Red Hat Atomic Details Dockah, Dockah, Dockah! Containerization as a shift of paradigm for the GNU/Linux OS

Similar documents
A Greybeard's Worst Nightmare

Amir Zipory Senior Solutions Architect, Redhat Israel, Greece & Cyprus

Taming your heterogeneous cloud with Red Hat OpenShift Container Platform.

Red Hat Roadmap for Containers and DevOps

ACCELERATE APPLICATION DELIVERY WITH OPENSHIFT. Siamak Sadeghianfar Sr Technical Marketing Manager, April 2016

Przyspiesz tworzenie aplikacji przy pomocy Openshift Container Platform. Jarosław Stakuń Senior Solution Architect/Red Hat CEE

Red Hat OpenShift Roadmap Q4 CY16 and H1 CY17 Releases. Lutz Lange Solution

Container in Production : Openshift 구축사례로 이해하는 PaaS. Jongjin Lim Specialist Solution Architect, AppDev

[Docker] Containerization

Cloud & container monitoring , Lars Michelsen Check_MK Conference #4

Container Management : First Looks

개발자와운영자를위한 DevOps 플랫폼 OpenShift Container Platform. Hyunsoo Senior Solution Architect 07.Feb.2017

Backup strategies for Stateful Containers in OpenShift Using Gluster based Container-Native Storage

Openshift: Key to modern DevOps

Accelerate at DevOps Speed With Openshift v3. Alessandro Vozza & Samuel Terburg Red Hat

Convergence of VM and containers orchestration using KubeVirt. Chunfu Wen

RED HAT'S CONTAINER STRATEGY. Lars Herrmann General Manager, RHEL, RHEV and Containers June 24, 2015

TRAINING AND CERTIFICATION UPDATE

OpenShift 3 Technical Architecture. Clayton Coleman, Dan McPherson Lead Engineers

Go Faster: Containers, Platforms and the Path to Better Software Development (Including Live Demo)

CONTAINERS AND MICROSERVICES WITH CONTRAIL

Docker and Oracle Everything You Wanted To Know

Microservices and Container Development

A DEVOPS STATE OF MIND. Chris Van Tuin Chief Technologist, West

OpenShift Enterprise: Meeting Tomorrow's Expectations Today. Product Management:

Deployment Patterns using Docker and Chef

Application Centric Microservices Ken Owens, CTO Cisco Intercloud Services. Redhat Summit 2015

ovirt and Docker Integration

OPENSTACK Building Block for Cloud. Ng Hwee Ming Principal Technologist (Telco) APAC Office of Technology

Logging, Monitoring, and Alerting

RED HAT OPENSHIFT A FOUNDATION FOR SUCCESSFUL DIGITAL TRANSFORMATION

TEN LAYERS OF CONTAINER SECURITY. Kirsten Newcomer Security Strategist

WHITE PAPER. RedHat OpenShift Container Platform. Benefits: Abstract. 1.1 Introduction

Containerization Dockers / Mesospere. Arno Keller HPE

Red Hat Container Strategy Ahmed El-Rayess

Open Hybrid Cloud & Red Hat Products Announcements

Running MarkLogic in Containers (Both Docker and Kubernetes)

Containers Infrastructure for Advanced Management. Federico Simoncelli Associate Manager, Red Hat October 2016

TEN LAYERS OF CONTAINER SECURITY

Introduction to Docker. Antonis Kalipetis Docker Athens Meetup

FIVE REASONS YOU SHOULD RUN CONTAINERS ON BARE METAL, NOT VMS

Red Hat Containers Roadmap. Red Hat A panel of product directors

SUSE s vision for agile software development and deployment in the Software Defined Datacenter

Docker und IBM Digital Experience in Docker Container

IBM Bluemix compute capabilities IBM Corporation

SQL Server inside a docker container. Christophe LAPORTE SQL Server MVP/MCM SQL Saturday 735 Helsinki 2018

A DEVOPS STATE OF MIND WITH DOCKER AND KUBERNETES. Chris Van Tuin Chief Technologist, West

PUBLIC AND HYBRID CLOUD: BREAKING DOWN BARRIERS

RED HAT GLUSTER TECHSESSION CONTAINER NATIVE STORAGE OPENSHIFT + RHGS. MARCEL HERGAARDEN SR. SOLUTION ARCHITECT, RED HAT BENELUX April 2017

Allowing Users to Run Services at the OLCF with Kubernetes

Beyond 1001 Dedicated Data Service Instances

How to Put Your AF Server into a Container

THE STATE OF CONTAINERS

Docker CaaS. Sandor Klein VP EMEA

Multi-Arch Layered Image Build System

S Implementing DevOps and Hybrid Cloud

Who is Docker and how he can help us? Heino Talvik

Docker All The Things

Docker for People. A brief and fairly painless introduction to Docker. Friday, November 17 th 11:00-11:45

Secure Kubernetes Container Workloads

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

LINUX CONTAINERS. Where Enterprise Meets Embedded Operating Environments WHEN IT MATTERS, IT RUNS ON WIND RIVER

Table of Contents 1.1. Overview. Containers, Docker, Registries vsphere Integrated Containers Engine

The four forces of Cloud Native

WHITEPAPER. Embracing Containers & Microservices for future-proof application modernization

Red Hat OpenStack Platform 10 Product Guide

OpenShift on Public & Private Clouds: AWS, Azure, Google, OpenStack

Red Hat Container Development Kit 3.0 Release Notes and Known Issues

Table of Contents 1.1. Introduction. Overview of vsphere Integrated Containers 1.2

PaaS Anywhere. Isaac Christoffersen Architect, Vizuri

Industry-leading Application PaaS Platform

Dynamic App Services in Containerized Environments

VMWARE PIVOTAL CONTAINER SERVICE

WHEN CONTAINERS AND VIRTUALIZATION DO - AND DON T - WORK TOGETHER

Kuber-what?! Learn about Kubernetes

Exam C Foundations of IBM Cloud Reference Architecture V5

What s New in Red Hat OpenShift Container Platform 3.4. Torben Jäger Red Hat Solution Architect

The Post-Cloud. Where Google, DevOps, and Docker Converge

Container Deployment and Security Best Practices

UP! TO DOCKER PAAS. Ming

Transform Your Business with Hybrid Cloud

Modelos de Negócio na Era das Clouds. André Rodrigues, Cloud Systems Engineer

In-cluster Open Source Testing Framework

SBB. Java User Group 27.9 & Tobias Denzler, Philipp Oser

Container Security. Marc Skinner Principal Solutions Architect

PaaS Anywhere. Isaac Christoffersen Architect, Vizuri

Microservices. Chaos Kontrolle mit Kubernetes. Robert Kubis - Developer Advocate,

YOUR APPLICATION S JOURNEY TO THE CLOUD. What s the best way to get cloud native capabilities for your existing applications?

IT S COMPLICATED: THE ENTERPRISE OPEN SOURCE VENDOR RELATIONSHIP. Red Hat s POV

Docker and Security. September 28, 2017 VASCAN Michael Irwin

Software-defined Media Processing

RECap: RunEscape Capsule for On-demand Managed Service Delivery in the Cloud

INTRODUCING CONTAINER-NATIVE VIRTUALIZATION

Containerizing GPU Applications with Docker for Scaling to the Cloud

Containers, Serverless and Functions in a nutshell. Eugene Fedorenko

ROBIN SYSTEMS. Containerizing Oracle: Not Thinking About It Yet? You Should Be!!!

Mandi Walls. Technical Community #habitatsh

MOBILIZING AND SECURING RED HAT JBOSS BPM SUITE & BRMS

DevOps and Continuous Delivery USE CASE

Building A Better Test Platform:

Transcription:

Red Hat Atomic Details Dockah, Dockah, Dockah! Containerization as a shift of paradigm for the GNU/Linux OS Daniel Riek Sr. Director Systems Design & Engineering

In the beginning there was Stow... and /usr/local, and tar, and binaries mounted from the network,... Works well for a Unix host. Too fragile due to dependencies on each host's environment. Not efficient for managing artifacts. Doesn't scale in distributed environments (aka PCs).

Then, There Be RPM... and dpkg, and... Frozen binary distribution, reproducable builds. Metadata, signatures. Transport format for a curated content stream from a trusted source. Management of installed artifacts, updates. Implicit move to a single instance, single version model. Implements a late-binding model for deploying software in Ops based on an ABI contract. Layers move across dev/test/ops independently.

Traditional application deployment TRADITIONAL APP A APP B APP C BINS/LIBS OS & SHARED SERVICES HARDWARE Single userspace runtime shared between applications. Environment and life cycle defined by host OS. OS generations define software lifecycle. Trend to isolate apps on hardware level. Managed by IT, very limited delegation. Stable, long maintenance, few updates, hardware-centric.

Traditional application deployment TRADITIONAL APP A APP B APP C BINS/LIBS OS & SHARED SERVICES HARDWARE Very limited flexibility, resources underutilized Component-level life cycle management fragile in large environments. Stacks too complex to map into a common single instance, single version namespace. Side-effects of shared dependencies can not be managed at scale, induce unwanted change. Full distribution model with monolithic generations of content create artificial tie of userspace stacks to low level components and hardware.

Userspace Stacks Too Complex http://www.modulecounts.com/

Application Deployment via Virt & IaaS INFRASTRUCTURE AS A SERVICE (IAAS) APP A APP A APP B BINS/ LIBS BINS/ LIBS BINS/ LIBS GUEST OS GUEST OS GUEST OS HYPERVISOR HOST OS SERVER Application isolation per VM. Guest environment and lifecycle defined by application. Application and runtime abstracted from hardware. Higher flexibility at cost of increased redundancy and overhead. Complex multi-level management of host and VM layers Delegation along the Host / VM boundary.

Application Deployment via Virt & IaaS INFRASTRUCTURE AS A SERVICE (IAAS) Too much overhead per application. APP A APP A APP B Management too complex. BINS/ LIBS BINS/ LIBS BINS/ LIBS Delegation model inefficient. GUEST OS GUEST OS GUEST OS HYPERVISOR HOST OS SERVER Life cycle management in practice still too fragile. Power shifting from Ops to application owner. Everything business is software now, so the business spends the money, not IT.

App Delivery Using Docker Containers APPLICATION-CENTRIC IT & PaaS APP A APP B SRVC D SRVC C SRVC A SRVC B SRVC A BINS/ BINS/ BINS/ BINS/ BINS/ LIBS LIBS LIBS LIBS LIBS HOST OS, SHARED SERVICES HARDWARE, VIRT, CLOUD Separation of system runtime and application-centric userspace runtimes Application consist of orchestrated services. Services packaged with individual runtime stack in containers. Maximal flexibility, minimal overhead. Delegation along container boundaries.

App Delivery Using Docker Containers APPLICATION-CENTRIC IT & PaaS Multi-instance, multi-version, multi-tenant. APP A APP B Multi-tenant in the enterprise required to support multiple lines of business. Everything is a cluster, everything is scale-out, everything is high-available. Integration with IaaS.

Docker as Aggregate Packaging Frozen binary distribution, reproducable builds. Metadata, signatures (soon). Transport format for a curated content stream from a trusted source. Management of installed artefacts, updates. Move to a multi-instance, multi-version, multi-tenant model. Implements an early-binding model for deploying applications packaged by a developer. Whole stack artefacts move across dev/test/ops unmodified.

A Shift In the Personas The traditional Linux Distribution provides a curated content stream to ops. Ops aggregate the content from the distro, 3 rd party ISVs and developers based on the ABI contract. VS

A Shift In the Personas The container-driven model makes the developer the primary consumer above the core system runtime. VS

The Atomic Architecture and Red Hat's Container Strategy

Open Standards Red Hat works with the open source community to drive standards for containerization. ISOLATION WITH LINUX CONTAINERS Isolating applications on host operating system CONTAINER FORMAT WITH DOCKER Security Portability across host systems Interface for communications, configuration, data persistence, provisioning Content agnostic Infrastructure agnostic ORCHESTRATION WITH KUBERNETES Orchestrate containers at scale Define app topologies Handle container networking Manage container state Schedule across hosts REGISTRY / CONTAINER DISCOVERY Easily find and consume trusted container images Federate consumption libraries Promote consistency and reuse PAAS & DEVOPS WITH OPENSHIFT End-to-end application lifecycle workflow on a PaaS leveraging the Red Hat ecosystem.

