THE STATE OF CONTAINERS

Similar documents
Red Hat Roadmap for Containers and DevOps

TEN LAYERS OF CONTAINER SECURITY

TRAINING AND CERTIFICATION UPDATE

Next Generation Tools for container technology. Dan

ACCELERATE APPLICATION DELIVERY WITH OPENSHIFT. Siamak Sadeghianfar Sr Technical Marketing Manager, April 2016

Container Security and new container technologies. Dan

Container Deployment and Security Best Practices

WHITE PAPER. RedHat OpenShift Container Platform. Benefits: Abstract. 1.1 Introduction

OPENSTACK Building Block for Cloud. Ng Hwee Ming Principal Technologist (Telco) APAC Office of Technology

INTRODUCING CONTAINER-NATIVE VIRTUALIZATION

RED HAT OPENSHIFT A FOUNDATION FOR SUCCESSFUL DIGITAL TRANSFORMATION

Red Hat Cloud Platforms with Dell EMC. Quentin Geldenhuys Emerging Technology Lead

Backup strategies for Stateful Containers in OpenShift Using Gluster based Container-Native Storage

Go Faster: Containers, Platforms and the Path to Better Software Development (Including Live Demo)

Replacing Docker With Podman. By Dan

Identity Management and Compliance in OpenShift

WHEN CONTAINERS AND VIRTUALIZATION DO - AND DON T - WORK TOGETHER

AGILE RELIABILITY WITH RED HAT IN THE CLOUDS YOUR SOFTWARE LIFECYCLE SPEEDUP RECIPE. Lutz Lange - Senior Solution Architect Red Hat

TEN LAYERS OF CONTAINER SECURITY. Kirsten Newcomer Security Strategist

Red Hat Atomic Details Dockah, Dockah, Dockah! Containerization as a shift of paradigm for the GNU/Linux OS

CoreOS and Red Hat. Reza Shafii Joe Fernandes Brandon Philips Clayton Coleman May 2018

A Greybeard's Worst Nightmare

Amir Zipory Senior Solutions Architect, Redhat Israel, Greece & Cyprus

How Container Runtimes matter in Kubernetes?

Build an open hybrid cloud and paint it red and blue

OPEN SOURCE AND THE DIGITAL TRANSFORMATION. Syed M Shaaf Principal Solution Architect EMEA Telco Technology Office

IT S COMPLICATED: THE ENTERPRISE OPEN SOURCE VENDOR RELATIONSHIP. Red Hat s POV

YOUR APPLICATION S JOURNEY TO THE CLOUD. What s the best way to get cloud native capabilities for your existing applications?

The Road to Digital Transformation: Increase Agility Building and Managing Cloud Infrastructure. Albert Law Solution Architect Manager

Red Hat Containers Roadmap. Red Hat A panel of product directors

HOW TO MAKE THE CASE TO MANAGEMENT: PAYING FOR OPEN SOURCE

Love Containers, Love Devops, Love Openshift, Where's my business case?

The future of data centers

PUBLIC AND HYBRID CLOUD: BREAKING DOWN BARRIERS

OpenShift Hyper-Converged Infrastructure Bare Metal Deployment with Containerized Gluster

Container in Production : Openshift 구축사례로 이해하는 PaaS. Jongjin Lim Specialist Solution Architect, AppDev

Multi-Arch Layered Image Build System

Docker and Oracle Everything You Wanted To Know

JBOSS MIDDLEWARE TO THE CLOUD. MICHAEL EPLEY Sr JBoss Solutions Architect, IC Specialist 2014 June

Docker Universal Control Plane Deploy and Manage On-Premises, Your Dockerized Distributed Applications

Important DevOps Technologies (3+2+3days) for Deployment

Red Hat OpenShift Roadmap Q4 CY16 and H1 CY17 Releases. Lutz Lange Solution

Knative: Building serverless platforms on top of Kubernetes

CNA1699BU Running Docker on your Existing Infrastructure with vsphere Integrated Containers Martijn Baecke Patrick Daigle VMworld 2017 Content: Not fo

Medical Image Processing with OpenShift and OpenStack

Learn. Connect. Explore.

VMworld 2017 Content: Not for publication #CNA1699BE CONFIDENTIAL 2

S Implementing DevOps and Hybrid Cloud

I keep hearing about DevOps What is it?

