AGILE RELIABILITY WITH RED HAT IN THE CLOUDS YOUR SOFTWARE LIFECYCLE SPEEDUP RECIPE Lutz Lange - Senior Solution Architect Red Hat
Digital Transformation It requires an evolution in. Applications Infrastructure Process New ways of developing, delivering, and integrating applications Modernize existing and build new cloud-based infrastructure More agile process across both IT and the business
DEVELOPMENT AND DEPLOYMENT IS CHANGING 3 Monolith Datacenter Waterfall N-Tier Hosted Agile Microservices Hybrid DevOps Architecture Infrastructure Process
The Problem Applications require complicated installation and integration every time they are deployed GENERAL DISTRIBUTION
Part of the Solution Adopting a container strategy will allow applications to be easily shared and deployed. GENERAL DISTRIBUTION
Organization, Responsibility, Process and Technology Container App Operating System Controlled by IT Operations Virtual Machine Hardware GENERAL DISTRIBUTION Controlled by Developers?
DEVOPS Everything as code Application monitoring Automate everything Rapid feedback Continuous Integration/Delivery Rebuild vs. Repair Application is always releaseable Delivery pipeline GENERAL DISTRIBUTION
$ docker build -t app:v1. GENERAL DISTRIBUTION
$ docker build -t app:v1. $ docker run app:v1 GENERAL DISTRIBUTION
physical virtual private cloud public cloud GENERAL DISTRIBUTION
DEVOPS WITH CONTAINERS physical virtual private cloud dev source repository CI/CD engine container public cloud 12 GENERAL DISTRIBUTION
? GENERAL DISTRIBUTION
$ $ $ $ $ docker docker docker docker docker build build build build build -t -t -t -t -t app/frontend:v1. app/backend:v1. app/database:v1. app/cache:v1. app/messaging:v1. GENERAL DISTRIBUTION
$ $ $ $ $ $ $ docker docker docker docker docker docker docker run run run run run run run app/frontend:v1 link-to-backend app/frontend:v1 link-to-backend app/backend:v1 link-to-db-cache-messaging app/backend:v1 link-to-db-cache-messaging app/database:v1 app/cache:v1 link-to-db app/messaging:v1 GENERAL DISTRIBUTION
? GENERAL DISTRIBUTION
WE NEED MORE THAN JUST CONTAINERS 17 Scheduling Security Decide where to deploy containers Control who can do what Lifecycle and health Scaling Keep containers running despite failures Scale containers up and down Discovery Persistence Find other containers on the network Survive data beyond container lifecycle Monitoring Aggregation Visibility into running containers Compose apps from multiple containers GENERAL DISTRIBUTION
Kubernetes is an open-source system for automating deployment, operations, and scaling of containerized applications across multiple hosts kubernetes GENERAL DISTRIBUTION
kubernetes GENERAL DISTRIBUTION
DEVOPS WITH CONTAINERS AND KUBERNETES GENERAL DISTRIBUTION
INDUSTRY CONVERGED ON KUBERNETES GENERAL DISTRIBUTION
DEVOPS WITH CONTAINERS AND KUBERNETES NETWORK Not enough! Need networking GENERAL DISTRIBUTION
DEVOPS WITH CONTAINERS AND KUBERNETES IMAGE REGISTRY NETWORK Not enough! Need an image registry GENERAL DISTRIBUTION
DEVOPS WITH CONTAINERS AND KUBERNETES heapster IMAGE REGISTRY METRICS AND LOGGING NETWORK Not enough! Need metrics and logging GENERAL DISTRIBUTION
DEVOPS WITH CONTAINERS AND KUBERNETES APP LIFECYCLE MGMT IMAGE REGISTRY METRICS AND LOGGING NETWORK Not enough! Need application lifecycle management GENERAL DISTRIBUTION
DEVOPS WITH CONTAINERS AND KUBERNETES APP SERVICES APP LIFECYCLE MGMT IMAGE REGISTRY METRICS AND LOGGING NETWORK Not enough! Need application services e.g. database and messaging GENERAL DISTRIBUTION
DEVOPS WITH CONTAINERS AND KUBERNETES SELF-SERVICE APP SERVICES IMAGE REGISTRY APP LIFECYCLE MGMT METRICS AND LOGGING NETWORK Not enough! Need self-service portal GENERAL DISTRIBUTION
NOT ENOUGH, THERE IS MORE! Multi-tenancy Teams and Collaboration Routing & Load Balancing Quota Management CI/CD Pipelines Image Build Automation Role-based Authorization Container Isolation Capacity Management Vulnerability Scanning Infrastructure Visibility Chargeback GENERAL DISTRIBUTION
The Enterprise Kubernetes Distribution from Red Hat for building, distributing and running containers at scale GENERAL DISTRIBUTION
OPENSHIFT CONTAINER PLATFORM Infrastructure Automation & Cockpit Enterprise Container Host Container Runtime & Packaging (docker, crio) Red Hat [Atomic] CoreOS 30 Red Hat Enterprise Linux GENERAL DISTRIBUTION Trusted by Fortune Global 500 companies
