SlideShare una empresa de Scribd logo

AKS

Descargar como PPTX, PDF
G
girish goudar

Azure Kubernetes service (AKS)

Ingeniería
1 de 56
7 things to know before using AKS
What is Kubernetes? Kubernetes comes from the Greek word κυβερνήτης:, which means helmsman or ship pilot, ie: the captainer of a container ship. "Kubernetes is an open-source system for automating deployment, scaling, and management of containerized applications."
Elements of Orchestration Scheduling Affinity/anti- affinity Health monitoring Failover Scaling Networking Service discovery Coordinated app upgrades
Kubernetes architecture Master API Server Scheduler Controller Manager Node (Minion) etcd kubelet Kube- Proxy cAdvisor Pod Pod Pod Kubectl (CLI) Dashboard (UI) REST client (Code)
Azure Kubernetes Service (AKS) AKS reduces the complexity and operational overhead of managing Kubernetes by offloading much of that responsibility to Azure.
Kubernetes Cluster Node Node Node Node Node Node
Azure Kubernetes Service (AKS) Get started easily $ az aks create $ az aks install-cli $ az aks get-credentials $ kubectl get nodes
Azure Kubernetes Service (AKS) Manage an AKS cluster $ az aks list $ az aks upgrade $ kubectl get nodes $ az aks scale
7 things • Cluster Creation : Cluster Isolation and Networking • Configuring Cluster • Tools: Draft and Azure Dev Spaces • Azure Services • Scaling your Applications and Cluster • Logging and Monitoring • Deployment
Dev Cluster PodA PodB PodDPodC Node0 Node1 PodE PodF PodHPodG Prod Team1 Cluster PodA PodB PodDPodC Node0 Node1 PodE PodF PodHPodG Staging Cluster PodA PodB PodDPodC Node0 Node1 PodE PodF PodHPodG Prod Team2 Cluster PodA PodB PodDPodC Node0 Node1 PodE PodF PodHPodG
Dev and Staging Cluster DevTeam1 Staging DevTeam2 Node0 Node1 Node2 Node3 Pod Pod PodPod Pod Pod PodPod Pod Pod PodPod Pod Pod PodPod Prod Cluster Team1 Team2 Team3 Node0 Node1 Node3 Node4 Pod Pod PodPod Pod Pod PodPod Pod Pod PodPod Pod Pod PodPod
Kubernetes Namespaces • Namespaces Object is the logical Isolation boundary • Kubernetes has features to help us safely isolate tenants • Scheduling: Resource Quota • CPU and memory • Number of pods • Network Isolation using Network Policies • Azure • Calico • Authentication and Authorization: • Role -> RoleBinding ->Namespace • ClusterRole -> ClusterRoleBinding -> Cluster
AKS Basic Networking • Done using Kubenet network plugin and has the following features • Nodes and Pods are placed on different IP subnets • User Defined Routing and IP Forwarding is for connectivity between Pods across Nodes. • Drawbacks • 2 different IP CIDRs to manage • Performance impact • Peering or On-Premise connectivity is hard to achieve
AKS Advanced Networking • Done using the Azure CNI (Container Networking Interface) • CNI is a vendor-neutral protocol, used by container runtimes to make requests to Networking Providers • Azure CNI is an implementation which allows you to integrate Kubernetes with your VNET • Advantages • Single IP CIDR to manage • Better Performance • Peering and On-Premise connectivity is out of the box
AKS with Advanced Networking AKS subnet Backend services subnet Azure VNet A On-premises infrastructure Enterprise system Other peered VNets VNet B VNet peering Azure Express Route AKS cluster SQL Server
• Service Type LoadBalancer • Basic Layer4 Load Balancing (TCP/UDP) • Each service as assigned an IP on the ALB apiVersion: v1 kind: Service metadata: name: frontendservice spec: loadBalancerIP: X.X.X.X type: LoadBalancer ports: - port: 80 selector: app: frontend Azure AKS VNet AKS subnet AKS cluster FrontEndService Pod1 label:Frontend Pod2 label:Frontend Pod3 label:Frontend Public LB Public IP
• Used for internal services that should be accessed by other VNETs or On- Premise only apiVersion: v1 kind: Service metadata: name: internalservice annotations: service.beta.kubernetes.io/azure-load- balancer-internal: "true" spec: type: LoadBalancer loadBalancerIP: 10.240.0.25 ports: - port: 80 selector: app: internal Azure AKS VNet AKS subnet AKS cluster InternalService Pod1 label:Internal Pod2 label:Internal Pod3 label:Internal Internal LB Internal IP Other peered VNets VNet B VNet peering On-premises infrastructure Enterprise system Azure Express Route
Ingress and Ingress Controllers • Ingress is a Kubernetes API that manages external access to the services in the cluster • Supports HTTP and HTTPs • Path and Subdomain based routing • SSL Termination • Save on public Ips • Ingress controller is a daemon, deployed as a Kubernetes Pod, that watches the Ingress Endpoint for updates. Its job is to satisfy requests for ingresses. • Most popular one being Nginx. • Azure Application Gateway Ingress Controller.
West Europe VNET Traffic Manager AKS cluster Application Gateway & Firewall Public IP-Address North Europe VNETAKS cluster Application Gateway & Firewall Public IP-Address High Available AKS
Azure Front Door Global Load Balancer Traffic Manager + Application Gateway + CDN in one product Global Http Load Balancing URL redirection SSL termination WAF rules Static Content Cache StaticContentCache
Tools • Draft This is used to faster inner loop for a developer • Draft Create • Draft Up • Azure Dev spaces This is used to debug microservices without needing to mock the other services
Azure Services • Azure Key vault • Secrets in kubernetes are base64 encoded • Azure Storage • Store state • Azure Managed Services • CosmosDB • Azure SQL
Azure Key Vault • Managed Identity • AAD Pod Identity • Key Vault Flex Volume
Azure Storage - Azure files and disk • Volumes • Persistent Volumes • Static • Dynamic
Open Service Broker for Azure (OSBA) An implementation of the Open Service Broker API OpenShift Cloud Foundry Service Fabric (Coming soon) Kubernetes (AKS) Azure SQL Database Redis Cache CosmosDB And more! Open Service Broker for Azure (OSBA)
Manual scaling is tedious and ineffective • Horizontal pod autoscaling(HPA) -> Scaling pods/containers • Cluster Autoscaling -> Scaling infrastructure/VM’s • AKS + ACI + VK for burst scenarios -> Scaling pods/containers
Pod Pod Kublet cAdvisor Node1 Horizontal Pod Autoscaler Deployment ReplicaSet replicas++ replicas-- Pod Kublet cAdvisor Node2 NodeX Metrics Server Collects metrics from all nodes Gets metrics from Collects metrics from all containers on the node
• Scales nodes based on pending pods • Scale up and scale down • Reduces dependency on monitoring • Removes need for users to manage nodes and monitor service usage manually Pod Pod CA Pod Pod Node Node 4. Pending pods are scheduled 3. Node is granted 2. Additional node(s) needed 1. Pods are in pending state Pod Pod AKS Cluster
VM Pods VM Pods VM Pods VM Pods Kubernetes control pane Azure Container Instances (ACI) Pods ACI Connector Application Architect Infrastructure Architect Deployment/ tasks
Monitoring/Logging your cluster • Azure Monitor for Containers
Overview health of AKS cluster
Node event Logs
Pod usage and details
Customer control plane logs • Use the Azure portal to enable diagnostics logs • Pipe logs to log analytics, event hub or a storage account • Metrics available today • Kube-controller-manager • Kube-api-server • Kube-scheduler • Audit logs on the roadmap
Example control plane logs
CI/CD Database tier AKS production cluster Source code control Helm chart Inner loop Test Debug VSCode AKS dev cluster Azure Container Registry Azure Pipelines/ DevOps Project Auto-build Business tier Web tier Azure Monitor CI/CD Aqua and Twistlock container security Aqua, Twistlock, Neuvector Container Security
Resources • AKS Best Practices GitHub: https://github.com/Azure/k8s-best-practices • AKS Hackfest: aka.ms/k8s-hackfest & https://github.com/Azure/kubernetes-hackfest • Distributed systems Labs by Brendan Burns • Kube Advisor: https://github.com/Azure/kube-advisor • VSCode Kubernetes Extension • Documentation resources • Ebook for distributed systems • AKS HoL • Kubernetes Learning Path
GDBC - 2019 Register at https://globaldevopsbootcamp.com/
AKS

Recomendados

Why Kubernetes on Azure
Why Kubernetes on AzureWhy Kubernetes on Azure
Why Kubernetes on Azure
Microsoft Tech Community
 
Aks pimarox from zero to hero
Aks pimarox from zero to heroAks pimarox from zero to hero
Aks pimarox from zero to hero
Johan Biere
 
Kubernetes 101
Kubernetes 101Kubernetes 101
Kubernetes 101
Crevise Technologies
 
Azure kubernetes service (aks)
Azure kubernetes service (aks)Azure kubernetes service (aks)
Azure kubernetes service (aks)
Akash Agrawal
 
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Edureka!
 
Azure Container Apps
Azure Container AppsAzure Container Apps
Azure Container Apps
Ken Sykora
 
Docker Ecosystem on Azure
Docker Ecosystem on AzureDocker Ecosystem on Azure
Docker Ecosystem on Azure
Patrick Chanezon
 
An Introduction to Kubernetes
An Introduction to KubernetesAn Introduction to Kubernetes
An Introduction to Kubernetes
Imesh Gunaratne
 

Recomendados

Why Kubernetes on Azure
Why Kubernetes on AzureWhy Kubernetes on Azure
Why Kubernetes on Azure
Microsoft Tech Community
 
Aks pimarox from zero to hero
Aks pimarox from zero to heroAks pimarox from zero to hero
Aks pimarox from zero to hero
Johan Biere
 
Kubernetes 101
Kubernetes 101Kubernetes 101
Kubernetes 101
Crevise Technologies
 
Azure kubernetes service (aks)
Azure kubernetes service (aks)Azure kubernetes service (aks)
Azure kubernetes service (aks)
Akash Agrawal
 
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Kubernetes Architecture | Understanding Kubernetes Components | Kubernetes Tu...
Edureka!
 
Azure Container Apps
Azure Container AppsAzure Container Apps
Azure Container Apps
Ken Sykora
 
Docker Ecosystem on Azure
Docker Ecosystem on AzureDocker Ecosystem on Azure
Docker Ecosystem on Azure
Patrick Chanezon
 
An Introduction to Kubernetes
An Introduction to KubernetesAn Introduction to Kubernetes
An Introduction to Kubernetes
Imesh Gunaratne
 
Hands-On Introduction to Kubernetes at LISA17
Hands-On Introduction to Kubernetes at LISA17Hands-On Introduction to Kubernetes at LISA17
Hands-On Introduction to Kubernetes at LISA17
Ryan Jarvinen
 
Docker and kubernetes
Docker and kubernetesDocker and kubernetes
Docker and kubernetes
Dongwon Kim
 
OpenShift-Technical-Overview.pdf
OpenShift-Technical-Overview.pdfOpenShift-Technical-Overview.pdf
OpenShift-Technical-Overview.pdf
JuanSalinas593459
 
AKS - Azure Kubernetes Services - kubernetes meetup may 2018
AKS - Azure Kubernetes Services - kubernetes meetup may 2018AKS - Azure Kubernetes Services - kubernetes meetup may 2018
AKS - Azure Kubernetes Services - kubernetes meetup may 2018
Jorge Arteiro
 
Best Practices with Azure Kubernetes Services
Best Practices with Azure Kubernetes ServicesBest Practices with Azure Kubernetes Services
Best Practices with Azure Kubernetes Services
QAware GmbH
 
Azure kubernetes service
Azure kubernetes serviceAzure kubernetes service
Azure kubernetes service
Vishwas N
 
Kubernetes PPT.pptx
Kubernetes PPT.pptxKubernetes PPT.pptx
Kubernetes PPT.pptx
ssuser0cc9131
 
Azure container instances
Azure container instancesAzure container instances
Azure container instances
Karthikeyan VK
 
Kubernetes - A Comprehensive Overview
Kubernetes - A Comprehensive OverviewKubernetes - A Comprehensive Overview
Kubernetes - A Comprehensive Overview
Bob Killen
 
Introduction to Kubernetes Workshop
Introduction to Kubernetes WorkshopIntroduction to Kubernetes Workshop
Introduction to Kubernetes Workshop
Bob Killen
 
Introduction to kubernetes
Introduction to kubernetesIntroduction to kubernetes
Introduction to kubernetes
Raffaele Di Fazio
 
Kubernetes - introduction
Kubernetes - introductionKubernetes - introduction
Kubernetes - introduction
Sparkbit
 
Kubernetes Introduction
Kubernetes IntroductionKubernetes Introduction
Kubernetes Introduction
Peng Xiao
 
What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...
What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...
What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...
Edureka!
 
EKS Workshop
EKS Workshop EKS Workshop
EKS Workshop
AWS Germany
 
Introduction to helm
Introduction to helmIntroduction to helm
Introduction to helm
Jeeva Chelladhurai
 
Rancher and Kubernetes Best Practices
Rancher and Kubernetes Best PracticesRancher and Kubernetes Best Practices
Rancher and Kubernetes Best Practices
Avinash Patil
 
Kubernetes
KubernetesKubernetes
Kubernetes
erialc_w
 
A quick introduction to AKS
A quick introduction to AKSA quick introduction to AKS
A quick introduction to AKS
Alessandro Melchiori
 
Kubernetes Introduction
Kubernetes IntroductionKubernetes Introduction
Kubernetes Introduction
Eric Gustafson
 
Accelerate Application Innovation Journey with Azure Kubernetes Service
Accelerate Application Innovation Journey with Azure Kubernetes Service Accelerate Application Innovation Journey with Azure Kubernetes Service
Accelerate Application Innovation Journey with Azure Kubernetes Service
WinWire Technologies Inc
 
Container orchestration k8s azure kubernetes services
Container orchestration k8s azure kubernetes servicesContainer orchestration k8s azure kubernetes services
Container orchestration k8s azure kubernetes services
Rajesh Kolla
 

Más contenido relacionado

La actualidad más candente

What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...
What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...
What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...
Edureka!
 

La actualidad más candente (20)

Hands-On Introduction to Kubernetes at LISA17
Hands-On Introduction to Kubernetes at LISA17Hands-On Introduction to Kubernetes at LISA17
Hands-On Introduction to Kubernetes at LISA17
 
Docker and kubernetes
Docker and kubernetesDocker and kubernetes
Docker and kubernetes
 
OpenShift-Technical-Overview.pdf
OpenShift-Technical-Overview.pdfOpenShift-Technical-Overview.pdf
OpenShift-Technical-Overview.pdf
 
AKS - Azure Kubernetes Services - kubernetes meetup may 2018
AKS - Azure Kubernetes Services - kubernetes meetup may 2018AKS - Azure Kubernetes Services - kubernetes meetup may 2018
AKS - Azure Kubernetes Services - kubernetes meetup may 2018
 
Best Practices with Azure Kubernetes Services
Best Practices with Azure Kubernetes ServicesBest Practices with Azure Kubernetes Services
Best Practices with Azure Kubernetes Services
 
Azure kubernetes service
Azure kubernetes serviceAzure kubernetes service
Azure kubernetes service
 
Kubernetes PPT.pptx
Kubernetes PPT.pptxKubernetes PPT.pptx
Kubernetes PPT.pptx
 
Azure container instances
Azure container instancesAzure container instances
Azure container instances
 
Kubernetes - A Comprehensive Overview
Kubernetes - A Comprehensive OverviewKubernetes - A Comprehensive Overview
Kubernetes - A Comprehensive Overview
 
Introduction to Kubernetes Workshop
Introduction to Kubernetes WorkshopIntroduction to Kubernetes Workshop
Introduction to Kubernetes Workshop
 
Introduction to kubernetes
Introduction to kubernetesIntroduction to kubernetes
Introduction to kubernetes
 
Kubernetes - introduction
Kubernetes - introductionKubernetes - introduction
Kubernetes - introduction
 
Kubernetes Introduction
Kubernetes IntroductionKubernetes Introduction
Kubernetes Introduction
 
What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...
What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...
What Is Kubernetes | Kubernetes Introduction | Kubernetes Tutorial For Beginn...
 
EKS Workshop
EKS Workshop EKS Workshop
EKS Workshop
 
Introduction to helm
Introduction to helmIntroduction to helm
Introduction to helm
 
Rancher and Kubernetes Best Practices
Rancher and Kubernetes Best PracticesRancher and Kubernetes Best Practices
Rancher and Kubernetes Best Practices
 
Kubernetes
KubernetesKubernetes
Kubernetes
 
A quick introduction to AKS
A quick introduction to AKSA quick introduction to AKS
A quick introduction to AKS
 
Kubernetes Introduction
Kubernetes IntroductionKubernetes Introduction
Kubernetes Introduction
 

Similar a AKS

Accelerate Application Innovation Journey with Azure Kubernetes Service
Accelerate Application Innovation Journey with Azure Kubernetes Service Accelerate Application Innovation Journey with Azure Kubernetes Service
Accelerate Application Innovation Journey with Azure Kubernetes Service
WinWire Technologies Inc
 
Azure Kubernetes Service 2019 ふりかえり
Azure Kubernetes Service 2019 ふりかえりAzure Kubernetes Service 2019 ふりかえり
Azure Kubernetes Service 2019 ふりかえり
Toru Makabe
 
aks_training_document_Azure_kuberne.pptx
aks_training_document_Azure_kuberne.pptxaks_training_document_Azure_kuberne.pptx
aks_training_document_Azure_kuberne.pptx
WaseemShare
 

Similar a AKS (20)

Accelerate Application Innovation Journey with Azure Kubernetes Service
Accelerate Application Innovation Journey with Azure Kubernetes Service Accelerate Application Innovation Journey with Azure Kubernetes Service
Accelerate Application Innovation Journey with Azure Kubernetes Service
 
Container orchestration k8s azure kubernetes services
Container orchestration k8s azure kubernetes servicesContainer orchestration k8s azure kubernetes services
Container orchestration k8s azure kubernetes services
 
Azure Kubernetes Service 2019 ふりかえり
Azure Kubernetes Service 2019 ふりかえりAzure Kubernetes Service 2019 ふりかえり
Azure Kubernetes Service 2019 ふりかえり
 
Building Cloud Native Applications Using Azure Kubernetes Service
Building Cloud Native Applications Using Azure Kubernetes ServiceBuilding Cloud Native Applications Using Azure Kubernetes Service
Building Cloud Native Applications Using Azure Kubernetes Service
 
Kubernetes VS. App Service: When the orchestrator challenges the platform
Kubernetes VS. App Service: When the orchestrator challenges the platformKubernetes VS. App Service: When the orchestrator challenges the platform
Kubernetes VS. App Service: When the orchestrator challenges the platform
 
aks_training_document_Azure_kuberne.pptx
aks_training_document_Azure_kuberne.pptxaks_training_document_Azure_kuberne.pptx
aks_training_document_Azure_kuberne.pptx
 
Consolidating Infrastructure with Azure Kubernetes Service
Consolidating Infrastructure with Azure Kubernetes ServiceConsolidating Infrastructure with Azure Kubernetes Service
Consolidating Infrastructure with Azure Kubernetes Service
 
Eks and fargate
Eks and fargateEks and fargate
Eks and fargate
 
Elastic Kubernetes Services (EKS)
Elastic Kubernetes Services (EKS)Elastic Kubernetes Services (EKS)
Elastic Kubernetes Services (EKS)
 
Making sense of containers, docker and Kubernetes on Azure.
Making sense of containers, docker and Kubernetes on Azure.Making sense of containers, docker and Kubernetes on Azure.
Making sense of containers, docker and Kubernetes on Azure.
 
