Lessons Learned from running Docker in production

•

1 recomendación•246 vistas

This document provides lessons learned from running Docker in production. Key lessons include: - Do not use the Docker "latest" tag and instead specify exact versions to ensure repeatability. - Derive Docker images from specific base images and update them regularly to get security fixes. - Plan for processes like supervisors that handle signals and allow containers to exit gracefully. - Use microlabeling to annotate images with metadata about their origin and version. - Parameterize Dockerfiles and configurations to separate configurable values from code.

Tecnología

Lessons Learned
from Running
Docker in Production
Nicholas Dille, Docker Captain & CDM MVP

Nicholas Dille
Ehemann, Vater, Geek, Autor
Microsoft MVP seit 2010
Docker Captain seit 2017
DevOps Engineer @ Haufe-Lexware
http://dille.name/blog
@NicholasDille

Run
Docker Tools
Host
docker-compose.yml
Dockerfile Image Image
Container
Registry
Container
Push
Pull
ImageBuild

Do not use latest
Latest is like buying a pig in a poke
ubuntu:latest = ubuntu:xenial until new LTS
ubuntu:xenial = ubuntu:xenial-20180123 until new monthly patch
Latest breaks repeatability
Derive from specific version
Update regularly, fail early

Do not use latest
Dockerfile
FROM ubuntu
#...
Dockerfile
FROM nginx
#...
Dockerfile
FROM ubuntu:xenial-20180123
#...
Dockerfile
FROM nginx:1.12.1
#...

Derive from code
Using community images is also like buying a pig in a poke
h1kkan/jenkins-docker is has lots of useful stuff
Community images may not receive updates
Community images may follow undesirable paths
Fork Dockerfile and build yourself

Plan for PID 1
Even containerized services want to exit gracefully
Only containerized PID 1 received signals
Several processed require an init process
Choices include supervisor, dumb-init, tini
Use exec when starting from scripts
Isolate in sidekicks

Plan for PID 1
Dockerfile
FROM ubuntu:xenial-20180123
RUN apt update
&& apt install -y nginx
ADD entrypoint.sh /
ENTRYPOINT /entrypoint.sh
entrypoint.sh
#!/bin/bash
#...
exec nginx -g daemon=off;

Plan for PID 1
Dockerfile
FROM ubuntu:xenial-20180123
RUN apt update
&& apt install -y
nginx
supervisor
ADD nginx.conf /etc/supervisor/conf.d/
ENTRYPOINT supervisord
nginx.conf
[program:nginx]
command=nginx -g daemon=off;

Use microlabeling
Mark images with information about origin
Easily find corresponding code
Use image annotations by the OCI
Deprecated: https://label-schema.org

Use microlabeling
Dockerfile
FROM ubuntu:xenial-20180123
LABEL
org.opencontainers.image.created=“2018-01-31T20:00:00Z+01:00“
org.opencontainers.image.authors=“nicholas@dille.name“
org.opencontainers.image.source=“https://github.com/nicholasdille/docker“
org.opencontainers.image.revision=“566a5e0“
org.opencontainers.image.vendor=“Nicholas Dille“
#...

Parameterize
Hardcoded values increase maintenance
Separate environmental information
Use ENV in Dockerfile
Use environment in docker-compose.yml

$Parameterize Dockerfile FROM ubuntu:xenial-20180123 RUN apt update && apt -y install nginx=1.10.3* Dockerfile FROM ubuntu:xenial-20180123 ENV NGINX_VERSION=1.10.3 RUN apt update && apt -y install nginx=${NGINX_VERSION}*$

$Parameterize docker-compose.yml version: ‘2.0‘ services: db: image: postgres-${POSTGRES_VERSION} environment: POSTGRES_PASSWORD: ${POSTGRES_ROOT_PASSWORD} web: image: nginx-${NGINX_VERSION}$

Readability beats size
Myth: More layers reduce access time
My own tests prove otherwise
Layers improve performance on pull (parallel downloads)
One layer per installed tool
Separate functionality into chains of images
dind  dind-gocd-agent
 linux-agent  linux-agent-gocd
 linux-agent-jenkins