OPENSHIFT CONTAINER PLATFORM OpenShift Application Lifecycle Management Container Orchestration & Cluster Management (kubernetes) Networking Storage Registry Logs & Metrics Security Infrastructure Automation & Cockpit Enterprise Container Host Container Runtime & Packaging (docker, crio) Red Hat [Atomic] CoreOS 31 Red Hat Enterprise Linux GENERAL DISTRIBUTION Enterprise Kubernetes++ container orchestration Trusted by Fortune Global 500 companies
OPENSHIFT CONTAINER PLATFORM Self-Service Service Catalog (Language Runtimes, Middleware, Databases) Build Automation Deployment Automation Developer Experience OpenShift Application Lifecycle Management Container Orchestration & Cluster Management (kubernetes) Networking Storage Registry Logs & Metrics Security Infrastructure Automation & Cockpit Enterprise Container Host Container Runtime & Packaging (docker, crio) Red Hat [Atomic] CoreOS 32 Red Hat Enterprise Linux GENERAL DISTRIBUTION Enterprise Kubernetes++ container orchestration Trusted by Fortune Global 500 companies
OPENSHIFT CONTAINER PLATFORM Business Automation Integration Data & Storage Web & Mobile Container Container Container Container Traditional, stateful, and cloud-native apps Self-Service Service Catalog (Language Runtimes, Middleware, Databases) Build Automation Deployment Automation Developer Experience OpenShift Application Lifecycle Management Container Orchestration & Cluster Management (kubernetes) Networking Storage Registry Logs & Metrics Security Infrastructure Automation & Cockpit Enterprise Container Host Container Runtime & Packaging (docker, crio) Red Hat [Atomic] CoreOS 33 Red Hat Enterprise Linux GENERAL DISTRIBUTION Enterprise Kubernetes++ container orchestration Trusted by Fortune Global 500 companies
News & Roadmap
OPERATOR FRAMEWORK Kubernetes-native Day1 and Day2 deployment and operations of Apps Simplify Kubernetes upgrades Deploy Apps as Self-Driving Consistent App Deploy/Ops on Kubernetes on Any Cloud Fully Open Source Operator Framework Deep Dive - OpenShift Commons Briefing - https://youtu.be/olafckm7rba 35
OPENSHIFT + CoreOS INTEGRATION CONVERGED PRODUCT ROADMAP Red Hat OpenShift Roadmap - Red Hat Summit - https://www.youtube.com/watch?v=1aelnjx6bb4
OPENSHIFT + CoreOS UNIFIED PLATFORM Service Cat/Operators etcd, Prometheus, Red Hat Middleware, ISVs Cluster Services Metering/Chargeback, Metrics, Logging, Registry Developer Productivity Build Automation, Image Streams, CI/CD Operator Lifecycle Manager Infra Monitoring Automated Operations Hybrid Cloud Install / Upgrade Network / CNI Ops & Dev Consoles Security / Auth Storage / CSI App Monitoring Kubernetes Red Hat Enterprise Linux or Red Hat CoreOS Best Operator Experience CaaS PaaS Best Developer Experience
ENHANCING OPENSHIFT WITH COREOS TECTONIC & QUAY CONTAINER REGISTRY RED HAT QUAY REGISTRY APPLICATION OPERATORS - SELF-DRIVING APPS ETCD PROMETHEUS METERING & CHARGEBACK RED HAT COREOS PLATFORM OPERATOR - AUTOMATED OPS CoreOS Tectonic Fully integrated and merged with OpenShift Adds automated operations and day 2 management (install, upgrades, monitoring, metering and chargeback) Best-in-class support for CaaS/KaaS/PaaS use cases CoreOS Container Linux Red Hat CoreOS inspired by Container Linux & RHEL/Atomic Fully immutable, container optimized, automatically updated Linux host foundation for OpenShift CoreOS Quay Registry Enterprise container registry; self managed & as-a-service Premium offering usable standalone or with OpenShift Geo-replication, vulnerability scanning, build automation
DELIVERING IMMUTABLE INFRASTRUCTURE WITH RED HAT CoreOS - Minimal Linux distribution Optimized for running containers Decreased attack surface Over-the-air automated updates Ignition-based Metal and Cloud host configuration Deployment option for OpenShift Red Hat Summit Video Red Hat CoreOS FAQ 39
AWS Specifics
AWS Service Broker AMAZON WEB SERVICES New AWS Services coming: Service Broker Kinesis Data Streams Key Management Service (KMS) Lex Polly Rekognition Translate (requires Preview registration) SageMaker Additional RDS engines: Aurora, MariaDB, and PostgreSQL
A Quick Start is available that will configure a VPC that spans three Availability Zones with private and public subnets in each zone as well as deploying Master, Infrastructure, and Application OCP nodes in each Availability Zone. https://aws.amazon.com/quickst art/architecture/openshift/ 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Further info / How to start
CONTAINERS BECOMING MAINSTREAM 44
Try it a nd see! OpenShift Interactive Learning Platform for Dev and DevOps http://learn.openshift.com Interactive hands-on development scenarios Ge th an ds on!
