Orchestration with Kubernetes
•Descargar como PPTX, PDF•
0 recomendaciones•372 vistas
Build Pipeline, Kubernetes, Load testing
Recomendados
Más contenido relacionado
La actualidad más candente
La actualidad más candente (19)
Similar a Orchestration with Kubernetes
Similar a Orchestration with Kubernetes (20)
Último
Último (20)
Orchestration with Kubernetes
- 1. ORCHESTRATION WITH KUBERNETES Kunal Kerkar Software Engineer, Karix @tsudot 1
- 2. ps://www.cncf.io/blog/2018/08/29/cncf-survey-use-of-cloud-native-technologies-in-production-has-grown-over-200-pe CLOUD NATIVE CNCF ‣ 200% increase since Dec ‘17 Kubernetes ‣40% (5000+) enterprises 2
- 3. ‣Kubernetes Objects ‣Build Pipeline ‣Packaging ‣Deployment ‣Load Testing ‣Dev Productivity ‣Areas of Improvement AGENDA 3
- 9. Developer Github Jenkins Container Registry Chart Repository Production Deploy Staging Deploy Load Testing Monitoring Pipeline 9
- 10. Pipeline Features 1. Fast deployments 2. Debugging failures 3. Notifications 4. Immutable builds 10
- 11. Source code 1. Dockerfile 2. Makefile 3. Jenkinsfile 4. charts/ 11
- 12. Developer Github Jenkins Container Registry Chart Repository Production Deploy Staging Deploy Load Testing Monitoring Pipeline Progress… 12
- 14. Tungsten: Dockerfile FROM gcr.io/karix/golang:1.9 ENV GOBIN /go/bin COPY . /go/src/github.com/karixtech/tungsten/ WORKDIR /go/src/github.com/karixtech/tungsten/ RUN dep ensure EXPOSE 8009 EXPOSE 8010 RUN make build 14
- 15. Tungsten: Makefile .PHONY: build install test build: go build -o tungsten-server install: go install test: go test -v ./... 15
- 16. Tungsten: Jenkinsfile 1. Written in groovy 2. kubernetes-plugin 3. SemVer build trigger 16
- 17. Developer Github Jenkins Container Registry Chart Repository Production Deploy Staging Deploy Load Testing Monitoring Pipeline Progress… 17
- 18. Tungsten: Jenkinsfile node(label) { container(‘jenkins-slave') { stage("Fetch dependent images") { sh("gcloud docker -- pull gcr.io/karix/golang:1.9-2") } } } 18
- 19. Jenkinsfile: Build Image stage("Build image") { sh("docker build -f Dockerfile -t ${imageTag} .”); sh("docker build -f postgres/Dockerfile ."); } 19
- 20. Jenkinsfile: Test Image stage("Test image") { result = sh ( script: "docker run --name ${appName} --network ${appName}-n /bin/bash -c "make test"", returnStatus: true ) } 20
- 21. Developer Github Jenkins Container Registry Chart Repository Production Deploy Staging Deploy Load Testing Monitoring Pipeline Progress… 21
- 23. Charts tungsten ➜ charts git:(master) ✗ tree . └── tungsten ├── Chart.yaml ├── config │ ├── prod_config.json │ └── stage_config.json ├── templates │ ├── configmap.yaml │ ├── deployment.yaml │ ├── hpa.yaml │ └── service.yaml └── values ├── prod_values.yaml └── stage_values.yaml 4 directories, 9 files 23
- 24. Helm 1. Tiller (Server) 2. Helm client > https://github.com/helm/ 24
- 25. Charts: configmap.yaml apiVersion: v1 kind: ConfigMap metadata: name: {{ .Release.Name }} data: config.json: |- {{.Files.Get .Values.configFile | printf "%s" | indent 4}} 25
- 26. Charts: deployment.yaml kind: Deployment spec: containers: - name: {{ .Chart.Name }} image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}" command: ["{{ .Values.image.command }}"] imagePullPolicy: {{ .Values.image.pullPolicy }} ports: - containerPort: {{ .Values.service.internalPort }} volumeMounts: - name: config-volume mountPath: /var/config.json subPath: config.json livenessProbe: httpGet: path: /api/status/ port: {{ .Values.service.internalPort }} readinessProbe: httpGet: path: /api/status/ port: {{ .Values.service.internalPort }} resources: {{ toYaml .Values.resources | indent 12 }} volumes: - name: config-volume configMap: name: {{ .Release.Name }} 26
- 27. Charts: service.yaml apiVersion: v1 kind: Service spec: type: {{ .Values.service.type }} ports: - port: {{ .Values.service.externalPort }} targetPort: {{ .Values.service.internalPort }} protocol: TCP name: {{ .Values.service.name }} selector: app: {{ template "name" . }} release: {{ .Release.Name }} 27