Accelerate at DevOps Speed With Openshift v3. Alessandro Vozza & Samuel Terburg Red Hat

Linux Containers Roadmap Red Hat Enterprise Linux 7 RC. Bhavna Sarathy Senior Technology Product Manager, Red Hat

Open Hybrid Cloud & Red Hat Products Announcements

FIVE REASONS YOU SHOULD RUN CONTAINERS ON BARE METAL, NOT VMS

Rok: Decentralized storage for the cloud native world

Investigating Containers for Future Services and User Application Support

SCALING AGILE IN A LARGE MATRIXED ORGANIZATION. Jen Krieger Chief Agile Architect Products & Technologies May 2017

RED HAT CONTAINER CATALOG

RED HAT'S CONTAINER STRATEGY. Lars Herrmann General Manager, RHEL, RHEV and Containers June 24, 2015

MOBILIZING AND SECURING RED HAT JBOSS BPM SUITE & BRMS

A DEVOPS STATE OF MIND. Chris Van Tuin Chief Technologist, West

Running MarkLogic in Containers (Both Docker and Kubernetes)

Kubernetes Performance-Sensitive Application Platform

K8s(Kubernetes) and SDN for Multi-access Edge Computing deployment

Taming your heterogeneous cloud with Red Hat OpenShift Container Platform.

RED HAT GLUSTER TECHSESSION CONTAINER NATIVE STORAGE OPENSHIFT + RHGS. MARCEL HERGAARDEN SR. SOLUTION ARCHITECT, RED HAT BENELUX April 2017

EASILY DEPLOY AND SCALE KUBERNETES WITH RANCHER

Containers Infrastructure for Advanced Management. Federico Simoncelli Associate Manager, Red Hat October 2016

CONTAINERS AND MICROSERVICES WITH CONTRAIL

IBM Bluemix compute capabilities IBM Corporation

Red Hat Container Catalog Consuming Container Images from Red Hat and its Ecosystem. Dirk Herrmann Product Owner Container Catalog May 2nd 2017

Open Source IoT. Eclipse IoT. Tim De Borger - Senior Solution Architect 13/06/2017

OPENSHIFT FOR OPERATIONS. Jamie Cloud Guy - US Public Sector at Red Hat

The Path to GPU as a Service in Kubernetes Renaud Gaubert Lead Kubernetes Engineer

Going cloud-native with Kubernetes and Pivotal

SUSE s vision for agile software development and deployment in the Software Defined Datacenter

Mesosphere and the Enterprise: Run Your Applications on Apache Mesos. Steve Wong Open Source Engineer {code} by Dell

A4M36ISS: Introduction. Jiří Pechanec QA Engineer September 17 th, 2015

Docker Enterprise Edition on Cisco UCS C220 M5 Servers for Container Management

21ST century enterprise. HCL Technologies Presents. Roadmap for Data Center Transformation

The speed of containers, the security of VMs. KataContainers.io

Transforming the Internal IT Landscape with APIs. Scott Cranton Director, Application Platform SAs April 2018

Automating, Securing, and Managing Cox Automotive's (AutoTrader) Big Data Infrastructure

Przyspiesz tworzenie aplikacji przy pomocy Openshift Container Platform. Jarosław Stakuń Senior Solution Architect/Red Hat CEE

OpenShift Roadmap Enterprise Kubernetes for Developers. Clayton Coleman, Architect, OpenShift

ISTIO 1.0 INTRODUCTION & OVERVIEW OpenShift Commons Briefing Brian redbeard Harrington Product Manager, Istio

Hitachi & Red Hat collaborate: Container migration guide

Atos Canopy Orchestrated Hybrid Cloud. Mark Nouris - Atos Head of Cloud Michael Kollar Head of Cloud engineering & TIC

Eclipse MicroProfile with Thorntail (formerly WildFly Swarm)

OPENSTACK AGILITY. RED HAT RELIABILITY.

Security oriented OpenShift within regulated environments

Red Hat Container Strategy Ahmed El-Rayess

Kubernetes 101. Doug Davis, STSM September, 2017

WHITEPAPER. Embracing Containers & Microservices for future-proof application modernization

[Docker] Containerization

Container Security. Marc Skinner Principal Solutions Architect

RED HAT CLOUDFORMS. Chris Saunders Cloud Solutions

From data center OS to Cloud architectures The future is Open Syed M Shaaf

Containers & Microservices For Realists. Karthik

EVERYTHING AS CODE A Journey into IT Automation and Standardization. Raphaël Pinson

RED HAT QUAY. As part of OCP Architecture Workshop. Technical Deck

Transcription:

THE STATE OF CONTAINERS Engines & Runtimes in RHEL & OpenShift Scott McCarty Principal Technology Product Manager - Containers 10/15/2018

What if... I told you there is container innovation happening in the lower level components? 2

What Kinds of Things, You Ask? Small core-utils style approach Running without root Easily move between Podman and Kubernetes Build Images with Declarative Languages (Ex. Ansible) Enabling security compliance Virtual machine isolation Multiple architectures Application Specific Security Profiles

WHY CONTAINERS

Historic Challenges IT Delivers many different applications Each requires different languages, and libraries Deploy, configure, manage and maintain is complex Expensive - time and money

Why Containers Each application comes with its own dependencies Portable and consistent application environments Developer choices don t interfere with host Operations choices don t interfere with applications

