SlideShare ist ein Scribd-Unternehmen logo

DevOps, Kubernetes and Istio

Als PPTX, PDF herunterladen
John Jardin
John Jardin

This presentation provides a high-level Hero's journey, going from Monolith environments to microservice, containerized applications running within a container orchestration platform like Kubernetes.

Technologie
1 von 39
DevOps, Kubernetes & Istio John Jardin JHB Office365 User Group
About John Jardin • Integration and Cloud Architect • Over 16 years development and consulting • Core focuses include: • Integration & Cloud Architecture • Full stack Application Development • Coaching & Mentoring 2 4/11/2018
Agenda 3 4/11/2018 • The Hero’s Journey • Rise of the Monolith • Attack of the Microbes • Containment • Army of One • Watcher on the Wall • The End
The Hero’s Journey 4 4/11/2018
Rise of the Monolith 5 4/11/2018
Rise of the Monolith • Your application is potentially a Monolith if: • It exists only for the platform it runs on • User Interface and logic exists in the same design • Functions are made up of hundreds of lines of code and are only accessed natively • Incremental updates require the entire application’s design to be deployed • Deployments of updates and fixes take weeks or even months 6 4/11/2018
Example of a Monolith 7 4/11/2018 A Typical Application Platform Server
Rise of the Monolith cont. • Our Challenge List: • If something crashes, chances are everything goes down • Code conflicts caused by multiple developers working on the same design • Duplication of logic across multiple applications • Unable to scale processes as and when needed • Updates and features take too long to deploy to production • Dev, QA and Production environments are most likely different from each other 8 4/11/2018
Attack of the Microbes 9 4/11/2018
Attack of the Microbes • Stage 1: Micro-Functions • Breakdown your functions into re-usable/modular code blocks • Each function should do one thing and do it well • Simplify and optimize the code with the function • Lightweight (max 80-100 lines of code) • Aim for a “Pure Function” strategy: • No dependencies other than what is passed to the function • The code cannot fail and always returns something 10 4/11/2018
Attack of the Microbes cont. 11 4/11/2018 YUCKIE!!!
Attack of the Microbes cont. 12 4/11/2018 MUCH BETTER!!!
Attack of the Microbes cont. • Stage 2: Micro-Services • Define which micro-functions can become services for other 3rd party platforms and applications • Create API Endpoints that trigger your micro-functions • Web APIs (HTTP Requests) are most commonly used 13 4/11/2018
Attack of the Microbes cont. 14 4/11/2018
Attack of the Microbes cont. • Stage 3: Model/View/Controller Separation • An application’s UI should be a service on it’s own • Consider using libraries/frameworks/platforms such as: • PowerApps • ReactJS • Angular 15 4/11/2018
Attack of the Microbes cont. • IMPORTANT: • Upgrade your environment in tiny phases: 16 4/11/2018
Attack of the Microbes cont. • The Challenge List: • If something crashes, chances are everything goes down • Code conflicts caused by multiple developers working on the same design • Duplication of logic across multiple applications • Unable to scale processes as and when needed • Updates and features take too long to deploy to production • Dev, QA and Production environments are most likely different from each other • Ensuring there is sufficient security to the environment now that 3rd parties can access it 17 4/11/2018 • What have we made better • What are new challenges
Containment 18 4/11/2018
Containment • Containerization • A lightweight alternative to full machine virtualization • Encapsulates an application in a container with its own operating environment • Popular container technologies: • Docker • Rkt (pronounced ”Rocket”) • etc. • A container can host almost any kind of application runtime: • ASP.NET • NodeJS • Python • etc. 19 4/11/2018
Containment cont. • Create Container Images • Create a Dockerfile for each of the containers • Using DockerHub, connect to an image with an operating system • Example operating systems: • .NET Core • Alpine Linux • Core OS • etc. • Add application’s source code to image • Expose a port for each of the containers • Execute relevant commands • Build Image 20 4/11/2018
Containment cont. • Example dockerfile: • CMD to build image: 21 4/11/2018 FROM node:8.9.4-alpine WORKDIR /app ADD . /app EXPOSE 8080 RUN npm install CMD npm start