- 28. Charts: hpa.yaml apiVersion: autoscaling/v2beta1 kind: HorizontalPodAutoscaler spec: scaleTargetRef: apiVersion: apps/v1beta1 kind: Deployment name: {{ template "fullname" . }} minReplicas: {{ .Values.hpa.minReplicas }} maxReplicas: {{ .Values.hpa.maxReplicas }} metrics: - type: Resource resource: name: cpu targetAverageUtilization: {{ .Values.hpa.cpu.t 28
- 29. Charts: Packaging ‣ Generated from values ‣ Packaged into tgz ‣ Push to chart repository (https://github.com/helm/chartmuseum) 29
- 30. Developer Github Jenkins Container Registry Chart Repository Production Deploy Staging Deploy Load Testing Monitoring Pipeline Progress… 30
- 32. Helm <command> 1. Update local repo cache helm repo update 2. Install package helm install -n tungsten stage/tungsten --version 2.13.0 3. Upgrade package helm upgrade tungsten stage/tungsten --version 2.15.0 32
- 37. Developer Github Jenkins Container Registry Chart Repository Production Deploy Staging Deploy Load Testing Monitoring Pipeline Progress… 37
- 38. Kubewatch Source: https://kubernetes.io/ > https://github.com/bitnami-labs/kubewatch/ 1. Project by bitnami 2. Publishes cluster events 38
- 40. K6 > https://github.com/loadimpact/k6 k6 run -u 3 -i 10000 sms.js 40
- 41. Developer Github Jenkins Container Registry Chart Repository Production Deploy Staging Deploy Load Testing Monitoring Pipeline Progress… 41
- 43. Developer Github Jenkins Container Registry Chart Repository Production Deploy Staging Deploy Load Testing Monitoring Pipeline Progress… 43
- 45. Developer upgrade Source: https://kubernetes.io/ 1. Quick Deployments 2. Control on cluster 3. Test Coverage 4. Boost Confidence 45
- 47. Areas of Improvement Source: https://kubernetes.io/ 1. Gitkube 2. Operators 3. Secrets/Vault 47
Notas del editor
- CNCF survey - cloud native technologies - over 200% - December 2017 - 40% enterprises use k8s in production. Karix.io leverages k8s; send and receive messages over channels; Build and orchestrate; focus deployment pipeline; ensure staging production clusters replica; boost dev productivity - improve system reliability.
- K8s objects; build pipelines, packaging, deployment; throw light optimised CPU and memory by load testing; improved dev productivity - currently working on.
- State machine; set desired state - current state matches desired state; Nodes - VMs & bare metal; master controls each node; kubelet daemon - containers are running in pod
- Pod - basic building block; running process; never standalone pods - cannot have state; dont get rescheduled.
- Manage pods by Deployment; collection similar pods; maintain certain number pods
- Service - abstraction logical set of pods - policy to access them; Load balancers; expose external network - job of balancing traffic
- Build tech platform; integrate existing services - presence web mobile; Responsibility - enabling - developer tooling; goal - setup testing environment; running on VM; integration testing - staging VM ansible; Problem - one environment - QA/acceptance testing; big hurdle - major bottleneck - developer productivity; Realised - could not - single QA - meet deadlines; Goal clear - couldn’t timeshare; on demand; containers got drilled; Karix.io; decided to run containers; architecture - what microservices - independently scalable components; 2 engineers; thought process - developer time - building service - not managing infrastructure; super simple onboarding; Any product - start build pipeline; core unit - all software releases - revolve.
- This is build pipeline that we worked out for our platform karix.io. I will keep coming back to this slide as we progress through our pipeline stages.
- Time gap - release tag - run in production - optimized; build fails - debug the build; notified early on; container building - packaging - pushing notified; Build immutable - release gets tagged, new changes cannot be pushed - cluster in the state; Chose Jenkins - versatile tool; Jenkins Pipeline - DSL - modeling delivery pipeline; Code shipped instructions; turn concept dev-ops into reality; Service will be built - run test cases - find config - how to package; enables developers - part of their code.
