Running Docker in Production - The Good, the Bad and The Ugly

•Descargar como PPTX, PDF•

2 recomendaciones•1,623 vistas

When beginning to run Docker in production choosing the right path is critical. This presentation gives you some tips and suggestions on how to make this process easier.

Tecnología

Docker in Production
The Good, The Bad and The Ugly
Jari Kolehmainen, CTO & Co-founder

Rent?
AWS ECS
Azure Container Service
Google Container Engine

Rent
”I don’t want to maintain anything”
Works for some use cases

Platform?
Docker Swarm (the new one)
Kubernetes
Kontena
DCOS

Platform
Most features built-in
Less maintenance
Battle tested

Docker Engine
Tweak defaults
Needs “janitors”
Prefer container “native” hosts

Docker Engine
Graphdriver of the day: overlay2
Engine plugins: run outside
Keep engine & kernel up-to-date

Docker Engine
3rd parties might cause side-effects
Systemd <> Overlay networks
Cadvisor <> Docker mounts

Pipeline
Script everything
Version control everything
Yes, everything

Tools for pipeline
Drone
Jenkins
Gitlab CI

1. Git Push
2. Trigger Build 3. Push Docker Image
4. Trigger Deploy
5a. Deploy to Staging 5b. Deploy to Production
Pull Docker Image

Security
Security patching
Network access
Secret management
Audit

Patching
Container “native” OS
Configuration management
Image scanning

Network Security
Overlay (SDN) networks
Network segments/policies
Firewalls

Secret Management
Keep secrets out
Use platform provider solution
Integrate 3rd party solution to pipeline

But why?
Hosts fail
Engines fail
Containers fail
Your app crashes

Rules for chaos
Allow hosts to die
Trust the scheduler
Use clustered databases
Outsource state if possible

Summary
Prepare properly
Tweak defaults
Automate everything
Use battle tested solutions

info@kontena.io
@kontenainc
slack.kontena.io
github.com/kontena/kontena
meetup.com/pro/kontena
www.kontena.io
Stay up to date!

Más contenido relacionado

La actualidad más candente

Docker has the potential to revolutionize how we build, deliver, support and even design software. But it doesn't have to be a violent revolution. The end goal might be breaking your existing ASP.NET monolith into microservices which run cross-platform on .NET Core, but the first step can be as simple as packaging your whole .Net Framework application as-is into a Docker image and running it as a container. In this session, we'll take an existing ASP.NET WebForms application and package it as a Docker image, which can run in a container on Windows Server 2016 and Windows 10. We'll show you how to run the app and a SQL Server database in Docker containers on Windows, and how to use Docker Compose to define the structure of a distributed application. Then we'll iteratively add functionality to the app, making use of the Docker platform to modernize the monolith without a full rebuild. We'll take a feature-driven approach and show you how Docker makes it easy to address performance, usability and design issues.y and design issues.

Modernizing .NET Apps

Docker, Inc.

Presented by Sebastien Goasguen, VP, Apache CloudStack and Mathieu Buffenoir, co-founder, SBEX Bity is an internet money gateway built by Swiss Bitcoin Exchange ( SBEX ). To trade bitcoin the entire infrastructure of Bity is running in Docker containers. All the components of the infrastructure are using Docker, from the frontend applications and load balancer, the Django based backend, replicated Postgres database, Bitcoin daemon and remittance engine. All software goes through a CI pipeline that starts with Docker images being built on private repositories in Docker hub. Developers take also advantage of a docker-compose definition that allows them to run the entire infrastructure on a single laptop. Finally the production deployments happen thanks to the Ansible Docker module on a CloudStack based public cloud. Everything has been automated to ease re-deployment and operations. This presentation will go through every component and how Docker has enabled us to go production in 4 months.

DockerCon EU 2015: Trading Bitcoin with Docker

Docker, Inc.

Docker in Production - Stateful Services

Kontena, Inc.

Say Bye to VMware PowerCLI ! Time to "GOVC"

Ajeet Singh Raina

In celebration of Docker's 5th birthday in March, user groups all around the world hosted birthday events with an introduction to Docker presentation and hands-on-labs. We invited Docker users to recognize where they were on their Docker journey and the goal was to help them take the next step of their journey with the help of mentors. This presentation was done at the beginning of the events (this one is from the San Francisco event in HQ) and gives a run down of the birthday event series, Docker's momentum, a basic explanation of containers, the benefits of using the Docker platform, Docker + Kubernetes and more.

Docker Bday #5, SF Edition: Introduction to Docker

Docker, Inc.

Containers without docker

Ben Hall

"Join Laura Frank and Stephen Day as they explain and examine technical concepts behind container orchestration systems, like distributed consensus, object models, and node topology. These concepts build the foundation of every modern orchestration system, and each technical explanation will be illustrated using SwarmKit and Kubernetes as a real-world example. Gain a deeper understanding of how orchestration systems work in practice and walk away with more insights into your production applications."

Container orchestration from theory to practice

Docker, Inc.

DevOps in the Real World is far from perfect, yet we all dream of that amazing auto-healing fully-automated CI/CD micro-service infrastructure that we'll have "someday." But until then, how can you really start using containers today, and what decisions do you need to make to get there? This session is designed for practitioners who are looking for ways to get started now with Docker and Swarm in production. This is not a Docker 101, but rather it's to help you be successful on your way to Dockerizing your production systems. Attendees will get tactics, example configs, real working infrastructure designs, and see the (sometimes messy) internals of Docker in production today.

Taking Docker to Production: What You Need to Know and Decide

Docker, Inc.

DockerCon EU 2015: The Latest in Docker Engine

Docker, Inc.

At Docker, we like to “eat our own dog food” or “drink our own champagne.” Whatever your favorite phrase, the importance of a software company using their own software is critical to relating to our customers. In this talk, we will discuss how the Docker Infrastructure and engineering teams have deployed and operationalized Docker Enterprise Edition (EE) for our staging and production environments, what we have learned in the process, and how it's making Docker EE better.

Docker on Docker

Docker, Inc.

About 94% of AI Adopters are planning to use containers in the next 1 year. What’s driving this exponential growth? Faster time to deployment and Faster AI workload processing are the two major reasons. You can use GPUs in big data applications such as machine learning, data analytics, and genome sequencing. Docker containerization makes it easier for you to package and distribute applications. You can enable GPU support when using YARN on Docker containers. In this talk, I will demonstrate how Docker accelerates the AI workload development and deployment over the IoT Edge devices in efficient manner

Delivering Docker & K3s worloads to IoT Edge devices

Ajeet Singh Raina

Your developers just walked into your cube and said: "Here's the new app, I built it with Docker, and it's ready to go live." What do you do next? In this session, we'll talk about what containers are and what they are not. And we'll step through a series of considerations that need to be examined when deploying containerized workloads - VMs or Container? Bare Metal or Cloud? What about capacity planning? Security? Disaster Recovery? How do I even get started?

Docker?!?! But I'm a SysAdmin

Docker, Inc.

Running and Scaling Symfony app in container(s)

Kontena, Inc.

Scaling Docker Containers using Kubernetes and Azure Container Service

Ben Hall

Lee Namba, Docker The Docker Enterprise container platform helps organizations deploy and manage applications faster and it secures the application pipeline at a lower cost than traditional application delivery models. But it takes more than just great technology to achieve the desired results. The organization and culture of your enterprise directly impacts what you transform, how it’s done, and who does it. Success requires a strategy for how you will govern the container platform environment, how to assess your application estate, what your delivery pipeline will look like, and how to ensure developers, operators, security teams and others play nicely together. In this talk I will cover topics such as different types of workloads (legacy, microservices, FaaS, big data and more), how your org chart can influence whether you deploy CaaS (Containers as a Service) vs CLaaS (Clusters as a Service), how "shifting left" can determine if you can outsource, centralized vs distributed CI/CD and how containers play a role, transforming your pets into cattle, how giant whale balloons are used for onboarding, and a prescriptive and comprehensive methodology for successfully deploying containers into your enterprise.

DCSF19 How To Build Your Containerization Strategy

Docker, Inc.

Docker on Google App Engine

Docker, Inc.

Docker is the world's leading software containerization platform. This is a comprehensive introduction to Docker, suitable for delivering in introductory meetups to an audience who does not know about docker. In case you want to deliver this presentation somewhere, kindly drop me a mail at aditya.konarde@gmail.com You can contact me at: Connect with me onLinkedIN: https://www.linkedin.com/in/adityakonarde Add me on Facebook: https://www.facebook.com/Aditya.Konarde Tweet to me @aditya_konarde

Introduction to Docker

Aditya Konarde

Slides from my DockerCon EU 2017 Talk. Find the abstract below: "In this talk, we'll discover how Docker comes to the rescue of the Ops Team, while rebuilding from scratch our monitoring infrastructure. We'll start by quickly describing the challenges, to focus on why and how using docker saved the project. From fixing dependencies and isolation issues, implementing rolling upgrades and new features hot addition, to building a completely modular, scalable and resilient infrastructure, we'll talk about why CI/CD workflows, docker tooling and Docker Swarm were the key to success."

Docker to the Rescue of an Ops Team

Rachid Zarouali

Docker Meetup 08 03-2016

Docker

Do you have this build script that with a single command builds your software? Does this still apply on a brand new PC? This presentation takes you on the journey to construct complex build environments using Docker. The journey follows our lessons learned and experiences going from hand crafted to Dockerized build environments. We will look at different patterns to build modular containers, ways to chain containers and the specialties of Windows containers.

The Fairy Tale of the One Command Build Script

Docker, Inc.

La actualidad más candente (20)

Modernizing .NET Apps

DockerCon EU 2015: Trading Bitcoin with Docker

Docker in Production - Stateful Services

Say Bye to VMware PowerCLI ! Time to "GOVC"

Docker Bday #5, SF Edition: Introduction to Docker

Containers without docker

Container orchestration from theory to practice

Taking Docker to Production: What You Need to Know and Decide

DockerCon EU 2015: The Latest in Docker Engine

Docker on Docker

Delivering Docker & K3s worloads to IoT Edge devices

Docker?!?! But I'm a SysAdmin

Running and Scaling Symfony app in container(s)

Scaling Docker Containers using Kubernetes and Azure Container Service

DCSF19 How To Build Your Containerization Strategy

Docker on Google App Engine

Introduction to Docker

Docker to the Rescue of an Ops Team

Docker Meetup 08 03-2016

The Fairy Tale of the One Command Build Script

Destacado

Beginners Guide To Kontena

Kontena, Inc.

Kubernetes dealing with storage and persistence

Janakiram MSV

Running Containers on Nebula OpenStack

Kontena, Inc.

Barcelona MeetUp - Kontena Intro

Kontena, Inc.

Running applications and services across several cloud providers and/or data centers can bring many benefits for organisations. Actually, in some cases it can even be a mandatory requirement. Making your application stack compliant with multiple different cloud providers can be a bit problematic as all the cloud providers have slight differences for example in networking configurations. And to make things even more difficult you should have a way to secure the intra-services’ communications between many cloud providers. In practice this means cumbersome network configurations with VPN and other networking security solutions. Luckily containers and modern (container) overlay networks can solve the complexity for you. This session was presented at Kontena meetup in Helsinki and in Leonidas Afterwork in Tampere on January 2017.

Running Dockerized services across several cloud providers

Kontena, Inc.

RackN DevOps meetup NYC

Bob Sokol

Welcome talk for Moscow Kubernetes Meetup 1

MoscowKubernetes

Net core, mssql, container und kubernetes

Thomas Fricke

Opening: builderscon tokyo 2016

lestrrat

Mirantis Contributions to Kubernetes Ecosystem

MoscowKubernetes

Ростислав Фридман: “Kubernetes как средство управления микросервисами"

Provectus

Keeping up with Tech

Elana Krasner

Microservices summit talk 1/31

Varun Talwar

Docker Containers in Azure

Aarno Aukia

Bitnami, Deis, Google and the Kubernetes community have been working on developing Helm, a tool for streamlining the deployment of containerized applications on Kubernetes. Bitnami currently offers a set of Helm packages, known as charts, to make it easy to deploy your favorite open source applications on Kubernetes with a single command. Join our webinar to learn how to quickly get started with Helm: In this webinar you will learn: - How to deploy Kubernetes-native applications - How to manage the lifecycle of applications on Kubernetes using Helm - The benefits of using Bitnami Helm Charts - The best practices we've learned while creating and configuring - Bitnami Helm charts - How to get started with Bitnami Helm Charts

Deploy your favorite apps on Kubernetes

Adnan Abdulhussein

A10 Lightning Application Delivery System (ADS) supports hybrid environments by providing secure application services and advanced analytics across the entire deployment – from traditional on-premise data centers, to public and/or private clouds, or any combination thereof. A10 Lightning employs a controller-based architecture that can self-managed on-premise or in a private cloud, or utilized as a SaaS offering managed by A10, to enable management of heterogeneous workloads across physical hardware-based environments, as well as public, private, and hybrid clouds. This presentation talks about our journey from a VM based Controller to a Kubernetes based Controller

Kubernetes as Orchestrator for A10 Lightning Controller

Akshay Mathur

Google Cloud Computing compares GCE, GAE and GKE

Simon Su

Kubernetes API - deep dive into the kube-apiserver

Stefan Schimanski

Bangalore Container Conference 2017 (BCC '17) is the first conference on container technologies in India. Organizations are increasingly adopting containers and related technologies in production. Hence, the main focus of this conference is “Containers in Production”. This one-day conference sets the perfect stage for container enthusiasts, developers, users and experts to meet together and learn from each others experiences. This deck provides details for sponsoring the conference.

Bangalore Container Conference - Sponsor Deck

CodeOps Technologies LLP

This talk will focus on a brief history, including a demo and overview of how we at Superbalist use Kubernetes, and how Kubernetes uses Docker, does load balancing, deployments, and data migrations. Talk from Cape Town DevOps meetup on Jun 21, 2016: https://www.meetup.com/Cape-Town-DevOps/events/231530172/ Code: https://github.com/zoidbergwill/kubernetes-examples Slides as markdown: http://www.zoidbergwill.com/presentations/2016/kubernetes-1.2-and-spread/index.md

Kubernetes - Starting with 1.2

William Stewart

Destacado (20)

Beginners Guide To Kontena

Kubernetes dealing with storage and persistence

Running Containers on Nebula OpenStack

Barcelona MeetUp - Kontena Intro

Running Dockerized services across several cloud providers

RackN DevOps meetup NYC

Welcome talk for Moscow Kubernetes Meetup 1

Net core, mssql, container und kubernetes

Opening: builderscon tokyo 2016

Mirantis Contributions to Kubernetes Ecosystem

Ростислав Фридман: “Kubernetes как средство управления микросервисами"

Keeping up with Tech

Microservices summit talk 1/31

Docker Containers in Azure

Deploy your favorite apps on Kubernetes

Kubernetes as Orchestrator for A10 Lightning Controller

Google Cloud Computing compares GCE, GAE and GKE

Kubernetes API - deep dive into the kube-apiserver

Bangalore Container Conference - Sponsor Deck

Kubernetes - Starting with 1.2

Similar a Running Docker in Production - The Good, the Bad and The Ugly

In this talk, Scott Coulton will walk through how to build a container as a service platform with Docker EE. Starting from scratch he will help you figure out what orchestrator to choose by deep diving into the technical differences between swarm and kubernetes on the EE platform as well as cover some of the practical considerations that could influence your decision. He will also share various automation solutions to deploy your cluster into production. Once the cluster is up and and running, Scott will delve into sec ops and discuss security best practices - including signing images in DTR (Docker Trusted Registry) and CVE scanning to provide a secure supply chain into production. You’ll leave this talk with the knowledge needed to build your own container platform in production. And did I mention it will all be done live, step-by-step?

Production sec ops with kubernetes in docker

Docker, Inc.

До чого прикладати Docker в Android? - UA Mobile 2019

UA Mobile

Docker Ecosystem on Azure

Patrick Chanezon

Bring Continuous Integration to Your Laptop With the Drone CI Docker Extensio...

jemije2490

Continuous integration and deployment with docker

pebble {code}

Demystifying Docker101

Ajeet Singh Raina

Demystifying Docker

Cloud Native Bangalore

Oliver Pomeroy - Solution Engineer, Docker Laura Frank Tacho - Director of Engineering, CloudBees Enterprises often want to provide automation and standardisation on top of their container platform, using a pipeline to build and deploy their containerized applications. However this opens up new challenges… Do I have to build a new CI/CD Stack? Can I build my CI/CD pipeline with Kubernetes orchestration? What should my build agents look like? How do I integrate my pipeline into my enterprise container registry? In this session full of examples and “how-to”s, Olly and Laura will guide you through common situations and decisions related to your pipelines. We’ll cover building minimal images, scanning and signing images, and give examples on how to enforce compliance standards and best practices across your teams.

DCEU 18: Building Your Development Pipeline

Docker, Inc.

Real-World Docker: 10 Things We've Learned

RightScale

Accelerate your development with Docker

Andrey Hristov

Accelerate your software development with Docker

Andrey Hristov

Develop with docker 2014 aug

Vincent De Smet

Docker Deep Dive Understanding Docker Engine Docker for DevOps

MehwishHayat3

Those long build times are EMBARRASSING! In this EPIC click-batey talk, we'll open up our toolbox to optimize build times down to nothing. Multi-stage Docker will be critical but so will Bazel, Go, and yes, even Java. No matter what kind of environment you're running, you'll find some best practices to speed up your times, scratch that, you'll DESTROY those AWFUL build times with DEVOPS and CI TOOLS.

Using Multi-stage Docker, Go, Java,& Bazel to DESTROY Long Build Times

DevOps.com

Bring Continuous Integration to Your Laptop With the Drone CI Docker Extensio...

jemije2490

Introduction to Docker and Linux Containers @ Cloud Computing Rhein Main

Puja Abbassi

Watson developer cloud delivers Watson Cognitive services as micro services on the cloud that are being used by many IBM Watson customers. The micro services were packaged in ova at the first release. There were some drawbacks in ova deployment in the cloud. We gradually switched to use docker. As a result, the service deployment time and start up time are significantly improved. It also greatly simplified our continuous delivery process since our services run on both Intel and Power platform and we have offerings on our public cloud, dedicated cloud as well as customers’ on premise cloud. With minimal deployment time and quick startup time, Docker makes our dynamic creation of service instance on the fly per customer request possible.

Use Docker to Deliver Cognitive Services Running Cross Platform and Multi Clo...

Docker, Inc.

COSCUP 2017 - infrastructure As Code

smalltown

Build, Publish, Deploy and Test Docker images and containers with Jenkins Wor...

Docker, Inc.

Azure Bootcamp 2016 - Docker Orchestration on Azure with Rancher

Karim Vaes

Similar a Running Docker in Production - The Good, the Bad and The Ugly (20)

Production sec ops with kubernetes in docker

До чого прикладати Docker в Android? - UA Mobile 2019

Docker Ecosystem on Azure

Bring Continuous Integration to Your Laptop With the Drone CI Docker Extensio...

Continuous integration and deployment with docker

Demystifying Docker101

Demystifying Docker

DCEU 18: Building Your Development Pipeline

Real-World Docker: 10 Things We've Learned

Accelerate your development with Docker

Accelerate your software development with Docker

Develop with docker 2014 aug

Docker Deep Dive Understanding Docker Engine Docker for DevOps

Using Multi-stage Docker, Go, Java,& Bazel to DESTROY Long Build Times

Bring Continuous Integration to Your Laptop With the Drone CI Docker Extensio...

Introduction to Docker and Linux Containers @ Cloud Computing Rhein Main

Use Docker to Deliver Cognitive Services Running Cross Platform and Multi Clo...

COSCUP 2017 - infrastructure As Code

Build, Publish, Deploy and Test Docker images and containers with Jenkins Wor...

Azure Bootcamp 2016 - Docker Orchestration on Azure with Rancher

Último

The presentation explores the development and application of artificial intelligence (AI) from its inception to its current status in the modern world. The term "artificial intelligence" was first coined by John McCarthy in 1956 to describe efforts to develop computer programs capable of performing tasks that typically require human intelligence. This concept was first introduced at a conference held at Dartmouth College, where programs demonstrated capabilities such as playing chess, proving theorems, and interpreting texts. In the early stages, Alan Turing contributed to the field by defining intelligence as the ability of a being to respond to certain questions intelligently, proposing what is now known as the Turing Test to evaluate the presence of intelligent behavior in machines. As the decades progressed, AI evolved significantly. The 1980s focused on machine learning, teaching computers to learn from data, leading to the development of models that could improve their performance based on their experiences. The 1990s and 2000s saw further advances in algorithms and computational power, which allowed for more sophisticated data analysis techniques, including data mining. By the 2010s, the proliferation of big data and the refinement of deep learning techniques enabled AI to become mainstream. Notable milestones included the success of Google's AlphaGo and advancements in autonomous vehicles by companies like Tesla and Waymo. A major theme of the presentation is the application of generative AI, which has been used for tasks such as natural language text generation, translation, and question answering. Generative AI uses large datasets to train models that can then produce new, coherent pieces of text or other media. The presentation also discusses the ethical implications and the need for regulation in AI, highlighting issues such as privacy, bias, and the potential for misuse. These concerns have prompted calls for comprehensive regulations to ensure the safe and equitable use of AI technologies. Artificial intelligence has also played a significant role in healthcare, particularly highlighted during the COVID-19 pandemic, where it was used in drug discovery, vaccine development, and analyzing the spread of the virus. The capabilities of AI in healthcare are vast, ranging from medical diagnostics to personalized medicine, demonstrating the technology's potential to revolutionize fields beyond just technical or consumer applications. In conclusion, AI continues to be a rapidly evolving field with significant implications for various aspects of society. The development from theoretical concepts to real-world applications illustrates both the potential benefits and the challenges that come with integrating advanced technologies into everyday life. The ongoing discussion about AI ethics and regulation underscores the importance of managing these technologies responsibly to maximize their their benefits while minimizing potential harms.

Artificial Intelligence: Facts and Myths

Joaquim Jorge

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Scaling API-first – The story of a global engineering organization

Radu Cotescu

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

Partners Life - Insurer Innovation Award 2024

The Digital Insurer

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

[2024]Digital Global Overview Report 2024 Meltwater.pdf

hans926745

Finology Group – Insurtech Innovation Award 2024

The Digital Insurer

As privacy and data protection regulations evolve rapidly, organizations operating in multiple jurisdictions face mounting challenges to ensure compliance and safeguard customer data. With state-specific privacy laws coming up in multiple states this year, it is essential to understand what their unique data protection regulations will require clearly. How will data privacy evolve in the US in 2024? How to stay compliant? Our panellists will guide you through the intricacies of these states' specific data privacy laws, clarifying complex legal frameworks and compliance requirements. This webinar will review: - The essential aspects of each state's privacy landscape and the latest updates - Common compliance challenges faced by organizations operating in multiple states and best practices to achieve regulatory adherence - Valuable insights into potential changes to existing regulations and prepare your organization for the evolving landscape

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

TrustArc

GenCyber Cyber Security Day Presentation

Michael W. Hawkins

Tech Trends Report 2024 Future Today Institute.pdf

hans926745

Tata AIG General Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

Enterprise Knowledge’s Urmi Majumder, Principal Data Architecture Consultant, and Fernando Aguilar Islas, Senior Data Science Consultant, presented "Driving Behavioral Change for Information Management through Data-Driven Green Strategy" on March 27, 2024 at Enterprise Data World (EDW) in Orlando, Florida. In this presentation, Urmi and Fernando discussed a case study describing how the information management division in a large supply chain organization drove user behavior change through awareness of the carbon footprint of their duplicated and near-duplicated content, identified via advanced data analytics. Check out their presentation to gain valuable perspectives on utilizing data-driven strategies to influence positive behavioral shifts and support sustainability initiatives within your organization. In this session, participants gained answers to the following questions: - What is a Green Information Management (IM) Strategy, and why should you have one? - How can Artificial Intelligence (AI) and Machine Learning (ML) support your Green IM Strategy through content deduplication? - How can an organization use insights into their data to influence employee behavior for IM? - How can you reap additional benefits from content reduction that go beyond Green IM?