Kubernetes for .NET Developers
Kubernetes for .NET DevelopersKubernetes for .NET Developers
Kubernetes for .NET Developers
 
DevOps in AWS with Kubernetes
DevOps in AWS with KubernetesDevOps in AWS with Kubernetes
DevOps in AWS with Kubernetes
 
Kubernetes on on on on on on on on on on on on on on Azure Deck.pptx
Kubernetes on on on on on on on on on on on on on on Azure Deck.pptxKubernetes on on on on on on on on on on on on on on Azure Deck.pptx
Kubernetes on on on on on on on on on on on on on on Azure Deck.pptx
 
Kubernetes on aws
Kubernetes on awsKubernetes on aws
Kubernetes on aws
 
EKS New features - Re:invent 2022 recap at AWSUGNL Benelux
EKS New features - Re:invent 2022 recap at AWSUGNL BeneluxEKS New features - Re:invent 2022 recap at AWSUGNL Benelux
EKS New features - Re:invent 2022 recap at AWSUGNL Benelux
 
Production ready tooling for microservices on kubernetes
Production ready tooling for microservices on kubernetesProduction ready tooling for microservices on kubernetes
Production ready tooling for microservices on kubernetes
 
Nodeless and serverless kubernetes
Nodeless and serverless kubernetesNodeless and serverless kubernetes
Nodeless and serverless kubernetes
 
Kubernetes-Fundamentals.pptx
Kubernetes-Fundamentals.pptxKubernetes-Fundamentals.pptx
Kubernetes-Fundamentals.pptx
 
Kubernetes vs App Service
Kubernetes vs App ServiceKubernetes vs App Service
Kubernetes vs App Service
 
04_Azure Kubernetes Service: Basic Practices for Developers_GAB2019
04_Azure Kubernetes Service: Basic Practices for Developers_GAB201904_Azure Kubernetes Service: Basic Practices for Developers_GAB2019
04_Azure Kubernetes Service: Basic Practices for Developers_GAB2019
 

Más de girish goudar

Más de girish goudar (10)

Azure devops
Azure devops Azure devops
Azure devops
 
DevOps Bootcamp
DevOps BootcampDevOps Bootcamp
DevOps Bootcamp
 
Azure governance
Azure governanceAzure governance
Azure governance
 
GlobalAzureBootCamp 2018
GlobalAzureBootCamp 2018GlobalAzureBootCamp 2018
GlobalAzureBootCamp 2018
 
Microsoft DevOps - Fast track
Microsoft DevOps - Fast track Microsoft DevOps - Fast track
Microsoft DevOps - Fast track
 
Microservices using .Net core
Microservices using .Net coreMicroservices using .Net core
Microservices using .Net core
 
Deploying .net application using VSTS on ACS in kubernetes
Deploying .net application using VSTS on ACS in kubernetesDeploying .net application using VSTS on ACS in kubernetes
Deploying .net application using VSTS on ACS in kubernetes
 
Windows server and docker
Windows server and dockerWindows server and docker
Windows server and docker
 
.Net Core, Asp.net Core and Docker
.Net Core, Asp.net Core and Docker .Net Core, Asp.net Core and Docker
.Net Core, Asp.net Core and Docker
 
Introduction to SharePoint 2013
Introduction to SharePoint 2013Introduction to SharePoint 2013
Introduction to SharePoint 2013
 

Último

Kuwait City MTP kit ((+919101817206)) Buy Abortion Pills Kuwait
Kuwait City MTP kit ((+919101817206)) Buy Abortion Pills KuwaitKuwait City MTP kit ((+919101817206)) Buy Abortion Pills Kuwait
Kuwait City MTP kit ((+919101817206)) Buy Abortion Pills Kuwait
jaanualu31
 
Verification of thevenin's theorem for BEEE Lab (1).pptx
Verification of thevenin's theorem for BEEE Lab (1).pptxVerification of thevenin's theorem for BEEE Lab (1).pptx
Verification of thevenin's theorem for BEEE Lab (1).pptx
chumtiyababu
 
Cara Menggugurkan Sperma Yang Masuk Rahim Biyar Tidak Hamil
Cara Menggugurkan Sperma Yang Masuk Rahim Biyar Tidak HamilCara Menggugurkan Sperma Yang Masuk Rahim Biyar Tidak Hamil
Cara Menggugurkan Sperma Yang Masuk Rahim Biyar Tidak Hamil
Cara Menggugurkan Kandungan 087776558899
 
Standard vs Custom Battery Packs - Decoding the Power Play
Standard vs Custom Battery Packs - Decoding the Power PlayStandard vs Custom Battery Packs - Decoding the Power Play
Standard vs Custom Battery Packs - Decoding the Power Play
Epec Engineered Technologies
 
"Lesotho Leaps Forward: A Chronicle of Transformative Developments"
"Lesotho Leaps Forward: A Chronicle of Transformative Developments""Lesotho Leaps Forward: A Chronicle of Transformative Developments"
"Lesotho Leaps Forward: A Chronicle of Transformative Developments"
mphochane1998
 
Integrated Test Rig For HTFE-25 - Neometrix
Integrated Test Rig For HTFE-25 - NeometrixIntegrated Test Rig For HTFE-25 - Neometrix
Integrated Test Rig For HTFE-25 - Neometrix
Neometrix_Engineering_Pvt_Ltd
 
Call Girls in South Ex (delhi) call me [🔝9953056974🔝] escort service 24X7
Call Girls in South Ex (delhi) call me [🔝9953056974🔝] escort service 24X7Call Girls in South Ex (delhi) call me [🔝9953056974🔝] escort service 24X7
Call Girls in South Ex (delhi) call me [🔝9953056974🔝] escort service 24X7
9953056974 Low Rate Call Girls In Saket, Delhi NCR
 

Último (20)

Kuwait City MTP kit ((+919101817206)) Buy Abortion Pills Kuwait
Kuwait City MTP kit ((+919101817206)) Buy Abortion Pills KuwaitKuwait City MTP kit ((+919101817206)) Buy Abortion Pills Kuwait
Kuwait City MTP kit ((+919101817206)) Buy Abortion Pills Kuwait
 
Block diagram reduction techniques in control systems.ppt
Block diagram reduction techniques in control systems.pptBlock diagram reduction techniques in control systems.ppt
Block diagram reduction techniques in control systems.ppt
 
Wadi Rum luxhotel lodge Analysis case study.pptx
Wadi Rum luxhotel lodge Analysis case study.pptxWadi Rum luxhotel lodge Analysis case study.pptx
Wadi Rum luxhotel lodge Analysis case study.pptx
 
Thermal Engineering -unit - III & IV.ppt
Thermal Engineering -unit - III & IV.pptThermal Engineering -unit - III & IV.ppt
Thermal Engineering -unit - III & IV.ppt
 
Verification of thevenin's theorem for BEEE Lab (1).pptx
Verification of thevenin's theorem for BEEE Lab (1).pptxVerification of thevenin's theorem for BEEE Lab (1).pptx
Verification of thevenin's theorem for BEEE Lab (1).pptx
 
Cara Menggugurkan Sperma Yang Masuk Rahim Biyar Tidak Hamil
Cara Menggugurkan Sperma Yang Masuk Rahim Biyar Tidak HamilCara Menggugurkan Sperma Yang Masuk Rahim Biyar Tidak Hamil
Cara Menggugurkan Sperma Yang Masuk Rahim Biyar Tidak Hamil
 
Hostel management system project report..pdf
Hostel management system project report..pdfHostel management system project report..pdf
Hostel management system project report..pdf
 
Standard vs Custom Battery Packs - Decoding the Power Play
Standard vs Custom Battery Packs - Decoding the Power PlayStandard vs Custom Battery Packs - Decoding the Power Play
Standard vs Custom Battery Packs - Decoding the Power Play
 
Thermal Engineering Unit - I & II . ppt
Thermal Engineering Unit - I & II . pptThermal Engineering Unit - I & II . ppt
Thermal Engineering Unit - I & II . ppt
 
kiln thermal load.pptx kiln tgermal load
kiln thermal load.pptx kiln tgermal loadkiln thermal load.pptx kiln tgermal load
kiln thermal load.pptx kiln tgermal load
 
"Lesotho Leaps Forward: A Chronicle of Transformative Developments"
"Lesotho Leaps Forward: A Chronicle of Transformative Developments""Lesotho Leaps Forward: A Chronicle of Transformative Developments"
"Lesotho Leaps Forward: A Chronicle of Transformative Developments"
 
Computer Lecture 01.pptxIntroduction to Computers
Computer Lecture 01.pptxIntroduction to ComputersComputer Lecture 01.pptxIntroduction to Computers
Computer Lecture 01.pptxIntroduction to Computers
 
HAND TOOLS USED AT ELECTRONICS WORK PRESENTED BY KOUSTAV SARKAR
HAND TOOLS USED AT ELECTRONICS WORK PRESENTED BY KOUSTAV SARKARHAND TOOLS USED AT ELECTRONICS WORK PRESENTED BY KOUSTAV SARKAR
HAND TOOLS USED AT ELECTRONICS WORK PRESENTED BY KOUSTAV SARKAR
 
Unit 4_Part 1 CSE2001 Exception Handling and Function Template and Class Temp...
Unit 4_Part 1 CSE2001 Exception Handling and Function Template and Class Temp...Unit 4_Part 1 CSE2001 Exception Handling and Function Template and Class Temp...
Unit 4_Part 1 CSE2001 Exception Handling and Function Template and Class Temp...
 
Moment Distribution Method For Btech Civil
Moment Distribution Method For Btech CivilMoment Distribution Method For Btech Civil
Moment Distribution Method For Btech Civil
 
Integrated Test Rig For HTFE-25 - Neometrix
Integrated Test Rig For HTFE-25 - NeometrixIntegrated Test Rig For HTFE-25 - Neometrix
Integrated Test Rig For HTFE-25 - Neometrix
 
Computer Networks Basics of Network Devices
Computer Networks Basics of Network DevicesComputer Networks Basics of Network Devices
Computer Networks Basics of Network Devices
 
Introduction to Serverless with AWS Lambda
Introduction to Serverless with AWS LambdaIntroduction to Serverless with AWS Lambda
Introduction to Serverless with AWS Lambda
 
A CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptx
A CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptxA CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptx
A CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptx
 
Call Girls in South Ex (delhi) call me [🔝9953056974🔝] escort service 24X7
Call Girls in South Ex (delhi) call me [🔝9953056974🔝] escort service 24X7Call Girls in South Ex (delhi) call me [🔝9953056974🔝] escort service 24X7
Call Girls in South Ex (delhi) call me [🔝9953056974🔝] escort service 24X7
 

AKS

  • 1. 7 things to know before using AKS
  • 2.
  • 3. What is Kubernetes? Kubernetes comes from the Greek word κυβερνήτης:, which means helmsman or ship pilot, ie: the captainer of a container ship. "Kubernetes is an open-source system for automating deployment, scaling, and management of containerized applications."
  • 4. Elements of Orchestration Scheduling Affinity/anti- affinity Health monitoring Failover Scaling Networking Service discovery Coordinated app upgrades
  • 5. Kubernetes architecture Master API Server Scheduler Controller Manager Node (Minion) etcd kubelet Kube- Proxy cAdvisor Pod Pod Pod Kubectl (CLI) Dashboard (UI) REST client (Code)
  • 6. Azure Kubernetes Service (AKS) AKS reduces the complexity and operational overhead of managing Kubernetes by offloading much of that responsibility to Azure.
  • 8. Azure Kubernetes Service (AKS) Get started easily $ az aks create $ az aks install-cli $ az aks get-credentials $ kubectl get nodes
  • 9. Azure Kubernetes Service (AKS) Manage an AKS cluster $ az aks list $ az aks upgrade $ kubectl get nodes $ az aks scale
  • 10. 7 things • Cluster Creation : Cluster Isolation and Networking • Configuring Cluster • Tools: Draft and Azure Dev Spaces • Azure Services • Scaling your Applications and Cluster • Logging and Monitoring • Deployment
  • 11.
  • 12. Dev Cluster PodA PodB PodDPodC Node0 Node1 PodE PodF PodHPodG Prod Team1 Cluster PodA PodB PodDPodC Node0 Node1 PodE PodF PodHPodG Staging Cluster PodA PodB PodDPodC Node0 Node1 PodE PodF PodHPodG Prod Team2 Cluster PodA PodB PodDPodC Node0 Node1 PodE PodF PodHPodG
  • 13. Dev and Staging Cluster DevTeam1 Staging DevTeam2 Node0 Node1 Node2 Node3 Pod Pod PodPod Pod Pod PodPod Pod Pod PodPod Pod Pod PodPod Prod Cluster Team1 Team2 Team3 Node0 Node1 Node3 Node4 Pod Pod PodPod Pod Pod PodPod Pod Pod PodPod Pod Pod PodPod
  • 14. Kubernetes Namespaces • Namespaces Object is the logical Isolation boundary • Kubernetes has features to help us safely isolate tenants • Scheduling: Resource Quota • CPU and memory • Number of pods • Network Isolation using Network Policies • Azure • Calico • Authentication and Authorization: • Role -> RoleBinding ->Namespace • ClusterRole -> ClusterRoleBinding -> Cluster
  • 15. AKS Basic Networking • Done using Kubenet network plugin and has the following features • Nodes and Pods are placed on different IP subnets • User Defined Routing and IP Forwarding is for connectivity between Pods across Nodes. • Drawbacks • 2 different IP CIDRs to manage • Performance impact • Peering or On-Premise connectivity is hard to achieve
  • 16. AKS Advanced Networking • Done using the Azure CNI (Container Networking Interface) • CNI is a vendor-neutral protocol, used by container runtimes to make requests to Networking Providers • Azure CNI is an implementation which allows you to integrate Kubernetes with your VNET • Advantages • Single IP CIDR to manage • Better Performance • Peering and On-Premise connectivity is out of the box
  • 17. AKS with Advanced Networking AKS subnet Backend services subnet Azure VNet A On-premises infrastructure Enterprise system Other peered VNets VNet B VNet peering Azure Express Route AKS cluster SQL Server
  • 18.
  • 19.
  • 20. • Service Type LoadBalancer • Basic Layer4 Load Balancing (TCP/UDP) • Each service as assigned an IP on the ALB apiVersion: v1 kind: Service metadata: name: frontendservice spec: loadBalancerIP: X.X.X.X type: LoadBalancer ports: - port: 80 selector: app: frontend Azure AKS VNet AKS subnet AKS cluster FrontEndService Pod1 label:Frontend Pod2 label:Frontend Pod3 label:Frontend Public LB Public IP
  • 21. • Used for internal services that should be accessed by other VNETs or On- Premise only apiVersion: v1 kind: Service metadata: name: internalservice annotations: service.beta.kubernetes.io/azure-load- balancer-internal: "true" spec: type: LoadBalancer loadBalancerIP: 10.240.0.25 ports: - port: 80 selector: app: internal Azure AKS VNet AKS subnet AKS cluster InternalService Pod1 label:Internal Pod2 label:Internal Pod3 label:Internal Internal LB Internal IP Other peered VNets VNet B VNet peering On-premises infrastructure Enterprise system Azure Express Route
  • 22. Ingress and Ingress Controllers • Ingress is a Kubernetes API that manages external access to the services in the cluster • Supports HTTP and HTTPs • Path and Subdomain based routing • SSL Termination • Save on public Ips • Ingress controller is a daemon, deployed as a Kubernetes Pod, that watches the Ingress Endpoint for updates. Its job is to satisfy requests for ingresses. • Most popular one being Nginx. • Azure Application Gateway Ingress Controller.
  • 23.
  • 24. West Europe VNET Traffic Manager AKS cluster Application Gateway & Firewall Public IP-Address North Europe VNETAKS cluster Application Gateway & Firewall Public IP-Address High Available AKS
  • 25. Azure Front Door Global Load Balancer Traffic Manager + Application Gateway + CDN in one product Global Http Load Balancing URL redirection SSL termination WAF rules Static Content Cache StaticContentCache
  • 26.
  • 27.
  • 28. Tools • Draft This is used to faster inner loop for a developer • Draft Create • Draft Up • Azure Dev spaces This is used to debug microservices without needing to mock the other services
  • 29.
  • 30.
  • 31. Azure Services • Azure Key vault • Secrets in kubernetes are base64 encoded • Azure Storage • Store state • Azure Managed Services • CosmosDB • Azure SQL
  • 32. Azure Key Vault • Managed Identity • AAD Pod Identity • Key Vault Flex Volume
  • 33. Azure Storage - Azure files and disk • Volumes • Persistent Volumes • Static • Dynamic
  • 34. Open Service Broker for Azure (OSBA) An implementation of the Open Service Broker API OpenShift Cloud Foundry Service Fabric (Coming soon) Kubernetes (AKS) Azure SQL Database Redis Cache CosmosDB And more! Open Service Broker for Azure (OSBA)
  • 35.
  • 36.
  • 37. Manual scaling is tedious and ineffective • Horizontal pod autoscaling(HPA) -> Scaling pods/containers • Cluster Autoscaling -> Scaling infrastructure/VM’s • AKS + ACI + VK for burst scenarios -> Scaling pods/containers
  • 38. Pod Pod Kublet cAdvisor Node1 Horizontal Pod Autoscaler Deployment ReplicaSet replicas++ replicas-- Pod Kublet cAdvisor Node2 NodeX Metrics Server Collects metrics from all nodes Gets metrics from Collects metrics from all containers on the node
  • 39. • Scales nodes based on pending pods • Scale up and scale down • Reduces dependency on monitoring • Removes need for users to manage nodes and monitor service usage manually Pod Pod CA Pod Pod Node Node 4. Pending pods are scheduled 3. Node is granted 2. Additional node(s) needed 1. Pods are in pending state Pod Pod AKS Cluster
  • 40. VM Pods VM Pods VM Pods VM Pods Kubernetes control pane Azure Container Instances (ACI) Pods ACI Connector Application Architect Infrastructure Architect Deployment/ tasks
  • 41.
  • 42.
  • 43. Monitoring/Logging your cluster • Azure Monitor for Containers
  • 44. Overview health of AKS cluster
  • 46. Pod usage and details
  • 47. Customer control plane logs • Use the Azure portal to enable diagnostics logs • Pipe logs to log analytics, event hub or a storage account • Metrics available today • Kube-controller-manager • Kube-api-server • Kube-scheduler • Audit logs on the roadmap
  • 49.
  • 50.
  • 51. CI/CD Database tier AKS production cluster Source code control Helm chart Inner loop Test Debug VSCode AKS dev cluster Azure Container Registry Azure Pipelines/ DevOps Project Auto-build Business tier Web tier Azure Monitor CI/CD Aqua and Twistlock container security Aqua, Twistlock, Neuvector Container Security
  • 52.
  • 53.
  • 54. Resources • AKS Best Practices GitHub: https://github.com/Azure/k8s-best-practices • AKS Hackfest: aka.ms/k8s-hackfest & https://github.com/Azure/kubernetes-hackfest • Distributed systems Labs by Brendan Burns • Kube Advisor: https://github.com/Azure/kube-advisor • VSCode Kubernetes Extension • Documentation resources • Ebook for distributed systems • AKS HoL • Kubernetes Learning Path
  • 55. GDBC - 2019 Register at https://globaldevopsbootcamp.com/