12. The application landscape is changing
Loosely
Coupled
Services
Many Small Servers
or devices
~2000 Today
Monolithic
Big Servers
Slow
changing
Rapidly
updated
15. Cloud native computing uses an open source
software stack to be:
Containerized
Dynamically orchestrated
Microservices oriented
What is Cloud Native
20. Business Case
• Break up into teams of 2
• Identify current technologies in use at your company
• Define a new Cloud Native strategy using https://landscape.cncf.io/
• Use https://github.com/cncf/trailmap as a reference strategy
• Create and present your business case
27. 31
Docker delivers innovation, speed and savings
+ +Agility Portability Control
State of App development Survey: Q1 2016, Cornell University case study
13XMore software releases
62%Report reduction in MTTR
10XCost reduction in maintaining
existing applications
Eliminate
“works on my machine”
issues
41%Move workloads across
private/public clouds
65%Reduction in developer
onboarding time
29. One journey for all applications
1 Containerize Legacy Applications
Lift and shift for portability and efficiency
2
3
Transform Legacy to Microservices
Look for shared services to transform
Accelerate New Applications
Greenfield innovation
38. What is DevOps?
People. Process. Technology
"DevOps is the union of
people, process, and
technology to enable
continuous delivery of
value to your end users."
41. Terraform – Infrastructure as Code
• Describe configuration in a simple and
constant way
• Version Control your infrastructure
(Firewall Rules, Security Policies, and
configurations)
• Configure network and security
features on cloud providers
• Include Cloud Infrastructure
components as part of a "DevOps"
Pipeline
42. Example Pipeline
• AWS VPN is connected to an "on-premise" Palo Alto FW appliance
• Access control from the AWS Cloud to an On-Premise or customer datacenter application,
configuration can be managed along with changes in the AWS cloud,
• In this case an AWS (SG) security group configuration is in-line with the Palo Alto security
configuration.
• Pan-OS can be configured vi API (Terraform provider) to respect the same configuration in the cloud
43.
44. Docker CLI Overview
Webapps and Docker
Write Dockerfiles
Create a Docker Build pipeline
Deploy apps to Docker Swarm
Training Agenda
62. Container Separation
Dan the Developer
Worries about what’s “Inside the
Container”
- Code
- Libraries
- Package Manager
- Data
All the servers look the same
Oscar the Ops Guy
Worries about what’s
“Outside the Container”
- Logging
- Monitoring
- Networking
All containers work the same way
(Start, Stop, etc)
91. • Start small & increment
• Don’t Overlert yourself
• Set Resource Limits
• Aim for actionable Information
• Run separate from Workload
• Test for Failures
• Know your Failure Models
Best Practices