Containment cont. • The Challenge List: • If something crashes, chances are everything goes down • Code conflicts caused by multiple developers working on the same design • Duplication of logic across multiple applications • Unable to scale processes as and when needed • Updates and features take too long to deploy to production • Dev, QA and Production environments are most likely different from each other • Ensuring there is sufficient security to the environment now that 3rd parties can access it • New skills required to setup and deploy containers • Management of services and containers adds complexity to Operations 22 4/11/2018 • What have we made better • What are new challenges
Army of One 23 4/11/2018
Army of One • Many systems exist for container orchestration: • Kubernetes (Recommended) • Docker Swarm • Apache Mesos • etc. • These systems allows for automated deployment, management and scaling of containers 24 4/11/2018
Army of One cont. • Benefits of container orchestration: • High Availability • Clustering containers across multiple Machines and VMs • Run on-premise or in the cloud • Seamless disaster recovery • Scaling containers and services as and when needed • Continuous delivery of updates and fixes with no downtime • Auto restarting of services when failures occur 25 4/11/2018
Army of One cont. • Recommended solutions for on-premise: • Microsoft Azure Stack • Minikube (For development and testing)(Low Availability) • Cloud platforms that support Kubernetes: • Microsoft Azure • Google Cloud • Amazon Web Services • IBM Cloud 26 4/11/2018
Army of One cont. • The Challenge List: • If something crashes, chances are everything goes down • Unable to scale processes as and when needed • Updates and features take too long to deploy to production • Dev, QA and Production environments are most likely different from each other • Ensuring there is sufficient security to the environment now that 3rd parties can access it • Management of services and containers adds complexity to Operations • Transparency and reporting on performance of services • A/B Testing of new updates and features • Purposely injecting faults and latency to create better services 27 4/11/2018 • What have we made better • What are new challenges
Watcher on the Wall 28 4/11/2018
Overview of Istio • Provides a uniform way to connect, manage and secure microservices • Manages traffic flows between microservices • Enforces access policies • Provides metrics, logs and traces for all traffic within a cluster • Service to service authentication • Can be deployed on Kubernetes, Nomad and Consul • No changes to microservices/apps needed for Istio to work 29 4/11/2018
Deploying Istio • Istio exists in its own namespace on Kubernetes and is made up of pre-defined container images • “istioctl” is used along with “kubectl” for Istio-related operations: • kubectl create -f <istioctl kube-inject -f <your-app-spec>.yaml) 30 4/11/2018
Request Routing Istio allows routing to be dynamically configured based on weights and HTTP headers. 31 4/11/2018
Controlling Egress Traffic Istio, by default, does not allow outgoing requests for any containers running Istio as a sidecar. These requests need to be configured. 32 4/11/2018
Fault Injection Istio can inject delays, test resiliency and force timeouts of your services. Latency, spikes and other undesirable effects can also be configured. 33 4/11/2018
Access Control • The following access control methods can be configured for Istio: • TLS Authentication • Basic Access Control (Uses Kubernetes labels) • Role-based Access Control (RBAC) • Secure Access Control 34 4/11/2018
Watcher on the Wall cont. • The Challenge List: • Updates and features take too long to deploy to production • Ensuring there is sufficient security to the environment now that 3rd parties can access it • Transparency and reporting on performance of services • A/B Testing of new updates and features • Purposely injecting faults and latency to create better services • Dynamic routing and load balancing 35 4/11/2018 • What have we made better • What are new challenges
Closing 36 4/11/2018
Closing For more information, check out: • Istio – https://istio.io • Kubernetes - https://kubernetes.io • Docker – https://www.docker.com • The 12 Factor App - https://12factor.net 37 4/11/2018
Contact John Jardin • Email: john@agilite.io • Website: https://agilite.io • Blog: http://www.bleedingcode.com 38 4/11/2018
The End 39 4/11/2018