Project Atomic The Atomic Architecture describes the end-to-end design of an containerized OS. Project Atomic is an umbrella project to drive the Red Hat vision of the next generation Operating System: Transition from a monolithic UNIX OS model to a modularized, multiinstance, multi-version, multi-tennant, application/service-centric environment. Not RH-specific, but driven by Red Hat into RH family of Linux OSs.

Kubernetes: Multi-Container App Definition Docker packages individual services into containers. APP B SRVC D SRVC C SRVC A BINS/ BINS/ BINS/ LIBS LIBS LIBS HOST OS, SHARED SERVICES HARDWARE, VIRT, CLOUD Multi-service containers possible but not ideal. Applications typically consist of multiple services. Kubernetes provides the generic definition and orchestration layer for containerized applications.

Containerization vs. Virtualization Generally complementary concepts Virtualization: vertical abstraction Containerization: horizontal segmentation Containers used to replace virtualization where container paradigms more applicable: Application isolation Lightweight delegation Application Virtualization Density Containers on top of Virt/Cloud common.

Red Hat Registry A Red Hat image registry to deliver Red Hat content. Everything can be used with RHEL or Atomic. RH Index / Registry API RHEL 7

Container Development Kit Custom Layer Platform Layer RHEL Base A Container Development Kit (CDK) to build RHEL-based containers. Based on vagrant with official Red Hatprovided vagrant images. Supported on Linux, Windows, Mac CDK RHEL / RHEL Atomic Vagrant Linux Win Build Mac Certify Publish Consume

Building a Docker Image EAP Example Build tool chain encapsulated in Vagrant environment will set up RHEL environment. Developer pulls EAP image from Red Hat Complete layer stack is automatically retrieved. Layers are statically linked. Developer builds new layered image Build controlled by Dockerfile Content pulled in from RHEL, JBoss, 3rd Party, custom content repositories. Dockerfile and source based (STI Source To Image) builds provided by OpenShift Docker Image Repositories Component Repositories docker pull Customer Custom Content 3rd Party 3rd Party COntent JBoss Red Hat CDN SCLs RHEL User Space Docker / OSBS / STI build App JBoss EAP OpenJDK RHEL7 Base Docker File App Template

Building a Docker Image EAP Example Container content built directly from native components, externally produced binary artifacts, source. Docker Image Repositories Component Repositories docker pull Customer 3rd Party Npm, PyPI, Gem, CPAN, JAR and WAR and EAR, and so on JBoss Red Hat CDN SCLs Docker / OSBS / STI build RHEL User Space App JBoss EAP OpenJDK RHEL7 Base Docker File App Template

RED HAT ATOMIC ENTERPRISE PLATFORM AND OPENSHIFT 3 26

CONTAINER-BASED APPLICATION DELIVERY SOLUTIONS

CONTAINER-BASED APPLICATION DELIVERY SOLUTIONS

CONTAINER-BASED APPLICATION DELIVERY SOLUTIONS

CONTAINER-BASED APPLICATION DELIVERY SOLUTIONS

OpenStack Integration

Atomic App - Full Application Portability Docker is great for individual component-containers. - Most applications are more than one container. Kubernetes adds multi-container application orchestration. Kubernetes configs have to be copied manually. Atomic App defines packaging and transport multi-container applications. New upstream project to define spec and reference implementation. Included in Red Hat CDK work. https://github.com/projectatomic/atomicapp

Conclusion Containers are the future of application packaging. DevOps is an opportunity, change induced by containerization goes far beyond it, changing the fundamentals of software distribution. We have to rethink existing concepts of the GNU/Linux distribution. Red Hat is embracing the shift of paradigm towards containerization. A lot of input available from RH Summit Presentations: https://www.redhat.com/summit/2015/presentations/

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback