Abstract image of a woman sitting on books and studying on a laptop

Kubernetes - training micro-dragons without getting burnt

A
Amir Moghimi

The document discusses training microservices in Kubernetes, emphasizing the need for homogenous build artifacts, configuration management, and service discovery. It details the practical use of Docker for creating containerized applications, Kubernetes resources like pods and services, and approaches for managing configurations through tools like Helm and Ansible. The document ultimately outlines deployment strategies and the structured organization of project resources for effective microservice management.

Software
1 of 22
Downloaded 32 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
Kubernetes - training micro-dragons without getting burnt Amir Moghimi Senior Consultant in managed services Sixtree, Australia
Traditional approach
Micro-services approach
Train microservices Microservices architecture magnifies the need for: ● Fairly homogenous build artifacts ● Standard running platform ● Configuration and secret management ● Service Discovery
Polyglot programming ● Pick right tool for the job ● Multiple teams with different expertise/perspectives ● Keep developers busy learning new language(s)
Homogenous build artifacts Build artifacts: ● Java Jar and War files ● Ruby Gems and Rails apps ● Node packages and apps ● Go binaries Containerise everything (Docker): ● Universally deployable artifact
Dockerfile FROM debian:jessie ENV JAVA_HOME /usr/lib/jvm/java-8-openjdk-amd64/jre RUN apt-get update && apt-get install -y openjdk-8-jre-headless COPY my-app.jar /my-app.jar ENV MY_APP_CONF_VAR super-cool-default-value CMD [“java”, “-jar”, “/my-app.jar”] docker build -t registry/image_name . docker push registry/image_name
Configure and run docker run -d -e REDIS_NAMESPACE='staging' -e POSTGRES_ENV_POSTGRES_PASSWORD='foo' -e POSTGRES_ENV_POSTGRES_USER='bar' -e POSTGRES_ENV_DB_NAME='mysite_staging' -e POSTGRES_ADDR='docker-db-1.us-east-1.rds.amazonaws.com' -e SITE_URL='staging.mysite.com' -p 80:80 --restart=on-failure:10 --name container_name registry/image_name image_command cmd_arg1 cmd_arg2
Configuration hell ● Application config ○ Env vars, config files, cmd line args ● Runtime environment config ○ Web server, JVM ● Runtime dependencies config ○ Volumes, logging, monitoring, stats
Configuration management ● Train your app: ○ 12-factor app ● Configuration in a containerised world: ○ Log to stdout ○ Port mappings (from host to container) ○ SaaS blob storage (mount volumes only if providing a storage service) ○ Service discovery (Consul, Eureka, DNS) ○ Secrets (ideally only in memory but how?) ○ Environment Variables for everything else
Configuration management tools ● Docker compose ○ State management? Templating? Secrets? Service discovery? Cluster- level volumes? ● Ansible Role (classic host-based approach + docker module) ● Kubernetes (container PaaS)
Kubernetes key resources ● Namespace ● Pod (container) ● Replica Set ● ConfigMap ● Secret ● Service ● Deployment
Kubernetes Master API Server Replica Set kubelet Node Pod Container Pod Container kubelet Node Pod Container Kubernetes Cluster = Label = Resource = Process
Replica Set (Replication Controller) apiVersion: v1 kind: ReplicationController metadata: name: my-nginx-replica-set spec: replicas: 3 selector: app: dragon-web template: metadata: name: nginx-pod labels: app: dragon-web spec: containers: - name: nginx-container image: nginx env: - name: LOG_LEVEL value: INFO ports: - containerPort: 80 apiVersion: v1 kind: Pod kubectl create -f my-nginx-replica-set.yml
ConfigMap apiVersion: v1 kind: ConfigMap metadata: name: dragon-config labels: environment: non-prod data: dragon.how.much: very dragon.type: fast apiVersion: v1 kind: Pod metadata: name: dragon-pod spec: containers: - name: dragon-container image: dragon-image env: - name: DRAGON_LEVEL valueFrom: configMapKeyRef: name: dragon-config key: dragon.how.much - name: DRAGON_TYPE valueFrom: configMapKeyRef: name: dragon-config key: dragon.type
Secret apiVersion: v1 kind: Secret metadata: name: my-secret type: Opaque data: password: MWYyZDFlMmU2N2RmCg== username: my_admin apiVersion: v1 kind: Pod metadata: name: secret-user-pod Spec: volumes: name: secret-vol secret: secretName: my-secret containers: - name: nginx-container image: nginx volumeMounts: name: secret-vol mountPath: /etc/my-access-keys readOnly: true
Service { "apiVersion": "v1", "kind": "Service", "metadata": { "name": "my-service" }, "spec": { "selector": { "app": "dragon-web" }, "ports": [{ "protocol": "TCP", "port": 80, "targetPort": 80 }] } }
Service discovery ● DNS ○ Take extra care when playing with fire ○ No control over client ○ Time sensitive protocol ○ Use only if you have a reliable DNS service, i.e. AWS Route53 ● Provided environment variables ○ MY_DROGON_SERVICE_HOST=10.0.0.11 MY_DROGON_SERVICE_PORT=8080 ○ Create services before using them in pods ○ Only works per namespace ● Kubernetes REST API ○ GET /api/v1/namespaces/{namespace}/services/{service_name} DNS HAZARD
Deployment apiVersion: extensions/v1beta1 kind: Deployment metadata: name: nginx-deployment spec: replicas: 3 template: metadata: labels: app: nginx spec: containers: - name: nginx image: nginx:1.7.9 ports: - containerPort: 80 Declarative Server-side Revision tracking Easy rollback
Project structure my-dragon-microservice/ src/ kube-resources/ default-configmap.yml default-secret.yml service.yml deployment.yml pipeline-resources/ build.sh test.sh deploy.sh # kubectl apply -f ../kube-resources pipeline.yml Dockerfile
Environments config dev-1/ namespace.yml configmap.yml secret.yml dev-2/… dev-N/ qa-1/ namespace.yml configmap.yml secret.yml qa-2/… qa-N/ prod-1/ namespace.yml configmap.yml secret.yml prod-2/… prod-N/
Demo

More Related Content

PPTX
Going Serverless with Azure Functions
Christos Matskas
 
PDF
Rob Gruhl and Erik Erikson - What We Learned in 18 Serverless Months at Nords...
ServerlessConf
 
PPTX
Aws serverless architecture
genesesoftware
 
PPTX
API Gateway: Nginx way
inovia
 
PPTX
Everybody loves Swagger
BizTalk360
 
PPTX
Serverless Summit India 2017: Fission
Vishal Biyani
 
PDF
Putting The 'M' In MBaaS—Red Hat Mobile Client Development Platform (Jay Balu...
Red Hat Developers
 
PDF
Microservices
darkofabijan
 
Going Serverless with Azure Functions
Christos Matskas
 
Rob Gruhl and Erik Erikson - What We Learned in 18 Serverless Months at Nords...
ServerlessConf
 
Aws serverless architecture
genesesoftware
 
API Gateway: Nginx way
inovia
 
Everybody loves Swagger
BizTalk360
 
Serverless Summit India 2017: Fission
Vishal Biyani
 
Putting The 'M' In MBaaS—Red Hat Mobile Client Development Platform (Jay Balu...
Red Hat Developers
 
Microservices
darkofabijan
 

What's hot (20)

PDF
Beautifying the Beautiful: Theming WSO2 API Manager
WSO2
 
PPTX
Microservices from operations aspect
David Papp
 
PPTX
Microservices environment in production
David Papp
 
PDF
AWS Api Gateway by Łukasz Marchewka Scalacc
Scalac
 
PDF
Azure Service Fabric - Hamida Rebai - CCDays
CodeOps Technologies LLP
 
PDF
Lean Microservices with OSGi - Christian Schneider
mfrancis
 
PPTX
BUILD, TEST & DEPLOY .NET CORE APPS IN AZURE DEVOPS
CodeOps Technologies LLP
 
PDF
Azure Days 2019: Infrastructure as Code auf Azure (Jonas Wanninger & Daniel H...
Trivadis
 
PPTX
Using an API Gateway for Microservices
NGINX, Inc.
 