Empfohlen

Future of Microservices - Jakub Hadvig
Future of Microservices - Jakub HadvigFuture of Microservices - Jakub Hadvig
Future of Microservices - Jakub Hadvig
WEBtlak
 
Docker Overview - AWS Tech Connect - Seattle 10/28
Docker Overview - AWS Tech Connect - Seattle 10/28Docker Overview - AWS Tech Connect - Seattle 10/28
Docker Overview - AWS Tech Connect - Seattle 10/28
Mike Coleman
 
Orchestrating Cloud-Native and Traditional Application Architectures
Orchestrating Cloud-Native and Traditional Application ArchitecturesOrchestrating Cloud-Native and Traditional Application Architectures
Orchestrating Cloud-Native and Traditional Application Architectures
Apprenda
 
Developing Enterprise Applications for the Cloud, from Monolith to Microservices
Developing Enterprise Applications for the Cloud, from Monolith to MicroservicesDeveloping Enterprise Applications for the Cloud, from Monolith to Microservices
Developing Enterprise Applications for the Cloud, from Monolith to Microservices
David Currie
 
Introduction to Microservices and Cloud Native Application Architecture
Introduction to Microservices and Cloud Native Application ArchitectureIntroduction to Microservices and Cloud Native Application Architecture
Introduction to Microservices and Cloud Native Application Architecture
David Currie
 
12 Factor App Methodology
12 Factor App Methodology12 Factor App Methodology
12 Factor App Methodology
laeshin park
 
Find your data - use GraphDB capabilities in XPages applications - and beyond
Find your data - use GraphDB capabilities in XPages applications - and beyond Find your data - use GraphDB capabilities in XPages applications - and beyond
Find your data - use GraphDB capabilities in XPages applications - and beyond
ICON UK EVENTS Limited
 
Repository Management with JFrog Artifactory
Repository Management with JFrog ArtifactoryRepository Management with JFrog Artifactory
Repository Management with JFrog Artifactory
Stephen Chin
 

Empfohlen

Future of Microservices - Jakub Hadvig
Future of Microservices - Jakub HadvigFuture of Microservices - Jakub Hadvig
Future of Microservices - Jakub Hadvig
WEBtlak
 
Docker Overview - AWS Tech Connect - Seattle 10/28
Docker Overview - AWS Tech Connect - Seattle 10/28Docker Overview - AWS Tech Connect - Seattle 10/28
Docker Overview - AWS Tech Connect - Seattle 10/28
Mike Coleman
 
Orchestrating Cloud-Native and Traditional Application Architectures
Orchestrating Cloud-Native and Traditional Application ArchitecturesOrchestrating Cloud-Native and Traditional Application Architectures
Orchestrating Cloud-Native and Traditional Application Architectures
Apprenda
 
Developing Enterprise Applications for the Cloud, from Monolith to Microservices
Developing Enterprise Applications for the Cloud, from Monolith to MicroservicesDeveloping Enterprise Applications for the Cloud, from Monolith to Microservices
Developing Enterprise Applications for the Cloud, from Monolith to Microservices
David Currie
 
Introduction to Microservices and Cloud Native Application Architecture
Introduction to Microservices and Cloud Native Application ArchitectureIntroduction to Microservices and Cloud Native Application Architecture
Introduction to Microservices and Cloud Native Application Architecture
David Currie
 
12 Factor App Methodology
12 Factor App Methodology12 Factor App Methodology
12 Factor App Methodology
laeshin park
 
Find your data - use GraphDB capabilities in XPages applications - and beyond
Find your data - use GraphDB capabilities in XPages applications - and beyond Find your data - use GraphDB capabilities in XPages applications - and beyond
Find your data - use GraphDB capabilities in XPages applications - and beyond
ICON UK EVENTS Limited
 
Repository Management with JFrog Artifactory
Repository Management with JFrog ArtifactoryRepository Management with JFrog Artifactory
Repository Management with JFrog Artifactory
Stephen Chin
 
Open shift 2.x and MongoDB
Open shift 2.x and MongoDBOpen shift 2.x and MongoDB
Open shift 2.x and MongoDB
plarsen67
 
Self-service and automation using OpenStack for VMware vSphere
Self-service and automation using OpenStack for VMware vSphereSelf-service and automation using OpenStack for VMware vSphere
Self-service and automation using OpenStack for VMware vSphere
Platform9
 
MuleSoft Meetup Roma - CloudHub Networking Stategies
MuleSoft Meetup Roma - CloudHub Networking StategiesMuleSoft Meetup Roma - CloudHub Networking Stategies
MuleSoft Meetup Roma - CloudHub Networking Stategies
Alfonso Martino
 
Power shell for newbies getting started powershell 4
Power shell for newbies getting started powershell 4Power shell for newbies getting started powershell 4
Power shell for newbies getting started powershell 4
Zafar Ali Khan
 
Deploying your apps in the cloud - the options: an overview
Deploying your apps in the cloud - the options: an overviewDeploying your apps in the cloud - the options: an overview
Deploying your apps in the cloud - the options: an overview
Cisco DevNet
 
The 12 Factor App
The 12 Factor AppThe 12 Factor App
The 12 Factor App
rudiyardley
 