$Tips and tricks Building behind a proxy docker build --build-arg http_proxy --build-arg https_proxy --build-arg no_proxy . Running behind a proxy docker run -it --env http_proxy --env https_proxy --env no_proxy ubuntu:xenial-20180123 Implicit pull on build docker build --pull . Automatic cleanup docker run -it --rm ubuntu:xenial Derive dynamically ARG VERSION=xenial-20180123 FROM ubuntu:${VERSION}$

Learn your own lessons
Do my lessons apply to you?
Automate
Do CI/CD
Containers are just one option
Link to code
https://github.com/nicholasdille/Sessions/tree/master/2018-01-
31%20Docker%20%40%20Devsmeetup

Más contenido relacionado

La actualidad más candente

Bauen und Verteilen von Multi-Arch Docker Images für Linux und Windows

Stefan Scherer

Docker on Windows and Linux - Red Shirt Dev Tour

Elton Stoneman

Docker has revolutionized how we think about Software deployment. Microsoft has adopted this technology to Windows to have the same approach for native Windows tools and applications. This talk gives you an overview of Docker and how you can create isolated environments for development and deployment. See how Chocolatey fits into the world of Windows Containers and how it helps to containerize your existing tools and apps in simple steps. Key takeaways: - You will hear the basic concepts why Containers help you to have predictable development and runtime environments. - You will learn how Chocolatey helps you get started building your own Windows containers.

Docker - A container full of Chocolatey

Stefan Scherer

CI/CD with Jenkins and Docker - DevOps Meetup Day Thailand

Troublemaker Khunpech

Eclipse plugins that tries to support a specific framework such as Hibernate, JPA, servlets, Struts, Spring, Drools, log4j, etc. all have many of the same challenges but somehow they have a tendency to solve it differently and we end up with a fractured IDE from a usability and architectural perspective. It seems like everyone understands what functionallity that is specific for their framework, but forget to consider issues like multiple version support, classpath libraries, debugging/launching and coexistence with other 3rd party framework plugins. After working five years with this in context of JBoss Tools and Eclipse itself I came to realize a lot of this fracture is caused by either not using already existing functionallity available in Eclipse API's or simply not realizing how little effort it actually takes to handle these common issues. This talk will outline the identified issues and present patterns and in some cases implementation for how framework plugins should be done so they work well within the majority of the Eclipse Java ecosystem.

How To Make A Framework Plugin That Does Not Suck

Max Andersen

Debugging Go in Kubernetes

Alexei Ledenev

How to Use Mirroring and Caching to Optimize your Container Registry

Docker, Inc.

Google ko: fast Kubernetes microservice development in Go - Sangam Biradar, E...

sangam biradar

Docker Plugin for Heat

Docker, Inc.

Setup a Dev environment that feels like $HOME on Windows 10

Stefan Scherer

video at https://www.youtube.com/watch?v=ng6jlGTfETA#t=7h05m40s For Eclipse Mars the Eclipse Linux Tools and JBoss Tools team have been working on providing tooling for Docker. The Docker tooling is multi-platform and runs on Linux, OSX and Windows. It allows you to build and run images and manage containers while connected to multiple Docker daemons. This talk will demonstrate how to use Docker with the tools and how to use it together with other technologies like native CDT builds and server tools for Java middleware. If you are new to Docker and interested in learning how to use Docker effectively for development via an IDE then this talk is also for you. See more at http://tools.jboss.org/blog/2015-03-30-Eclipse_Docker_Tooling.html

Docker Tooling for Eclipse

Max Andersen

Cloud Native Okteto Cloud

sangam biradar

#dddsw - Modernizing .NET Apps with Docker

Elton Stoneman

Neo4j on Azure Step by Step

Neo4j

#SDD2017 - Modernizing .NET Apps with Docker

Elton Stoneman

Basic Idea Develop a build system that leverages Docker for implementing continuous integration/deployment(CI/CD) pipeline. A git commit must kick off packaging a Docker Image and provisioning it in a VM. A git based commit should be used for starting of a build for a docker image which would then be run and provisioned in a Virtual Machine. After every commit a series of test cases is then run on the code to ensure the correctness of the code. After all the test-cases pass, the image gets updated on docker-hub registry, and a VM gets provisioned which can then run the software directly (after pulling the image from the docker-hub). This entire process ensures that the most recent and updated version of the code is available to the person who is using the software and this speeds up the overall process by at least 2-3 folds.

CI/CD Pipeline with Docker

kushalsingh007

Introduction to dockerfile, SF Peninsula Software Development Meetup @Guidewire

dotCloud

Neo4j 2.0.1 Windows Azure VM Release

Neo4j

We know how complicated it is to have a stable grid, and how hard it is to maintain over time with enough capabilities to cover most browsers and platforms. Internally, we found that ~75% of our tests were executed in Firefox/Chrome, and the remaining were executed in Safari/IE. We decided to develop a tool where docker-selenium nodes are created, used and disposed on demand. For Safari/IE, we just forward the tests to Sauce Labs/BrowserStack. Zalenium is an OSS extension to scale up and down your local grid dynamically with Docker containers. It uses Docker-Selenium to run tests in Firefox/Chrome, and when a different browser is needed, tests get redirected to a cloud testing service. Result: our tests suites run faster since most of the tests run on local Firefox/Chrome nodes, and we use in a smarter way the cloud testing service we pay for. Diego Molina – Software Engineer in Test, Zalando SE Leo Gallucci – Software Engineer, Tools and Infrastructure, Zalando SE

Zalenium - SeleniumConf Austin 2017

Selenium Conference Austin 2017

Deploying Windows Containers with Draft, Helm and Kubernetes

Jessica Deen

La actualidad más candente (20)

Bauen und Verteilen von Multi-Arch Docker Images für Linux und Windows

Docker on Windows and Linux - Red Shirt Dev Tour

Docker - A container full of Chocolatey

CI/CD with Jenkins and Docker - DevOps Meetup Day Thailand

How To Make A Framework Plugin That Does Not Suck

Debugging Go in Kubernetes

How to Use Mirroring and Caching to Optimize your Container Registry

Google ko: fast Kubernetes microservice development in Go - Sangam Biradar, E...

Docker Plugin for Heat

Setup a Dev environment that feels like $HOME on Windows 10

Docker Tooling for Eclipse

Cloud Native Okteto Cloud

#dddsw - Modernizing .NET Apps with Docker

Neo4j on Azure Step by Step

#SDD2017 - Modernizing .NET Apps with Docker

CI/CD Pipeline with Docker

Introduction to dockerfile, SF Peninsula Software Development Meetup @Guidewire

Neo4j 2.0.1 Windows Azure VM Release

Zalenium - SeleniumConf Austin 2017

Deploying Windows Containers with Draft, Helm and Kubernetes

Similar a Lessons Learned from running Docker in production

Nicholas Dille, Haufe-Lexware + Docker Captain - Docker continues to be the standard tool for building container images. For more than a year Docker ships with BuildKit as an alternative image builder, providing advanced features for secret and cache management. These features help to make image builds faster and more secure. In this session, Docker Captain Nicholas Dille will teach you how to use Buildkit features to your advantage.

How to Improve Your Image Builds Using Advance Docker Build

Docker, Inc.

Develop with docker 2014 aug

Vincent De Smet

2015 DockerCon Using Docker in production at bity.com

Mathieu Buffenoir

Oliver Pomeroy, Docker & Laura Tacho, Cloudbees Enterprises often want to provide automation and standardisation on top of their container platform, using a pipeline to build and deploy their containerized applications. However this opens up new challenges; Do I have to build a new CI/CD Stack? Can I build my CI/CD pipeline with Kubernetes orchestration? What should my build agents look like? How do I integrate my pipeline into my enterprise container registry? In this session full of examples and how-to's, Olly and Laura will guide you through common situations and decisions related to your pipelines. We'll cover building minimal images, scanning and signing images, and give examples on how to enforce compliance standards and best practices across your teams.

DCSF 19 Building Your Development Pipeline

Docker, Inc.

IBM Index 2018 Conference Workshop: Modernizing Traditional Java App's with D...

Eric Smalling

“Docker, Docker, Docker.” It’s a phrase we hear often, but what are containers, what can they be used for, and why should you know more about them? In this session, Grace (Puppet) and Tricia (AppDynamics) will introduce attendees to Docker and help them build and deploy their first container with Puppet. They will leverage the docker_image_build module from the Puppet Forge and take attendees through the proper workflow for coupling Docker and Puppet together. The session will focus on how to use some of the newest Docker features, such as multi-stage build files and password stores within Docker so you can pass "secrets" to a swarm for login credentials. The goal is to provide newcomers with a working proficiency of how to get started deploying containers using Puppet as their automation tool.

PuppetConf 2017: What’s in the Box?!- Leveraging Puppet Enterprise & Docker- ...

Puppet

Learning Docker with Thomas

Thomas Tong, FRM, PMP

Presented by Sebastien Goasguen, VP, Apache CloudStack and Mathieu Buffenoir, co-founder, SBEX Bity is an internet money gateway built by Swiss Bitcoin Exchange ( SBEX ). To trade bitcoin the entire infrastructure of Bity is running in Docker containers. All the components of the infrastructure are using Docker, from the frontend applications and load balancer, the Django based backend, replicated Postgres database, Bitcoin daemon and remittance engine. All software goes through a CI pipeline that starts with Docker images being built on private repositories in Docker hub. Developers take also advantage of a docker-compose definition that allows them to run the entire infrastructure on a single laptop. Finally the production deployments happen thanks to the Ansible Docker module on a CloudStack based public cloud. Everything has been automated to ease re-deployment and operations. This presentation will go through every component and how Docker has enabled us to go production in 4 months.

DockerCon EU 2015: Trading Bitcoin with Docker

Docker, Inc.

[@NaukriEngineering] Docker 101

Naukri.com

Docker - What it is and how to get started?

Niko Virtala

Using docker to develop NAS applications

Terry Chen

Docker primer and tips

Samuel Chow

Cloud native buildpacks-cncf

Suman Chakraborty

Docker in everyday development

Justyna Ilczuk

SDLC Using Docker for Fun and Profit

dantheelder

PyCon Ireland - Python DevOps flows with Ansible, Packer & Kubernetes - Mihai Criveti https://www.youtube.com/watch?v=lO884XAdddQ 1 Packer: Image Build Automation 2 OpenSCAP: Automate Security Baselines 3 Ansible: Provisioning and Configuration Management 4 Molecule: Test your Ansible Playbooks on Docker, Vagrant or Cloud 5 Vagrant: Test images with vagrant 6 Package Python Applications with setuptools 7 Kubernetes: Container Orchestration at Scale 8 DevOps Culture and Practice

Mihai Criveti - PyCon Ireland - Automate Everything

Mihai Criveti

Millions of developers use .NET to build high performance apps, from Enterprise to hobbiests. Docker enables .NET developers to build containerized applications that can be deployed natively to Windows or Linux. Windows containers support applications that leverage the full .NET Framework. And with AspNetCore on Linux developers can target both Linux-based Docker containers or Windows containers. In both cases you can develop your applications on Windows using your favorite .NET developer tools - then build Docker images and run them as containers on Windows Server or Linux machines. This session in this session, you will learn how to build or migrate full .NET Framework applications and deploy them as Windows Containers. Then you will learn to build AspNetCore applications that can target either Windows or Linux containers, without any changes to your code. Topics covered include - Common considerations as you work locally - Running local Docker containers, and preserving as environment settings - Unit testing - Choosing the right base image - Working with IIS or Kestrel - Composing multiple containers - Working with a Docker Registry

Docker for .NET Developers - Michele Leroux Bustamante, Solliance

Docker, Inc.

Deliver Python Apps with Docker

Anton Egorov

Docker e git lab

Gianluca Padovani

Dockerizing Ruby Applications - The Best Practices

Kontena, Inc.

Similar a Lessons Learned from running Docker in production (20)

How to Improve Your Image Builds Using Advance Docker Build

Develop with docker 2014 aug

2015 DockerCon Using Docker in production at bity.com

DCSF 19 Building Your Development Pipeline

IBM Index 2018 Conference Workshop: Modernizing Traditional Java App's with D...

PuppetConf 2017: What’s in the Box?!- Leveraging Puppet Enterprise & Docker- ...

Learning Docker with Thomas

DockerCon EU 2015: Trading Bitcoin with Docker

[@NaukriEngineering] Docker 101

Docker - What it is and how to get started?