Try OpenShift Operations and Container Native Storage Test Drive http://red.ht/openshift-ops-testdrive Ge th an ds on! it a nd see!
RED HAT OPEN INNOVATION LABS MODERNIZE TRADITIONAL APPS Extend applications Optimize applications Scale applications Expose to orchestration 47 INNOVATION ACCELERATED DEVELOP CONTEMPORARY APPS Develop on PaaS environment Transform how you design and develop apps Adopt lean and agile principles Master DevOps practices COLLABORATION RESIDENCY COMMUNITY INCUBATION Space to work, innovate, and discuss An eight-week accelerated teaming engagement Communities supporting innovation GENERAL DISTRIBUTION
THANK YOU plus.google.com/+redhat facebook.com/redhatinc linkedin.com/company/red-hat twitter.com/redhatnews youtube.com/user/redhatvideos
OPENSHIFT IS GAINING MOMENTUM OPENSHIFT CUSTOMER GROWTH IS ACCELERATING For more details: Investor Relations Presentation Slides 58-62
Abstract Clouds are where everyone turns these days for elastic resources. But each and every time a certain cloud is chosen. In turn, you get your certain specialized Cloud API. Red Hat products are the ideal abstraction that allows you to use the same API to deal with your App in all the major clouds.
INTRODUCING SERVICE MESH: ISTIO in OpenShift ISTIO available on OpenShift Container Platform RHOAR Launcher will provision ISTIO code samples Spring Boot, WildFly Swarm @Summit; Node.js, Eclipse Vert.x to follow Simplifies microservices development for enterprise developers Infrastructure services embedded into container platform More focus on business logic, less infrastructure code Improved security, robustness, and observability with little to no coding RELEASING AS DEVELOPER PREVIEW AT SUMMIT - GA EOY or early next year 51
INTRODUCING SERVERLESS: OPENSHIFT CLOUD FUNCTIONS Industry s first enterprise grade, Hybrid Serverless offering Runs on OpenShift - based on Apache OpenWhisk Mature, battle-tested technology - IBM and Adobe already running OpenWhisk at scale Initial RHOAR supported runtimes: Java, Python and Node.js Event Sources: In-memory Data Grid, Storage (Gluster), Messaging (AMQ), HTTP, GitHub, etc. Dev tool support with Che / OpenShift.io RELEASING AS DEVELOPER PREVIEW AT SUMMIT - WATCH THE VIDEO 52
INTRODUCING CONTAINER-NATIVE VIRTUALIZATION Technology enabling OpenShift Container Platform as a unified platform for building, modifying, and deploying applications residing in both containers and virtual machines in a common, shared environment. Use Kubernetes to orchestrate both application containers and VM containers on the same container platform (OpenShift). CNV is based on RHEL (KVM) virtualization capabilities. Based on the KubeVirt project: http://www.kubevirt.io/ Keynote Demo: https://youtu.be/r8e4bt0-zhu?t=45m30s 53
THE PROBLEM DEVELOPERS I.T. OPERATIONS GENERAL DISTRIBUTION
The need for Operators $ oc new-app myapp Tries to keep the application framework or runtime from exploding 30 days later. Developer Platform Services Team Wouldn t be great if. Operator SDK } $ oc create -f myappstask.yaml Developer The Platform re-index backup restore defrag recycle...any admin task
Community Powered Innovation
Community Powered Innovation = + made easy & made enterprise
OpenShift Source-to-Image
Source 2 Image Walk Through Code Build Container Image Deploy Registry
Source 2 Image Walk Through Code Developers can leverage existing development tools and then access the OpenShift Web, CLI or IDE interfaces to create new application services and push source code via GIT. OpenShift can also accept binary deployments or be fully integrated with a customer s existing CI/CD environment.
Source 2 Image Walk Through Build OpenShift automates the Docker image build process with Source-to-Image (S2I). S2I combines source code with a corresponding Builder image from the integrated Docker registry. Builds can also be triggered manually or automatically by setting a Git webhook. Add in Build pipelines Container Image Registry
Source 2 Image Walk Through Deploy OpenShift automates the deployment of application containers across multiple Node hosts via the Kubernetes scheduler. Users can automatically trigger deployments on application changes and do rollbacks, configure A/B deployments & other custom deployment types. Container Image Registry