The Oracle Application Container Cloud as the Microservices Platform (APAC OU...
The Oracle Application Container Cloud as the Microservices Platform (APAC OU...The Oracle Application Container Cloud as the Microservices Platform (APAC OU...
The Oracle Application Container Cloud as the Microservices Platform (APAC OU...
Lucas Jellema
 
OpenStack Murano
OpenStack MuranoOpenStack Murano
OpenStack Murano
openstackstl
 
Moscow MuleSoft meetup May 2021
Moscow MuleSoft meetup May 2021Moscow MuleSoft meetup May 2021
Moscow MuleSoft meetup May 2021
Leadex Systems
 
ICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJS
ICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJSICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJS
ICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJS
Mark Leusink
 
AppCatalyst and Photon OS
AppCatalyst and Photon OSAppCatalyst and Photon OS
AppCatalyst and Photon OS
Juan Manuel Rey
 
Migrate Heroku & OpenShift Applications to IBM BlueMix
Migrate Heroku & OpenShift Applications to IBM BlueMixMigrate Heroku & OpenShift Applications to IBM BlueMix
Migrate Heroku & OpenShift Applications to IBM BlueMix
Rohit Kelapure
 
Developing Enterprise Applications for the Cloud, from Monolith to Microservice
Developing Enterprise Applications for the Cloud, from Monolith to MicroserviceDeveloping Enterprise Applications for the Cloud, from Monolith to Microservice
Developing Enterprise Applications for the Cloud, from Monolith to Microservice
Jack-Junjie Cai
 
12 factor app
12 factor app12 factor app
12 factor app
Dmytro Panin
 
MuleSoft London Community November 2019 - MuleSoft and CICD
MuleSoft London Community November 2019 - MuleSoft and CICDMuleSoft London Community November 2019 - MuleSoft and CICD
MuleSoft London Community November 2019 - MuleSoft and CICD
Pace Integration
 
12 factor app
12 factor app12 factor app
12 factor app
Luís Bianchin
 
Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...
Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...
Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...
Gilad Garon
 
VMworld 2015: Build and Run Cloud Native Apps in your Software Defined Data C...
VMworld 2015: Build and Run Cloud Native Apps in your Software Defined Data C...VMworld 2015: Build and Run Cloud Native Apps in your Software Defined Data C...
VMworld 2015: Build and Run Cloud Native Apps in your Software Defined Data C...
VMworld
 
Webinar: How and Why to Containerize Your Legacy Applications
Webinar: How and Why to Containerize Your Legacy ApplicationsWebinar: How and Why to Containerize Your Legacy Applications
Webinar: How and Why to Containerize Your Legacy Applications
Storage Switzerland
 
The twelve factor app
The twelve factor appThe twelve factor app
The twelve factor app
Ravi Okade
 
Serverless brewbox
Serverless brewboxServerless brewbox
Serverless brewbox
Lino Telera
 
Edge 2016 Session 1886 Building your own docker container cloud on ibm power...
Edge 2016 Session 1886 Building your own docker container cloud on ibm power...Edge 2016 Session 1886 Building your own docker container cloud on ibm power...
Edge 2016 Session 1886 Building your own docker container cloud on ibm power...
Yong Feng
 

Weitere ähnliche Inhalte

Was ist angesagt?

Self-service and automation using OpenStack for VMware vSphere
Self-service and automation using OpenStack for VMware vSphereSelf-service and automation using OpenStack for VMware vSphere
Self-service and automation using OpenStack for VMware vSphere
Platform9
 
Deploying your apps in the cloud - the options: an overview
Deploying your apps in the cloud - the options: an overviewDeploying your apps in the cloud - the options: an overview
Deploying your apps in the cloud - the options: an overview
Cisco DevNet
 
The Oracle Application Container Cloud as the Microservices Platform (APAC OU...
The Oracle Application Container Cloud as the Microservices Platform (APAC OU...The Oracle Application Container Cloud as the Microservices Platform (APAC OU...
The Oracle Application Container Cloud as the Microservices Platform (APAC OU...
Lucas Jellema
 
ICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJS
ICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJSICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJS
ICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJS
Mark Leusink
 
Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...
Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...
Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...
Gilad Garon
 

Was ist angesagt? (20)

Open shift 2.x and MongoDB
Open shift 2.x and MongoDBOpen shift 2.x and MongoDB
Open shift 2.x and MongoDB
 
Self-service and automation using OpenStack for VMware vSphere
Self-service and automation using OpenStack for VMware vSphereSelf-service and automation using OpenStack for VMware vSphere
Self-service and automation using OpenStack for VMware vSphere
 
MuleSoft Meetup Roma - CloudHub Networking Stategies
MuleSoft Meetup Roma - CloudHub Networking StategiesMuleSoft Meetup Roma - CloudHub Networking Stategies
MuleSoft Meetup Roma - CloudHub Networking Stategies
 
Power shell for newbies getting started powershell 4
Power shell for newbies getting started powershell 4Power shell for newbies getting started powershell 4
Power shell for newbies getting started powershell 4
 
Deploying your apps in the cloud - the options: an overview
Deploying your apps in the cloud - the options: an overviewDeploying your apps in the cloud - the options: an overview
Deploying your apps in the cloud - the options: an overview
 
The 12 Factor App
The 12 Factor AppThe 12 Factor App
The 12 Factor App
 
The Oracle Application Container Cloud as the Microservices Platform (APAC OU...
The Oracle Application Container Cloud as the Microservices Platform (APAC OU...The Oracle Application Container Cloud as the Microservices Platform (APAC OU...
The Oracle Application Container Cloud as the Microservices Platform (APAC OU...
 
OpenStack Murano
OpenStack MuranoOpenStack Murano
OpenStack Murano
 
Moscow MuleSoft meetup May 2021
Moscow MuleSoft meetup May 2021Moscow MuleSoft meetup May 2021
Moscow MuleSoft meetup May 2021
 
ICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJS
ICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJSICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJS
ICON UK 2016: Modernizing an IBM Notes applicaton using with AngularJS
 
AppCatalyst and Photon OS
AppCatalyst and Photon OSAppCatalyst and Photon OS
AppCatalyst and Photon OS
 
Migrate Heroku & OpenShift Applications to IBM BlueMix
Migrate Heroku & OpenShift Applications to IBM BlueMixMigrate Heroku & OpenShift Applications to IBM BlueMix
Migrate Heroku & OpenShift Applications to IBM BlueMix
 
Developing Enterprise Applications for the Cloud, from Monolith to Microservice
Developing Enterprise Applications for the Cloud, from Monolith to MicroserviceDeveloping Enterprise Applications for the Cloud, from Monolith to Microservice
Developing Enterprise Applications for the Cloud, from Monolith to Microservice
 
12 factor app
12 factor app12 factor app
12 factor app
 
MuleSoft London Community November 2019 - MuleSoft and CICD
MuleSoft London Community November 2019 - MuleSoft and CICDMuleSoft London Community November 2019 - MuleSoft and CICD
MuleSoft London Community November 2019 - MuleSoft and CICD
 
12 factor app
12 factor app12 factor app
12 factor app
 
Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...
Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...
Continuous Deployment into the Unknown with Artifactory, Bintray, Docker and ...
 
VMworld 2015: Build and Run Cloud Native Apps in your Software Defined Data C...
VMworld 2015: Build and Run Cloud Native Apps in your Software Defined Data C...VMworld 2015: Build and Run Cloud Native Apps in your Software Defined Data C...
VMworld 2015: Build and Run Cloud Native Apps in your Software Defined Data C...
 
Webinar: How and Why to Containerize Your Legacy Applications
Webinar: How and Why to Containerize Your Legacy ApplicationsWebinar: How and Why to Containerize Your Legacy Applications
Webinar: How and Why to Containerize Your Legacy Applications
 
The twelve factor app
The twelve factor appThe twelve factor app
The twelve factor app
 

Ähnlich wie DevOps, Kubernetes and Istio

One Kubernetes to rule them all (ZEUS 2019 Keynote)
One Kubernetes to rule them all (ZEUS 2019 Keynote)One Kubernetes to rule them all (ZEUS 2019 Keynote)
One Kubernetes to rule them all (ZEUS 2019 Keynote)
Simon Harrer
 
Modern big data and machine learning in the era of cloud, docker and kubernetes
Modern big data and machine learning in the era of cloud, docker and kubernetesModern big data and machine learning in the era of cloud, docker and kubernetes
Modern big data and machine learning in the era of cloud, docker and kubernetes
Slim Baltagi
 

Ähnlich wie DevOps, Kubernetes and Istio (20)

Serverless brewbox
Serverless brewboxServerless brewbox
Serverless brewbox
 
Edge 2016 Session 1886 Building your own docker container cloud on ibm power...
Edge 2016 Session 1886 Building your own docker container cloud on ibm power...Edge 2016 Session 1886 Building your own docker container cloud on ibm power...
Edge 2016 Session 1886 Building your own docker container cloud on ibm power...
 
Why kubernetes matters
Why kubernetes mattersWhy kubernetes matters
Why kubernetes matters
 
Kubernetes on the Edge / 在邊緣的K8S
Kubernetes on the Edge / 在邊緣的K8SKubernetes on the Edge / 在邊緣的K8S
Kubernetes on the Edge / 在邊緣的K8S
 
Docker12 factor
Docker12 factorDocker12 factor
Docker12 factor
 
Docker & aPaaS: Enterprise Innovation and Trends for 2015
Docker & aPaaS: Enterprise Innovation and Trends for 2015Docker & aPaaS: Enterprise Innovation and Trends for 2015
Docker & aPaaS: Enterprise Innovation and Trends for 2015
 
Docker Kubernetes Istio
Docker Kubernetes IstioDocker Kubernetes Istio
Docker Kubernetes Istio
 
Http Services in Rust on Containers
Http Services in Rust on ContainersHttp Services in Rust on Containers
Http Services in Rust on Containers
 
Containers, microservices and serverless for realists
Containers, microservices and serverless for realistsContainers, microservices and serverless for realists
Containers, microservices and serverless for realists
 
Tampere Docker meetup - Happy 5th Birthday Docker
Tampere Docker meetup - Happy 5th Birthday DockerTampere Docker meetup - Happy 5th Birthday Docker
Tampere Docker meetup - Happy 5th Birthday Docker
 
Exploring a simpler, more portable, less overhead solution to deploy Elastics...
Exploring a simpler, more portable, less overhead solution to deploy Elastics...Exploring a simpler, more portable, less overhead solution to deploy Elastics...
Exploring a simpler, more portable, less overhead solution to deploy Elastics...
 
One Kubernetes to rule them all (ZEUS 2019 Keynote)
One Kubernetes to rule them all (ZEUS 2019 Keynote)One Kubernetes to rule them all (ZEUS 2019 Keynote)
One Kubernetes to rule them all (ZEUS 2019 Keynote)
 
(WPF + WinForms) * .NET Core = Modern Desktop
(WPF + WinForms) * .NET Core = Modern Desktop(WPF + WinForms) * .NET Core = Modern Desktop
(WPF + WinForms) * .NET Core = Modern Desktop
 
Modern big data and machine learning in the era of cloud, docker and kubernetes
Modern big data and machine learning in the era of cloud, docker and kubernetesModern big data and machine learning in the era of cloud, docker and kubernetes
Modern big data and machine learning in the era of cloud, docker and kubernetes
 
Meetup Openshift Geneva 03/10
Meetup Openshift Geneva 03/10Meetup Openshift Geneva 03/10
Meetup Openshift Geneva 03/10
 
Whats new in Azure Functions and .NET 6.pptx
Whats new in Azure Functions and .NET 6.pptxWhats new in Azure Functions and .NET 6.pptx
Whats new in Azure Functions and .NET 6.pptx
 
Migrating from IBM API Connect v5 to v2018
Migrating from IBM API Connect v5 to v2018Migrating from IBM API Connect v5 to v2018
Migrating from IBM API Connect v5 to v2018
 
Docker Birthday #5 Meetup Cluj - Presentation
Docker Birthday #5 Meetup Cluj - PresentationDocker Birthday #5 Meetup Cluj - Presentation
Docker Birthday #5 Meetup Cluj - Presentation
 
StarlingX - A Platform for the Distributed Edge | Ildiko Vancsa
StarlingX - A Platform for the Distributed Edge | Ildiko VancsaStarlingX - A Platform for the Distributed Edge | Ildiko Vancsa
StarlingX - A Platform for the Distributed Edge | Ildiko Vancsa
 
Breaking the Monolith Road to Containers
Breaking the Monolith Road to ContainersBreaking the Monolith Road to Containers
Breaking the Monolith Road to Containers
 

Kürzlich hochgeladen

The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
Enterprise Knowledge
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
giselly40
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
Delhi Call girls
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
Delhi Call girls
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Igalia
 

Kürzlich hochgeladen (20)

The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdf
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
 

DevOps, Kubernetes and Istio

  • 1. DevOps, Kubernetes & Istio John Jardin JHB Office365 User Group
  • 2. About John Jardin • Integration and Cloud Architect • Over 16 years development and consulting • Core focuses include: • Integration & Cloud Architecture • Full stack Application Development • Coaching & Mentoring 2 4/11/2018
  • 3. Agenda 3 4/11/2018 • The Hero’s Journey • Rise of the Monolith • Attack of the Microbes • Containment • Army of One • Watcher on the Wall • The End
  • 5. Rise of the Monolith 5 4/11/2018
  • 6. Rise of the Monolith • Your application is potentially a Monolith if: • It exists only for the platform it runs on • User Interface and logic exists in the same design • Functions are made up of hundreds of lines of code and are only accessed natively • Incremental updates require the entire application’s design to be deployed • Deployments of updates and fixes take weeks or even months 6 4/11/2018
  • 7. Example of a Monolith 7 4/11/2018 A Typical Application Platform Server
  • 8. Rise of the Monolith cont. • Our Challenge List: • If something crashes, chances are everything goes down • Code conflicts caused by multiple developers working on the same design • Duplication of logic across multiple applications • Unable to scale processes as and when needed • Updates and features take too long to deploy to production • Dev, QA and Production environments are most likely different from each other 8 4/11/2018
  • 9. Attack of the Microbes 9 4/11/2018
  • 10. Attack of the Microbes • Stage 1: Micro-Functions • Breakdown your functions into re-usable/modular code blocks • Each function should do one thing and do it well • Simplify and optimize the code with the function • Lightweight (max 80-100 lines of code) • Aim for a “Pure Function” strategy: • No dependencies other than what is passed to the function • The code cannot fail and always returns something 10 4/11/2018
  • 11. Attack of the Microbes cont. 11 4/11/2018 YUCKIE!!!
  • 12. Attack of the Microbes cont. 12 4/11/2018 MUCH BETTER!!!
  • 13. Attack of the Microbes cont. • Stage 2: Micro-Services • Define which micro-functions can become services for other 3rd party platforms and applications • Create API Endpoints that trigger your micro-functions • Web APIs (HTTP Requests) are most commonly used 13 4/11/2018
  • 14. Attack of the Microbes cont. 14 4/11/2018
  • 15. Attack of the Microbes cont. • Stage 3: Model/View/Controller Separation • An application’s UI should be a service on it’s own • Consider using libraries/frameworks/platforms such as: • PowerApps • ReactJS • Angular 15 4/11/2018
  • 16. Attack of the Microbes cont. • IMPORTANT: • Upgrade your environment in tiny phases: 16 4/11/2018
  • 17. Attack of the Microbes cont. • The Challenge List: • If something crashes, chances are everything goes down • Code conflicts caused by multiple developers working on the same design • Duplication of logic across multiple applications • Unable to scale processes as and when needed • Updates and features take too long to deploy to production • Dev, QA and Production environments are most likely different from each other • Ensuring there is sufficient security to the environment now that 3rd parties can access it 17 4/11/2018 • What have we made better • What are new challenges
  • 19. Containment • Containerization • A lightweight alternative to full machine virtualization • Encapsulates an application in a container with its own operating environment • Popular container technologies: • Docker • Rkt (pronounced ”Rocket”) • etc. • A container can host almost any kind of application runtime: • ASP.NET • NodeJS • Python • etc. 19 4/11/2018
  • 20. Containment cont. • Create Container Images • Create a Dockerfile for each of the containers • Using DockerHub, connect to an image with an operating system • Example operating systems: • .NET Core • Alpine Linux • Core OS • etc. • Add application’s source code to image • Expose a port for each of the containers • Execute relevant commands • Build Image 20 4/11/2018
  • 21. Containment cont. • Example dockerfile: • CMD to build image: 21 4/11/2018 FROM node:8.9.4-alpine WORKDIR /app ADD . /app EXPOSE 8080 RUN npm install CMD npm start
  • 22. Containment cont. • The Challenge List: • If something crashes, chances are everything goes down • Code conflicts caused by multiple developers working on the same design • Duplication of logic across multiple applications • Unable to scale processes as and when needed • Updates and features take too long to deploy to production • Dev, QA and Production environments are most likely different from each other • Ensuring there is sufficient security to the environment now that 3rd parties can access it • New skills required to setup and deploy containers • Management of services and containers adds complexity to Operations 22 4/11/2018 • What have we made better • What are new challenges