Using docker to develop NAS applications

Docker primer and tips

Cloud native buildpacks-cncf

Docker in everyday development

SDLC Using Docker for Fun and Profit

Mihai Criveti - PyCon Ireland - Automate Everything

Docker for .NET Developers - Michele Leroux Bustamante, Solliance

Deliver Python Apps with Docker

Docker e git lab

Dockerizing Ruby Applications - The Best Practices

Último

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...

Zilliz

Corporate and higher education. Two industries that, in the past, have had a clear divide with very little crossover. The difference in goals, learning styles and objectives paved the way for differing learning technologies platforms to evolve. Now, those stark lines are blurring as both sides are discovering they have content that’s relevant to the other. Join Tammy Rutherford as she walks through the pros and cons of corporate and higher ed collaborating. And the challenges of these different technology platforms working together for a brighter future.

Corporate and higher education May webinar.pptx

Rustici Software

The Good, the Bad and the Governed - Why is governance a dirty word? David O'Neill, Chief Operating Officer - APIContext Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

apidays

Angeliki Cooney has spent over twenty years at the forefront of the life sciences industry, working out of Wynantskill, NY. She is highly regarded for her dedication to advancing the development and accessibility of innovative treatments for chronic diseases, rare disorders, and cancer. Her professional journey has centered on strategic consulting for biopharmaceutical companies, facilitating digital transformation, enhancing omnichannel engagement, and refining strategic commercial practices. Angeliki's innovative contributions include pioneering several software-as-a-service (SaaS) products for the life sciences sector, earning her three patents. As the Senior Vice President of Life Sciences at Avenga, Angeliki orchestrated the firm's strategic entry into the U.S. market. Avenga, a renowned digital engineering and consulting firm, partners with significant entities in the pharmaceutical and biotechnology fields. Her leadership was instrumental in expanding Avenga's client base and establishing its presence in the competitive U.S. market.

Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...

Angeliki Cooney

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Zilliz

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

Following the popularity of “Cloud Revolution: Exploring the New Wave of Serverless Spatial Data,” we’re thrilled to announce this much-anticipated encore webinar. In this sequel, we’ll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you’re building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

DBX First Quarter 2024 Investor Presentation

Dropbox

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

The action of the next cyber saga takes place in the mystical lands of the Asia-Pacific region, where the main characters began their digital activities in the middle of 2021 and qualitatively strengthened it in 2022. Corporate espionage, document theft, audio recordings, and data leaks from messaging platforms were all a matter of one day for Dark Pink. Their geographical focus may have started in the Asia-Pacific region, but their ambitions knew no bounds, targeting a European government ministry in a bold move to expand their portfolio. Their victim profile was as diverse as a UN meeting, targeting military organizations, government agencies, and even a religious organization. Because discrimination is not a fashionable agenda. In the world of cybercrime, they serve as a reminder that sometimes the most serious threats come in the most unassuming packages with a pink bow.

Cyberprint. Dark Pink Apt Group [EN].pdf

Overkill Security

Passkeys: Developing APIs to enable passwordless authentication Cody Salas, Sr Developer Advocate | Solutions Architect - Yubico Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...

apidays

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

MadyBayot

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

Artificial Intelligence Chap.5 : Uncertainty

Khushali Kathiriya

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

When you’re building (micro)services, you have lots of framework options. Spring Boot is no doubt a popular choice. But there’s more! Take Quarkus, a framework that’s considered the rising star for Kubernetes-native Java. It always depends on what's best for your situation, but how to choose the best solution if you're comparing 2 frameworks? Both Spring Boot and Quarkus have their positives and negatives. Let us compare the two by live coding a couple of common use cases in Spring Boot and Quarkus. After this talk, you’ll be ready to get started with Quarkus yourself, and know when to select Quarkus or Spring Boot.