PPTX
Developing Cross-Platform Web Apps with ASP.NET Core1.0
EastBanc Tachnologies
 
PPTX
Serverless in Azure with Functions
Christos Matskas
 
PPTX
Indore mule soft meetup 3
Kirti Gurjar
 
PDF
Forced Evolution: Shopify's Journey to Kubernetes
C4Media
 
PPSX
Power of Microsoft Graph API by Nilesh Shah SharePoint Saturday Toronto 2017
Nilesh Shah
 
PPTX
12 Clouds of Christmas 2012- Stormpath
Karthik Gaekwad
 
PPTX
Azure Update, July 2016
Tokyo Azure Meetup
 
PDF
Spring one pivotal
Mallika Iyer
 
PDF
WSO2Con USA 2017: Building an Effective API Architecture
WSO2
 
PPTX
Microservices: A developer's approach
Foyzul Karim
 
PPTX
SDLC, Agile methodologies and Career in Product management
Foyzul Karim
 
Beautifying the Beautiful: Theming WSO2 API Manager
WSO2
 
Microservices from operations aspect
David Papp
 
Microservices environment in production
David Papp
 
AWS Api Gateway by Łukasz Marchewka Scalacc
Scalac
 
Azure Service Fabric - Hamida Rebai - CCDays
CodeOps Technologies LLP
 
Lean Microservices with OSGi - Christian Schneider
mfrancis
 
BUILD, TEST & DEPLOY .NET CORE APPS IN AZURE DEVOPS
CodeOps Technologies LLP
 
Azure Days 2019: Infrastructure as Code auf Azure (Jonas Wanninger & Daniel H...
Trivadis
 
Using an API Gateway for Microservices
NGINX, Inc.
 
Developing Cross-Platform Web Apps with ASP.NET Core1.0
EastBanc Tachnologies
 
Serverless in Azure with Functions
Christos Matskas
 
Indore mule soft meetup 3
Kirti Gurjar
 
Forced Evolution: Shopify's Journey to Kubernetes
C4Media
 
Power of Microsoft Graph API by Nilesh Shah SharePoint Saturday Toronto 2017
Nilesh Shah
 
12 Clouds of Christmas 2012- Stormpath
Karthik Gaekwad
 
Azure Update, July 2016
Tokyo Azure Meetup
 
Spring one pivotal
Mallika Iyer
 
WSO2Con USA 2017: Building an Effective API Architecture
WSO2
 
Microservices: A developer's approach
Foyzul Karim
 
SDLC, Agile methodologies and Career in Product management
Foyzul Karim
 
Ad

Viewers also liked (12)

PDF
JavaScript framework overview
JetRuby Agency
 
PDF
Scaling docker with kubernetes
Liran Cohen
 
PDF
Demystifying kubernetes
Works Applications
 
PDF
Kubernetes in 20 minutes - HDE Monthly Technical Session 24
lestrrat
 
PPTX
Kubernetes CI/CD with Helm
Adnan Abdulhussein
 
PDF
Container Orchestration Wars
Karl Isenberg
 
PDF
Endocode Kubernetes Meetup: Architecture Patterns for Microservices in Kubern...
Thomas Fricke
 
PDF
Idea to Production - with Gitlab and Kubernetes
Simon Dittlmann
 
PDF
How to Monitor Microservices
Sysdig
 
PPTX
Stateful set in kubernetes implementation & usecases
Krishna-Kumar
 
PDF
Continuous delivery of microservices with kubernetes - Quintor 27-2-2017
Arjen Wassink
 
PPTX
K8S in prod
Mageshwaran Rajendran
 
JavaScript framework overview
JetRuby Agency
 
Scaling docker with kubernetes
Liran Cohen
 
Demystifying kubernetes
Works Applications
 
Kubernetes in 20 minutes - HDE Monthly Technical Session 24
lestrrat
 
Kubernetes CI/CD with Helm
Adnan Abdulhussein
 
Container Orchestration Wars
Karl Isenberg
 
Endocode Kubernetes Meetup: Architecture Patterns for Microservices in Kubern...
Thomas Fricke
 
Idea to Production - with Gitlab and Kubernetes
Simon Dittlmann
 
How to Monitor Microservices
Sysdig
 
Stateful set in kubernetes implementation & usecases
Krishna-Kumar
 
Continuous delivery of microservices with kubernetes - Quintor 27-2-2017
Arjen Wassink
 
K8S in prod
Mageshwaran Rajendran
 
Ad

Similar to Kubernetes - training micro-dragons without getting burnt (20)

PDF
Kubernetes: training micro-dragons for a serious battle
Amir Moghimi
 
PPTX
K8s in 3h - Kubernetes Fundamentals Training
Piotr Perzyna
 
PPTX
betterCode Workshop: Effizientes DevOps-Tooling mit Go
QAware GmbH
 
PPTX
Docker Azure Friday OSS March 2017 - Developing and deploying Java & Linux on...
Patrick Chanezon
 
PDF
Cloud-native applications with Java and Kubernetes - Yehor Volkov
Kuberton
 
PDF
Building Web Scale Apps with Docker and Mesos by Alex Rukletsov (Mesosphere)
Docker, Inc.
 
PDF
Kubernetes: The Next Research Platform
Bob Killen
 
PDF
DevEx | there’s no place like k3s
Haggai Philip Zagury
 
PDF
Get you Java application ready for Kubernetes !
Anthony Dahanne
 
PPTX
K8s best practices from the field!
DoiT International
 
PPTX
Introduction to kubernetes
Rishabh Indoria
 
PPTX
Deploying windows containers with kubernetes
Ben Hall
 
PPTX
Microservices with containers in the cloud
Eugene Fedorenko
 
PDF
Dockers zero to hero
Nicolas De Loof
 
PDF
Build Your Kubernetes Operator with the Right Tool!
Rafał Leszko
 
PPTX
#3 Hanoi Magento Meetup - Part 2: Scalable Magento Development With Containers
Hanoi MagentoMeetup
 
PDF
Exploring MySQL Operator for Kubernetes in Python
Ivan Ma
 
PPTX
Docker Enterprise Workshop - Technical
Patrick Chanezon
 
PDF
Kubernetes Intro
Antonio Ojea Garcia
 
PDF
CI/CD Across Multiple Environments
Karl Isenberg
 
Kubernetes: training micro-dragons for a serious battle
Amir Moghimi
 
K8s in 3h - Kubernetes Fundamentals Training
Piotr Perzyna
 
betterCode Workshop: Effizientes DevOps-Tooling mit Go
QAware GmbH
 
Docker Azure Friday OSS March 2017 - Developing and deploying Java & Linux on...
Patrick Chanezon
 
Cloud-native applications with Java and Kubernetes - Yehor Volkov
Kuberton
 
Building Web Scale Apps with Docker and Mesos by Alex Rukletsov (Mesosphere)
Docker, Inc.
 
Kubernetes: The Next Research Platform
Bob Killen
 
DevEx | there’s no place like k3s
Haggai Philip Zagury
 
Get you Java application ready for Kubernetes !
Anthony Dahanne
 
K8s best practices from the field!
DoiT International
 
Introduction to kubernetes
Rishabh Indoria
 
Deploying windows containers with kubernetes
Ben Hall
 
Microservices with containers in the cloud
Eugene Fedorenko
 
Dockers zero to hero
Nicolas De Loof
 
Build Your Kubernetes Operator with the Right Tool!
Rafał Leszko
 
#3 Hanoi Magento Meetup - Part 2: Scalable Magento Development With Containers
Hanoi MagentoMeetup
 
Exploring MySQL Operator for Kubernetes in Python
Ivan Ma
 
Docker Enterprise Workshop - Technical
Patrick Chanezon
 
Kubernetes Intro
Antonio Ojea Garcia
 
CI/CD Across Multiple Environments
Karl Isenberg
 

Recently uploaded (20)

PPTX
Cybersecurity-and-Fraud-Protecting-Your-Digital-Life.pptx
balaji9945191
 
PPTX
Full-Stack Developer Courses That Actually Land You Jobs
Ask the C Expert
 
PDF
novaPDF Pro 11.9.482 Crack + License Key [Latest 2025]
viktamscs
 
PDF
Guide to Food Delivery App Development.pdf
Lilac infotech
 
PDF
Topaz Photo AI Crack New Download (Latest 2025)
hashmi66g66
 
PDF
DuckDuckGo Private Browser Premium APK for Android Crack Latest 2025
hashmi66g66
 
PPTX
Computer Software - Technology and Livelihood Education
ShielaGuevarra6
 
PPTX
Python is a high-level, interpreted programming language
kesavansa2002
 
PPTX
4Seller: The All-in-One Multi-Channel E-Commerce Management Platform for Glob...
4Seller Multi-channel Ecommerce Tool
 
PDF
Type Class Derivation in Scala 3 - Jose Luis Pintado Barbero
José Luis Pintado Barbero
 
PDF
EaseUS PDF Editor Pro 6.2.0.2 Crack with License Key 2025
halimaanam8
 
PPTX
CNN LeNet5 Architecture: Neural Networks
DrRPonnusamyCIT
 
PPTX
Cybersecurity: Protecting the Digital World
SURULIAPPANPREMKMAR
 
PPTX
Lecture 5 Software Requirement Engineering
Huda Nasir
 
PDF
CCleaner 6.39.11548 Crack 2025 License Key
viktamscs
 
PDF
BoxLang Dynamic AWS Lambda - Japan Edition
Ortus Solutions, Corp
 
PDF
AI Guide for Business Growth - Arna Softech
Arna Softech
 
PPTX
Airline CRS | Airline CRS Systems | CRS System
yugababu033
 
PDF
Internet Download Manager IDM Crack powerful download accelerator New Version...
imang66g
 
PDF
Workplace Software and Skills - OpenStax
tranviettoan19672001
 
Cybersecurity-and-Fraud-Protecting-Your-Digital-Life.pptx
balaji9945191
 
Full-Stack Developer Courses That Actually Land You Jobs
Ask the C Expert
 
novaPDF Pro 11.9.482 Crack + License Key [Latest 2025]
viktamscs
 
Guide to Food Delivery App Development.pdf
Lilac infotech
 
Topaz Photo AI Crack New Download (Latest 2025)
hashmi66g66
 
DuckDuckGo Private Browser Premium APK for Android Crack Latest 2025
hashmi66g66
 
Computer Software - Technology and Livelihood Education
ShielaGuevarra6
 
Python is a high-level, interpreted programming language
kesavansa2002
 
4Seller: The All-in-One Multi-Channel E-Commerce Management Platform for Glob...
4Seller Multi-channel Ecommerce Tool
 
Type Class Derivation in Scala 3 - Jose Luis Pintado Barbero
José Luis Pintado Barbero
 
EaseUS PDF Editor Pro 6.2.0.2 Crack with License Key 2025
halimaanam8
 
CNN LeNet5 Architecture: Neural Networks
DrRPonnusamyCIT
 
Cybersecurity: Protecting the Digital World
SURULIAPPANPREMKMAR
 
Lecture 5 Software Requirement Engineering
Huda Nasir
 
CCleaner 6.39.11548 Crack 2025 License Key
viktamscs
 
BoxLang Dynamic AWS Lambda - Japan Edition
Ortus Solutions, Corp
 
AI Guide for Business Growth - Arna Softech
Arna Softech
 
Airline CRS | Airline CRS Systems | CRS System
yugababu033
 
Internet Download Manager IDM Crack powerful download accelerator New Version...
imang66g
 
Workplace Software and Skills - OpenStax
tranviettoan19672001
 

Kubernetes - training micro-dragons without getting burnt

  • 1. Kubernetes - training micro-dragons without getting burnt Amir Moghimi Senior Consultant in managed services Sixtree, Australia
  • 4. Train microservices Microservices architecture magnifies the need for: ● Fairly homogenous build artifacts ● Standard running platform ● Configuration and secret management ● Service Discovery
  • 5. Polyglot programming ● Pick right tool for the job ● Multiple teams with different expertise/perspectives ● Keep developers busy learning new language(s)
  • 6. Homogenous build artifacts Build artifacts: ● Java Jar and War files ● Ruby Gems and Rails apps ● Node packages and apps ● Go binaries Containerise everything (Docker): ● Universally deployable artifact
  • 7. Dockerfile FROM debian:jessie ENV JAVA_HOME /usr/lib/jvm/java-8-openjdk-amd64/jre RUN apt-get update && apt-get install -y openjdk-8-jre-headless COPY my-app.jar /my-app.jar ENV MY_APP_CONF_VAR super-cool-default-value CMD [“java”, “-jar”, “/my-app.jar”] docker build -t registry/image_name . docker push registry/image_name
  • 8. Configure and run docker run -d -e REDIS_NAMESPACE='staging' -e POSTGRES_ENV_POSTGRES_PASSWORD='foo' -e POSTGRES_ENV_POSTGRES_USER='bar' -e POSTGRES_ENV_DB_NAME='mysite_staging' -e POSTGRES_ADDR='docker-db-1.us-east-1.rds.amazonaws.com' -e SITE_URL='staging.mysite.com' -p 80:80 --restart=on-failure:10 --name container_name registry/image_name image_command cmd_arg1 cmd_arg2
  • 9. Configuration hell ● Application config ○ Env vars, config files, cmd line args ● Runtime environment config ○ Web server, JVM ● Runtime dependencies config ○ Volumes, logging, monitoring, stats
  • 10. Configuration management ● Train your app: ○ 12-factor app ● Configuration in a containerised world: ○ Log to stdout ○ Port mappings (from host to container) ○ SaaS blob storage (mount volumes only if providing a storage service) ○ Service discovery (Consul, Eureka, DNS) ○ Secrets (ideally only in memory but how?) ○ Environment Variables for everything else
  • 11. Configuration management tools ● Docker compose ○ State management? Templating? Secrets? Service discovery? Cluster- level volumes? ● Ansible Role (classic host-based approach + docker module) ● Kubernetes (container PaaS)
  • 12. Kubernetes key resources ● Namespace ● Pod (container) ● Replica Set ● ConfigMap ● Secret ● Service ● Deployment
  • 13. Kubernetes Master API Server Replica Set kubelet Node Pod Container Pod Container kubelet Node Pod Container Kubernetes Cluster = Label = Resource = Process
  • 14. Replica Set (Replication Controller) apiVersion: v1 kind: ReplicationController metadata: name: my-nginx-replica-set spec: replicas: 3 selector: app: dragon-web template: metadata: name: nginx-pod labels: app: dragon-web spec: containers: - name: nginx-container image: nginx env: - name: LOG_LEVEL value: INFO ports: - containerPort: 80 apiVersion: v1 kind: Pod kubectl create -f my-nginx-replica-set.yml
  • 15. ConfigMap apiVersion: v1 kind: ConfigMap metadata: name: dragon-config labels: environment: non-prod data: dragon.how.much: very dragon.type: fast apiVersion: v1 kind: Pod metadata: name: dragon-pod spec: containers: - name: dragon-container image: dragon-image env: - name: DRAGON_LEVEL valueFrom: configMapKeyRef: name: dragon-config key: dragon.how.much - name: DRAGON_TYPE valueFrom: configMapKeyRef: name: dragon-config key: dragon.type
  • 16. Secret apiVersion: v1 kind: Secret metadata: name: my-secret type: Opaque data: password: MWYyZDFlMmU2N2RmCg== username: my_admin apiVersion: v1 kind: Pod metadata: name: secret-user-pod Spec: volumes: name: secret-vol secret: secretName: my-secret containers: - name: nginx-container image: nginx volumeMounts: name: secret-vol mountPath: /etc/my-access-keys readOnly: true
  • 17. Service { "apiVersion": "v1", "kind": "Service", "metadata": { "name": "my-service" }, "spec": { "selector": { "app": "dragon-web" }, "ports": [{ "protocol": "TCP", "port": 80, "targetPort": 80 }] } }
  • 18. Service discovery ● DNS ○ Take extra care when playing with fire ○ No control over client ○ Time sensitive protocol ○ Use only if you have a reliable DNS service, i.e. AWS Route53 ● Provided environment variables ○ MY_DROGON_SERVICE_HOST=10.0.0.11 MY_DROGON_SERVICE_PORT=8080 ○ Create services before using them in pods ○ Only works per namespace ● Kubernetes REST API ○ GET /api/v1/namespaces/{namespace}/services/{service_name} DNS HAZARD
  • 19. Deployment apiVersion: extensions/v1beta1 kind: Deployment metadata: name: nginx-deployment spec: replicas: 3 template: metadata: labels: app: nginx spec: containers: - name: nginx image: nginx:1.7.9 ports: - containerPort: 80 Declarative Server-side Revision tracking Easy rollback
  • 22. Demo