Driving Behavioral Change for Information Management through Data-Driven Gree...

Enterprise Knowledge

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

A Domino Admins Adventures (Engage 2024)

Gabriella Davis

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

GenAI Risks & Security Meetup 01052024.pdf

lior mazor

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

Histor y of HAM Radio presentation slide

vu2urc

Running Docker in Production - The Good, the Bad and The Ugly

1. Docker in Production The Good, The Bad and The Ugly Jari Kolehmainen, CTO & Co-founder

3. Pick the Right Path

5. Options DIY? Rent? Platform?

7. DIY? Do-It-Yourself Sounds like fun?

9. DON’T DO IT (unless you are forced)

10. Rent? AWS ECS Azure Container Service Google Container Engine

11.

12. Rent ”I don’t want to maintain anything” Works for some use cases

13. Platform? Docker Swarm (the new one) Kubernetes Kontena DCOS

14.

15. Platform Most features built-in Less maintenance Battle tested

16. Docker Engine

17. Docker Engine Tweak defaults Needs “janitors” Prefer container “native” hosts

18. Docker Engine Graphdriver of the day: overlay2 Engine plugins: run outside Keep engine & kernel up-to-date

19. Docker Engine 3rd parties might cause side-effects Systemd <> Overlay networks Cadvisor <> Docker mounts

20. CI/CD Pipeline

21.

22. Pipeline Build Test Deploy

23. Pipeline Script everything Version control everything Yes, everything

24. Everything but secrets.

25. Tools for pipeline Drone Jenkins Gitlab CI

26. Pipeline Example

27. 1. Git Push 2. Trigger Build 3. Push Docker Image 4. Trigger Deploy 5a. Deploy to Staging 5b. Deploy to Production Pull Docker Image

28. Security

29.

30. Security Security patching Network access Secret management Audit

31. Patching Container “native” OS Configuration management Image scanning

32. Network Security Overlay (SDN) networks Network segments/policies Firewalls

33. Secret Management Keep secrets out Use platform provider solution Integrate 3rd party solution to pipeline

34. Audit Audit logs Container logs Alerts

35. Prepare for Chaos

36.

37. But why? Hosts fail Engines fail Containers fail Your app crashes

38. Ok, is all hope lost?

39. Rules for chaos Allow hosts to die Trust the scheduler Use clustered databases Outsource state if possible

40. Summary

41. Summary Prepare properly Tweak defaults Automate everything Use battle tested solutions

42. QA Ask and get a shirt!!!

43. info@kontena.io @kontenainc slack.kontena.io github.com/kontena/kontena meetup.com/pro/kontena www.kontena.io Stay up to date!

44. Thank You! www.kontena.io

45. We are hiring! kontena.io/jobs

Notas del editor

For many newcomers production feels a bit scary I have seen & experienced many production deploys .. And heard many things from other users First production deploy: Docker 0.6 There is no ”one true way”, but I’ll tell my tips anyway
One of the most critical things Sometimes this path has been already chosen, bad luck
Docker engine, Rkt Many smaller parts
Put everything together with duct tape First weeks are fun & you learn a lot Everyone should try this, once
After few weeks/months system looks like this, a perfectly working system You have every feature that you need, and still some duct tape for the future What if that generator dies?
- too often afterthought
Patch host AND your images How to detect security issues?
Overlay can provide transparent network level security
- platforms: Kontena Vault, Kubernetes secrets, Swarm mode upcoming secrets -> check that secrets implementation matches your requirements - 3rd party: Hashicorp Vault, Square Keywhiz
Audit logs: some platforms provide this out-of-the-box Container logs: some platforms provide support, otherwise DIY Container logs: ELK, Splunk etc…
Mix bleeding edge components to cluster

Running Docker in Production - The Good, the Bad and The Ugly

Recomendados

Recomendados

Más contenido relacionado

La actualidad más candente

La actualidad más candente (20)

Destacado

Destacado (20)

Similar a Running Docker in Production - The Good, the Bad and The Ugly

Similar a Running Docker in Production - The Good, the Bad and The Ugly (20)

Último

Último (20)

Running Docker in Production - The Good, the Bad and The Ugly

Notas del editor