Spring Boot vs Quarkus the ultimate battle - DevoxxUK

Jago de Vreede

Lessons Learned from running Docker in production

1. Lessons Learned from Running Docker in Production Nicholas Dille, Docker Captain & CDM MVP

2. Nicholas Dille Ehemann, Vater, Geek, Autor Microsoft MVP seit 2010 Docker Captain seit 2017 DevOps Engineer @ Haufe-Lexware http://dille.name/blog @NicholasDille

3. Run Docker Tools Host docker-compose.yml Dockerfile Image Image Container Registry Container Push Pull ImageBuild

4. Do not use latest Latest is like buying a pig in a poke ubuntu:latest = ubuntu:xenial until new LTS ubuntu:xenial = ubuntu:xenial-20180123 until new monthly patch Latest breaks repeatability Derive from specific version Update regularly, fail early

5. Do not use latest Dockerfile FROM ubuntu #... Dockerfile FROM nginx #... Dockerfile FROM ubuntu:xenial-20180123 #... Dockerfile FROM nginx:1.12.1 #...

6. Derive from code Using community images is also like buying a pig in a poke h1kkan/jenkins-docker is has lots of useful stuff Community images may not receive updates Community images may follow undesirable paths Fork Dockerfile and build yourself

7. Plan for PID 1 Even containerized services want to exit gracefully Only containerized PID 1 received signals Several processed require an init process Choices include supervisor, dumb-init, tini Use exec when starting from scripts Isolate in sidekicks

8. Plan for PID 1 Dockerfile FROM ubuntu:xenial-20180123 RUN apt update && apt install -y nginx ADD entrypoint.sh / ENTRYPOINT /entrypoint.sh entrypoint.sh #!/bin/bash #... exec nginx -g daemon=off;

9. Plan for PID 1 Dockerfile FROM ubuntu:xenial-20180123 RUN apt update && apt install -y nginx supervisor ADD nginx.conf /etc/supervisor/conf.d/ ENTRYPOINT supervisord nginx.conf [program:nginx] command=nginx -g daemon=off;

10. Use microlabeling Mark images with information about origin Easily find corresponding code Use image annotations by the OCI Deprecated: https://label-schema.org

11. Use microlabeling Dockerfile FROM ubuntu:xenial-20180123 LABEL org.opencontainers.image.created=“2018-01-31T20:00:00Z+01:00“ org.opencontainers.image.authors=“nicholas@dille.name“ org.opencontainers.image.source=“https://github.com/nicholasdille/docker“ org.opencontainers.image.revision=“566a5e0“ org.opencontainers.image.vendor=“Nicholas Dille“ #...

12. Parameterize Hardcoded values increase maintenance Separate environmental information Use ENV in Dockerfile Use environment in docker-compose.yml

13. Parameterize Dockerfile FROM ubuntu:xenial-20180123 RUN apt update && apt -y install nginx=1.10.3* Dockerfile FROM ubuntu:xenial-20180123 ENV NGINX_VERSION=1.10.3 RUN apt update && apt -y install nginx=${NGINX_VERSION}*

14. Parameterize docker-compose.yml version: ‘2.0‘ services: db: image: postgres-${POSTGRES_VERSION} environment: POSTGRES_PASSWORD: ${POSTGRES_ROOT_PASSWORD} web: image: nginx-${NGINX_VERSION}

15. Readability beats size Myth: More layers reduce access time My own tests prove otherwise Layers improve performance on pull (parallel downloads) One layer per installed tool Separate functionality into chains of images dind  dind-gocd-agent  linux-agent  linux-agent-gocd  linux-agent-jenkins

16. Tips and tricks Building behind a proxy docker build --build-arg http_proxy --build-arg https_proxy --build-arg no_proxy . Running behind a proxy docker run -it --env http_proxy --env https_proxy --env no_proxy ubuntu:xenial-20180123 Implicit pull on build docker build --pull . Automatic cleanup docker run -it --rm ubuntu:xenial Derive dynamically ARG VERSION=xenial-20180123 FROM ubuntu:${VERSION}

17. Learn your own lessons Do my lessons apply to you? Automate Do CI/CD Containers are just one option Link to code https://github.com/nicholasdille/Sessions/tree/master/2018-01- 31%20Docker%20%40%20Devsmeetup

Lessons Learned from running Docker in production

Recomendados

Recomendados

Más contenido relacionado

La actualidad más candente

La actualidad más candente (20)

Similar a Lessons Learned from running Docker in production

Similar a Lessons Learned from running Docker in production (20)

Último

Último (20)

Lessons Learned from running Docker in production