We already have the technology... Not exactly, it s about finding, running, building, sharing, integrating, and deploying services 8 Virtual Machines Containers PaaS Good at exposing resources (CPU, RAM) but collaboration is like emailing Word docs Just enough. Easy to collaborate, rebuild, combine and share with others Good at quick deployments, but too inflexible to modify services easily Scott McCarty Twitter: @fatherlinux

The Journey Single Node Traditional Development FIND 9 Scott McCarty Twitter: @fatherlinux RUN BUILD

The Journey Single Node+ Traditional Development FIND 10 Scott McCarty Twitter: @fatherlinux RUN BUILD SHARE

The Journey Multi Node Traditional Development FIND 11 Scott McCarty Twitter: @fatherlinux RUN Cloud Native BUILD SHARE INTEGRATE DEPLOY

The Journey Can start anywhere Traditional Development FIND RUN Podman/Buildah/Skopeo 12 Scott McCarty Twitter: @fatherlinux Cloud Native BUILD SHARE Quay INTEGRATE DEPLOY OpenShift

WHAT RED HAT PROVIDES

Customer Needs Mapping customer needs to solutions 14 Capability Technology Product Single Node Linux & Container Tools Red Hat Enterprise Linux Multi Node Linux & Kubernetes OpenShift Scott McCarty Twitter: @fatherlinux

What are the lower level components? The foundation for OpenShift Tightly coupled communication through the stack - all or nothing feature support: 15 Orchestration Node (Kublet, OpenShift Node) Container Engine (Docker, Podman, CRI-O) Container Runtime (runc, gvisor, Kata) Operating System (Linux kernel) Scott McCarty Twitter: @fatherlinux

Container Engines Pluggable within most container orchestration Why & What: 16 Scott McCarty Twitter: @fatherlinux Run & Build containers Many, many, projects... What are Moby, Docker CE, and Docker EE? CRI-O gaining popularity Podman, Buildah, Skope are exciting

Container Runtimes Pluggable in within most container engines State of container runtimes: 17 99% of the world uses runc Pluggable because of the OCI Container Runtime Specification Kata & gvisor both look interesting Red Hat is engaged upstream Not mature enough to be on our product roadmaps gvisor

OPEN CONTAINERS

Containers Are Open Established in June 2015 by Docker and other leaders in the container industry, the OCI currently contains three specifications which govern, building, running, and moving containers. 19 INSERT DESIGNATOR, IF NEEDED

Standards Are Well Governed 20 INSERT DESIGNATOR, IF NEEDED Governed by The Linux Foundation Ecosystem includes: Vendors Cloud Providers Open Source Projects

Overview of Important Standards Vendor, Community, and Standards Body driven Many different standards 21

CRI-O & CRICTL Interfaces for humans and robots 22

RED HAT INVESTMENT

Container Engine/Runtime Strategy 24 INSERT DESIGNATOR, IF NEEDED

Experience: A lightweight, OCI-compliant container runtime designed for Kubernetes Runs any OCI compliant, Docker compatible container images Focus on stability and life cycle with the platform Improve container security & performance at scale Roadmap Now running in production under OpenShift Online clusters Permanent Kubernetes project Continues to track and release with upstream Kubernetes On track to become the default container engine for nodes Converting node troubleshooting documentation to use crictl for human interface to CRI-O Adding user namespace support Integrating libpod for better CLI integration with Podman

Experience Will be embedded in OpenShift build strategies, mostly transparent (except custom build strategy) OCI Container images compatible with Docker format Multi-stage builds supported with and without dockerfiles Customizable image layer caching Shares the underlying image and storage components with CRI-O Roadmap : GA support with RHEL 7.5 User namespace enablement Working towards unprivileged, non-root container builds Future integrations with Ansible (new work on Ansible Builder), and OSBS

Experience Provides a familiar command line experience compatible with the docker cli Great for running, building, and sharing containers outside of OpenShift Can be wired into existing infrastructure where the docker daemon/cli are used today Simple command line interface, no client-server architecture, so more agile in many use cases Roadmap: GA in RHEL 7.6 Run containers as non-root (enhanced user namespaces) Docker compatible health checks Atomic run label support

CLOSING

Please Stand

Please read out loud all text in RED

I Promise

To say Container Registries Rather than Docker registries

I Promise

To say Container Images Rather than Docker images

I Promise

To say OCI Containers Rather than Docker Containers

Please Sit

Q&A

Source Material Presentations, Blogs, Etc List: State of Container Technologies in the Operating System Dan Walsh 10/2018 Collabzone - Red Hat Container Engines, Tools, and Images - Scott McCarty 10/2108 High Touch Beta (HTB) for RHEL 7.6: What to expect with podman? - Dan Walsh 09/2018 RHTE - Docker What? Buildah, Podman et al - William Henry 09/2018 Red Hat Container Tools - Ben Breard & Scott McCarty 10/2018 39 Scott McCarty Twitter: @fatherlinux

THANK YOU plus.google.com/+redhat facebook.com/redhatinc linkedin.com/company/red-hat twitter.com/redhat youtube.com/user/redhatvideos

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback