journey Sean Dague / Aug 19th, 2015 Twitter: @sdague Blog: dague.net The Mission of OpenStack "To produce the ubiquitous Open Source Cloud Computing platform that
More informationLife of a Packet. KubeCon Europe Michael Rubin TL/TLM in GKE/Kubernetes github.com/matchstick. logo. Google Cloud Platform
logo Life of a Packet KubeCon Europe 2017 Michael Rubin TL/TLM in GKE/Kubernetes github.com/matchstick Google Cloud Platform Kubernetes is about clusters Because of that, networking
More informationWolfram Richter Red Hat. OpenShift Container Netzwerk aus Sicht der Workload
Wolfram Richter Red Hat OpenShift Container Netzwerk aus Sicht der Workload Why this session? OpenShift is great for web applications, but we want to do X will this work? X { Analytics, Non-HTTP, High-
More informationDocker Enterprise Edition 2.0 Platform Public Beta Install and Exercises Guide
Docker Enterprise Edition 2.0 Platform Public Beta Install and Exercises Guide Welcome to the Docker EE 2.0 Public Beta! Below you will find installation instructions as well as series of exercises to
More informationDEVELOPER INTRO
DEVELOPER INTRO TO @dpokusa O CZYM BĘDZIE? O CZYM BĘDZIE? Czym jest i jak działa kubernetes? O CZYM BĘDZIE? Czym jest i jak działa kubernetes? Jak zacząć pracować z kubernetesem? O CZYM BĘDZIE? Czym jest
More informationLayer-4 to Layer-7 Services
Overview, page 1 Tenant Edge-Firewall, page 1 LBaaS, page 2 FWaaS, page 4 Firewall Configuration, page 6 Overview Layer-4 through Layer-7 services support(s) end-to-end communication between a source and
More informationTEN LAYERS OF CONTAINER SECURITY
TEN LAYERS OF CONTAINER SECURITY Tim Hunt Kirsten Newcomer May 2017 ABOUT YOU Are you using containers? What s your role? Security professionals Developers / Architects Infrastructure / Ops Who considers
More informationS Implementing DevOps and Hybrid Cloud
S- Implementing DevOps and Hybrid Cloud Srihari Angaluri Lenovo Data Center Group Red Hat Summit // Outline DevOps and Containers Architectural Considerations Lenovo Cloud Technology Center Implementing
More informationProject Kuryr. Antoni Segura Puimedon (apuimedo) Gal Sagie (gsagie)
Project Kuryr Antoni Segura Puimedon (apuimedo) Gal Sagie (gsagie) What are the problems? Reinventing networking abstractions Changing and vendor specific solutions Flannel Weave SocketPlane Overlay2 for
More informationhttps://bit.do/pgsessions-postgresqlkubernetes PostgreSQL and Kubernetes Database as a Service without a Vendor Lock-in Oleksii Kliukin PostgreSQL Sessions 10 Paris, France About me PostgreSQL Engineer
More informationEfficiently exposing apps on Kubernetes at scale. Rasheed Amir, Stakater
Efficiently exposing apps on Kubernetes at scale Rasheed Amir, Stakater Problem Kubernetes runs container workloads in Pods... but these are not automatically accessible outside the cluster What options
More informationKubernetes Container Networking with NSX-T Data Center Deep Dive
Kubernetes Container Networking with NSX-T Data Center Deep Dive Yasen Simeonov, VMware, Inc. #vmworld NET1677BU #NET1677BU Disclaimer This presentation may contain product features or functionality that
More informationTop Nine Kubernetes Settings You Should Check Right Now to Maximize Security
White Paper Top Nine Kubernetes Settings You Should Check Right Now to Maximize Security If you use Kubernetes, you know how much it can increase development velocity and reduce operational complexity.
More informationIngress Kubernetes Tutorial
Ingress Kubernetes Tutorial 1 / 6 2 / 6 3 / 6 Ingress Kubernetes Tutorial Edit This Page. Ingress. An API object that manages external access to the services in a cluster, typically HTTP. Ingress can provide
More informationKubernetes 1.9 Features and Future
OpenShift Commons Briefing: Kubernetes 1.9 Features and Future Derek Carr - Lead Engineer, Kubernetes What s new this time around? RELEASE STATS Shorter release (end of year) 6000+ pull requests merged
More informationCONTINUOUS INTEGRATION CONTINUOUS DELIVERY
USING KUBERNETES FOR CONTINUOUS INTEGRATION AND CONTINUOUS DELIVERY Carlos Sanchez csanchez.org / @csanchez ABOUT ME Engineer @ CloudBees, Scaling Jenkins Author of Jenkins Kubernetes plugin Contributor
More informationDocker All The Things
OpenStack Services Docker All The Things and Kubernetes and Atomic OpenStack Summit Paris, November 2014 @brentholden @jameslabocki Agenda The Problem Current Solutions Tomorrow s Improvements Demonstration
More informationBringing Security and Multitenancy. Lei (Harry) Zhang
Bringing Security and Multitenancy to Kubernetes Lei (Harry) Zhang About Me Lei (Harry) Zhang #Microsoft MVP in cloud and datacenter management though I m a Linux guy :/ Previous: VMware, Baidu Feature
More informationOPENSTACK + KUBERNETES + HYPERCONTAINER. The Container Platform for NFV
OPENSTACK + KUBERNETES + HYPERCONTAINER The Container Platform for NFV ABOUT ME Harry Zhang ID: @resouer Coder, Author, Speaker Member of Hyper Feature Maintainer & Project Manager of Kubernetes sig-scheduling,
More informationDeployment Guide for Nuage Networks VSP
Page 1 of 29 view online Overview This document discusses the deployment and configuration of Avi Vantage Load Balancer in a Nuage Networks integrated OpenStack platform for a single tenant mode. The following
More informationQuestion: 2 Kubernetes changed the name of cluster members to "Nodes." What were they called before that? Choose the correct answer:
Volume: 89 Questions + 17 Labs Question: 1 Containers are run on which of these? A. Services B. Controllers C. Nodes D. None of these Answer: C Nodes run the pods. Question: 2 Kubernetes changed the name
More informationDeployment Guide for Nuage Networks VSP
Page 1 of 11 view online Overview This document discusses the deployment and configuration of Avi Vantage Load Balancer in a Nuage Networks integrated OpenStack platform for a single tenant mode. The following
More information/ Cloud Computing. Recitation 5 February 14th, 2017
15-319 / 15-619 Cloud Computing Recitation 5 February 14th, 2017 1 Overview Administrative issues Office Hours, Piazza guidelines Last week s reflection Project 2.1, OLI Unit 2 modules 5 and 6 This week
More informationKUBERNETES IN A GROWN ENVIRONMENT AND INTEGRATION INTO CONTINUOUS DELIVERY
KUBERNETES IN A GROWN ENVIRONMENT AND INTEGRATION INTO CONTINUOUS DELIVERY Stephan Fudeus, Expert Continuous Delivery Dr. Sascha Mühlbach, Expert Infrastructure Architect United Internet / 1&1 Mail & Media
More informationOpenStack Mitaka Release Overview
OpenStack Mitaka Release Overview Brad Topol, Ph.D., IBM Distinguished Engineer, OpenStack Core Contributor Davanum Srinivas, Community Architect and OpenStack TC Member / Principal Software Engineer,
More informationTable of Contents DevOps Administrators
DevOps Administrators Table of Contents DevOps Administrators Overview for DevOps Admins Managing Images, Projects, Users Configure a Registry Create Users Assign the Administrator Role Create a Project
More informationWHITE PAPER. RedHat OpenShift Container Platform. Benefits: Abstract. 1.1 Introduction
WHITE PAPER RedHat OpenShift Container Platform Abstract Benefits: Applications are designed around smaller independent components called microservices. Elastic resources: Scale up or down quickly and
More informationScaling Jenkins with Docker and Kubernetes Carlos
Scaling Jenkins with Docker and Kubernetes Carlos Sanchez @csanchez Containers & micro services But it is not trivial @YourTwitterHandle Docker Linux containers Union File System File System Processes
More informationLoad Balancing Nginx Web Servers with OWASP Top 10 WAF in AWS
Load Balancing Nginx Web Servers with OWASP Top 10 WAF in AWS Quick Reference Guide V1.0.2 ABOUT THIS GUIDE This document provides a quick reference guide on how to load balance Nginx Web Servers and configure
More informationThe Long Road from Capistrano to Kubernetes
The Long Road from Capistrano to Kubernetes Tobias Schwab, Co-Founder of PhraseApp Slides: http://bit.ly/cap-to-kube How to deploy Ruby on Rails? Deploying Ruby on Rails required on all servers: OS + system
More informationProject Calico v3.2. Overview. Architecture and Key Components. Project Calico provides network security for containers and virtual machine workloads.
Project Calico v3.2 Overview Benefits Simplicity. Traditional Software Defined Networks (SDNs) are complex, making them hard to deploy and troubleshoot. Calico removes that complexity, with a simplified
More informationBuild Cloud like Rackspace with OpenStack Ansible
Build Cloud like Rackspace with OpenStack Ansible https://etherpad.openstack.org/p/osa-workshop-01 Jirayut Nimsaeng DevOps & Cloud Architect 2nd Cloud OpenStack-Container Conference and Workshop 2016 Grand
More informationRed Hat OpenShift Roadmap Q4 CY16 and H1 CY17 Releases. Lutz Lange Solution
Red Hat OpenShift Roadmap Q4 CY16 and H1 CY17 Releases Lutz Lange Solution Architect @AtomicContainer OpenShift Roadmap OpenShift Container Platform 3.2 Kubernetes 1.2 & Docker 1.9
More informationThe speed of containers, the security of VMs. KataContainers.io
* The speed of containers, the security of VMs KataContainers.io Contents Project Overview Technical Details Governance Get Involved History Intel Clear Containers * May 2015 Dec 2017 *Other names and
More informationPRP Distributed Kubernetes Cluster
PRP Distributed Kubernetes Cluster John Graham (UCSD) Dmitry Mishin (SDSC) Shawfeng Dong (SLAC) Workshop on Applying Advanced AI Workflows in Astronomy and Microscopy UCSC Silicon Valley Campus, Santa
More informationWhat s New in K8s 1.3
What s New in K8s 1.3 Carter Morgan Background: 3 Hurdles How do I write scalable apps? The App How do I package and distribute? What runtimes am I locked into? Can I scale? The Infra Is it automatic?
More informationUsing the vrealize Orchestrator OpenStack Plug-In 2.0. Modified on 19 SEP 2017 vrealize Orchestrator 7.0
Using the vrealize Orchestrator OpenStack Plug-In 2.0 Modified on 19 SEP 2017 vrealize Orchestrator 7.0 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/
More informationKubernetes made easy with Docker EE. Patrick van der Bleek Sr. Solutions Engineer NEMEA
Kubernetes made easy with Docker EE Patrick van der Bleek Sr. Solutions Engineer NEMEA Docker Enterprise Edition is More than Containers + Orchestration... DOCKER ENTERPRISE EDITION Kubernetes integration
More informationagenda PAE Docker Docker PAE
Docker 2016.03.26 agenda PAE Docker Docker PAE 2 3 PAE PlCloud APP Engine Docker Docker Caas APP 4 APP APP volume images 5 App 6 APP Show Time 7 8 Docker Public DockerHup Private registry push pull AUFS
More informationInstalling VMR with V2PC
This chapter describes the procedure for installing VMR v1.2.1_018 or later on Red Hat OpenShift v1.5. These procedures assume you are using V2PC as the control interface for VMR. The following topics
More informationNET1821BU THE FUTURE OF NETWORKING AND SECURITY WITH NSX-T Bruce Davie CTO, APJ 2
NET1821BU The Future of Network Virtualization with NSX-T #VMworld #NET1821BU NET1821BU THE FUTURE OF NETWORKING AND SECURITY WITH NSX-T Bruce Davie CTO, APJ 2 DISCLAIMER This presentation may contain
More informationManaging Pod Through Cisco VIM Insight
The following topics tell you how to install and replace Cisco Virtual Infrastructure Manager (VIM) nodes using Cisco VIM Insight. Managing Hardware, page 1 Managing Software, page 7 Pod User Administration,
More informationVMware Integrated OpenStack User Guide. VMware Integrated OpenStack 4.1
VMware Integrated OpenStack User Guide VMware Integrated OpenStack 4.1 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have comments about
More informationImplementing Container Application Platforms with Cisco ACI
BRKDCN-2627 Implementing Container Application Platforms with Cisco ACI Andres Vega Product Manager, Engineering Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session
More informationOperating an OpenStack Cloud
Operating an OpenStack Cloud Learning from building & operating SWITCHengines SA7 T3, 26.11.2015 Jens-Christian Fischer jens-christian.fischer@switch.ch SWITCH Non Profit Foundation IT Services for Universities
More informationCode: Slides:
Workshop Resources Code: https://github.com/beekpr/public-workshops Slides: https://tinyurl.com/yc2uo3wk Make sure minikube and kubectl is setup (labs/1-setup-cluster.md has some instructions) Kubernetes
More informationOPENSHIFT 3.7 and beyond
OPENSHIFT 3.7 and beyond Qu est qu un conteneur? APPLICATIONS INFRASTRUCTURE 2 Processus sur un système d exploitation Applications et toutes ses dépendances Plus simple, léger et dense des VMs Portable
More informationVMWARE PKS. What is VMware PKS? VMware PKS Architecture DATASHEET
DATASHEET VMWARE PKS AT A GLANCE VMware PKS is a production-grade Kubernetes-based container solution equipped with advanced networking, a private container registry, and full lifecycle management. VMware
More informationContainer-Native Storage
Container-Native Storage Solving the Persistent Storage Challenge with GlusterFS Michael Adam Manager, Software Engineering José A. Rivera Senior Software Engineer 2017.09.11 WARNING The following presentation
More informationHitachi & Red Hat collaborate: Container migration guide
Hitachi & Red Hat collaborate: Container migration guide In open source, we feel strongly that to do something well, you have to get a lot of people involved - Linus Torvalds Tatsuya Yamada & Scott McCarty
More informationOpen Service Broker API: Creating a Cross-Platform Standard Doug Davis IBM Shannon Coen Pivotal
Open Service Broker API: Creating a Cross-Platform Standard Doug Davis IBM Shannon Coen Pivotal Motivations Application development teams require services From app dependencies to team enablement Managed
More informationEvolution of Kubernetes in One Year From Technical View
Evolution of Kubernetes in One Year From Technical View Harry Zhang Background Docker = Fan economy Github search stack overflow DockerCon de facto Docker Kubernetes diversity Docker Image Image ACI RunC
More information