  • 23. Army of One 23 4/11/2018
  • 24. Army of One • Many systems exist for container orchestration: • Kubernetes (Recommended) • Docker Swarm • Apache Mesos • etc. • These systems allows for automated deployment, management and scaling of containers 24 4/11/2018
  • 25. Army of One cont. • Benefits of container orchestration: • High Availability • Clustering containers across multiple Machines and VMs • Run on-premise or in the cloud • Seamless disaster recovery • Scaling containers and services as and when needed • Continuous delivery of updates and fixes with no downtime • Auto restarting of services when failures occur 25 4/11/2018
  • 26. Army of One cont. • Recommended solutions for on-premise: • Microsoft Azure Stack • Minikube (For development and testing)(Low Availability) • Cloud platforms that support Kubernetes: • Microsoft Azure • Google Cloud • Amazon Web Services • IBM Cloud 26 4/11/2018
  • 27. Army of One cont. • The Challenge List: • If something crashes, chances are everything goes down • Unable to scale processes as and when needed • Updates and features take too long to deploy to production • Dev, QA and Production environments are most likely different from each other • Ensuring there is sufficient security to the environment now that 3rd parties can access it • Management of services and containers adds complexity to Operations • Transparency and reporting on performance of services • A/B Testing of new updates and features • Purposely injecting faults and latency to create better services 27 4/11/2018 • What have we made better • What are new challenges
  • 28. Watcher on the Wall 28 4/11/2018
  • 29. Overview of Istio • Provides a uniform way to connect, manage and secure microservices • Manages traffic flows between microservices • Enforces access policies • Provides metrics, logs and traces for all traffic within a cluster • Service to service authentication • Can be deployed on Kubernetes, Nomad and Consul • No changes to microservices/apps needed for Istio to work 29 4/11/2018
  • 30. Deploying Istio • Istio exists in its own namespace on Kubernetes and is made up of pre-defined container images • “istioctl” is used along with “kubectl” for Istio-related operations: • kubectl create -f <istioctl kube-inject -f <your-app-spec>.yaml) 30 4/11/2018
  • 31. Request Routing Istio allows routing to be dynamically configured based on weights and HTTP headers. 31 4/11/2018
  • 32. Controlling Egress Traffic Istio, by default, does not allow outgoing requests for any containers running Istio as a sidecar. These requests need to be configured. 32 4/11/2018
  • 33. Fault Injection Istio can inject delays, test resiliency and force timeouts of your services. Latency, spikes and other undesirable effects can also be configured. 33 4/11/2018
  • 34. Access Control • The following access control methods can be configured for Istio: • TLS Authentication • Basic Access Control (Uses Kubernetes labels) • Role-based Access Control (RBAC) • Secure Access Control 34 4/11/2018
  • 35. Watcher on the Wall cont. • The Challenge List: • Updates and features take too long to deploy to production • Ensuring there is sufficient security to the environment now that 3rd parties can access it • Transparency and reporting on performance of services • A/B Testing of new updates and features • Purposely injecting faults and latency to create better services • Dynamic routing and load balancing 35 4/11/2018 • What have we made better • What are new challenges
  • 37. Closing For more information, check out: • Istio – https://istio.io • Kubernetes - https://kubernetes.io • Docker – https://www.docker.com • The 12 Factor App - https://12factor.net 37 4/11/2018
  • 38. Contact John Jardin • Email: john@agilite.io • Website: https://agilite.io • Blog: http://www.bleedingcode.com 38 4/11/2018

Hinweis der Redaktion

  1. This is all bleeding edge technology right now Too many buzzwords at the moment I’m here to simplify these technologies To understand Istio, we have to go back to the beginning Part 1 is a crash course on microservices and containerization Part 2 is Istio with some demos
  2. What constitutes a Monolithic application? Let’s rather understand the reasons it would be labeled one
  3. We cannot continue like this!!! So where do we start?
  4. We cannot continue like this!!! So where do we start?
  5. We cannot continue like this!!! So where do we start?
  6. We cannot continue like this!!! So where do we start?
  7. Other Container Technologies: Solaris Microsoft
  8. Open Source System for Container Orchestration Automate deployment, scaling and management of containerized applications
  9. Demo Kubernetes Dashboard to show Istio in its own namespace with containers
  10. Show example of app using 1 version in 1 scenario and another version in another scenario