- Golden rule - 3 files - folder charts.
- So behind the scenes our developer has pushed their code to github.
- Tungsten - golang; main layers - messaging architecture
- Dockerfile - generic; host base image - high security
- Makefile - compiling, building, test; standard targets - little change - build script;
- Jenkinsfile - groovy; calls standard Makefile - logic upload builds; runs on k8s - spawned pod using the jenkins slave base image; triggered - spawn slave Pod - run instructions - terminate job finishes; kubernetes-plugin; semantic versioning; patch staging; minor major production; release tag as version.
- At this point a release tag has been created and GitHub has notified Jenkins.
- Stages - Jenkinfile; split different stages - debug better; first stage fetch golang
- Build tungsten image; postgres image;
- test cases pass - push to registry
- So back to our pipeline progress, At this point image has been built and pushed to the the container repository.
- Builds - staging, production; charts folder - helm package; templates spew k8s objects
- templates - cm, dep, hpa, svc; config folder - config files; values - template values - env; specific to helm
- tiller; helm-client
- config files mounted; varies env; CM picks config file; location in values.yml; mounted through CM
- Deployment - config files; path to container image - command; readiness/liveness - exposed TCP/HTTP
- Service - route traffic; pod selector - route traffic to; external port - accept incoming traffic; target port
- HPA - auto scaling spec; top of deployment
- Generated from values.yml; helm package tar; tar pushed chart repository; chartmuseum
- At this point the deployment package has been created and pushed to the the chart repository.
- Believed deploying software - breeze; click button - single command; building packaging - get back shell. Jenkins notify built, packaged, pushed to chart repo. Deployment manual
- Pushing versioned chart - update local index; install command; helm fetches the tungsten chart ; deploys CM, SVC and deployment. Rolling updates/rollbacks benefits deploying containers; devops teams - zero downtime application upgrades; overview upgrade works
- tungsten pods; helm terminate signal - start booting new pod. Service incorporate - start sending traffic - readiness checks. Upgrade one by one
- tungsten pods; helm terminate signal - start booting new pod. Service incorporate - start sending traffic - readiness checks. Upgrade one by one
- tungsten pods; helm terminate signal - start booting new pod. Service incorporate - start sending traffic - readiness checks. Upgrade one by one
- tungsten pods; helm terminate signal - start booting new pod. Service incorporate - start sending traffic - readiness checks. Upgrade one by one
- At this point the package has been installed on our staging cluster and is ready for load testing.
- Deployments tracked; cannot be blind; kubewatch; bitnami - publishes notifications; changes upgrades deployments cluster.
- launched karix.io - New to k8s; k8s production; load test feasibility setup - determine resources - individual pods; business requirement to benchmark capacity; came up with average spend on infrastructure vs QPS.
- k6 - seamless integration with pipeline; prometheus
- At this point the load testing has happened.
- resource usages hit threshold - wrt - requests fired on component; trial and error; .5 CPU started benchmarking from there; came up with data no of requests wrt given resources
- And finally the package gets deployed on production with the right set of resources.
- deployment process established - improved dev productivity - efficient workflow
- Quick uniform deployments; feature - existing bug isolated, independent clusters; feature specific cluster - without affecting staging dev; Own environment - deploy builds; low resources - financially sustainable; replica - without compatibility; Test coverage 80% = no fault code; earlier bug the better; multiple envs - bugs reduce drastically; 2 engineers - hired first engineer; deploys to production - first week; Boost confidence - sense of achievement.
- k8s - rapidly developing - incorporate best practices - deploying orchestrating applications - different aspects; known technical debts - ship/release faster; improving and fixing pipeline - specific topics.
- Code changes - rigmarole; “my code is building” - high debugging cycles. Gitkube - runs git remote - push changes; has instructions; Operator - extend type of applications - need to maintain state; database/cache managed - didn’t want operational overhead - persistent storage; operators evolving - explore mechanism - staging/dev; Exploring integration with vault/k8s secrets - challenging part - app needs code changes
- Pulling code - restarting daemons; Ansible scripts; clusterssh - parallel ssh - deployment script; k8s - not one-stop solution; rethink your philosophy; onus of uptime scaling k8s master - desired state always maintained.