Kubernetes & Helm Tech Talk

Transcript

1. Managing Kubernetes Deployments with Helm Vincent De Smet

2. Overview - Kubernetes - Concepts - Challenges - Helm -

   Introduction - Templating

3. Kubernetes Concepts & Challenges

4. Linux Host CONTAINERS Container foo rails server -b 0.0.0.0 usr/src/app/

   ├── Gemfile ├── Gemfile.lock ├── Rakefile ├── app │ ├── api │ └── ... └── bins / libs ...

5. BUILD, SHIP, RUN

6. PODS & VOLUMES Container Foo Container Bar Namespaces: - Net

   - IPC - … volumes

7. PODS & VOLUMES volumes

8. LABELS app : my-app role : master track: stable

9. LABELS app : my-app role : master track: stable app

   : my-app role : worker track: stable app : my-app role : worker track: canary app : my-app role : master track: canary

10. SELECTORS app : my-app app : my-app role : master

    track: stable app : my-app role : worker track: stable app : my-app role : worker track: canary app : my-app role : master track: canary

11. SELECTORS app : my-app role : worker app : my-app

    role : master track: stable app : my-app role : worker track: stable app : my-app role : worker track: canary app : my-app role : master track: canary

12. SELECTORS app : my-app track: canary app : my-app role

    : master track: stable app : my-app role : worker track: stable app : my-app role : worker track: canary app : my-app role : master track: canary

13. CONTROL LOOPS Desired state Actual state pods: - foo -

    bar pods: - foo

14. CONTROL LOOPS Desired state Actual state pods: - foo -

    bar pods: - foo create “bar” Create

15. CONTROL LOOPS Desired state Actual state pods: - foo -

    bar pods: - foo - bar

16. REPLICA SETS + Replica Set: - replicas: 1 - selector:

    - app: my-app - version: 1.0 - Desired State: - Pod Specification - Replica Count - Label Selector

17. REPLICA SETS + Replica Set: - replicas: 2 - selector:

    - app: my-app - version: 1.0

18. REPLICA SETS + Replica Set: - replicas: 4 - selector:

    - app: my-app - version: 1.0

19. SERVICES Service: - nodePort: 30128 - selector: - app: my-app

    - version: 1.0 - de-couple discovery from application - Define how to access pods - Act as a proxy (Virtual IP - stable for DNS) Think of: - Dynamic Routing Table

20. CANARIES + Replica Set: - replicas: 2 - selector: -

    app: my-app - version: 1.0 Service: - nodePort: 30128 - selector: - app: my-app + Replica Set: - replicas: 1 - selector: - app: my-app - version: canary Think of: - Partially live the new version

21. DEPLOYMENTS Service: - nodePort: 30128 - selector: - app: my-app

    + Replica Set: - replicas: 2 - selector: - app: my-app - version: 1.0 + - Manage updates with Deployment resources

22. UPDATES Service: - nodePort: 30128 - selector: - app: my-app

    + Replica Set: - replicas: 4 - selector: - app: my-app - version: 1.0 + Deployment: - strategy: - rollingUpdate

23. UPDATES Service: - nodePort: 30128 - selector: - app: my-app

    + + Replica Set: - replicas: 1 - selector: - app: my-app - version: 2.0 Replica Set: - replicas: 4 - selector: - app: my-app - version: 1.0 + Deployment: - strategy: - rollingUpdate

24. UPDATES Service: - nodePort: 30128 - selector: - app: my-app

    + + Replica Set: - replicas: 1 - selector: - app: my-app - version: 2.0 Replica Set: - replicas: 3 - selector: - app: my-app - version: 1.0 + Deployment: - strategy: - rollingUpdate

25. UPDATES Service: - nodePort: 30128 - selector: - app: my-app

    + + Replica Set: - replicas: 2 - selector: - app: my-app - version: 2.0 Replica Set: - replicas: 3 - selector: - app: my-app - version: 1.0 + Deployment: - strategy: - rollingUpdate

26. UPDATES Service: - nodePort: 30128 - selector: - app: my-app

    + + Replica Set: - replicas: 2 - selector: - app: my-app - version: 2.0 Replica Set: - replicas: 2 - selector: - app: my-app - version: 1.0 + Deployment: - strategy: - rollingUpdate

27. UPDATES Service: - nodePort: 30128 - selector: - app: my-app

    + + Replica Set: - replicas: 3 - selector: - app: my-app - version: 2.0 Replica Set: - replicas: 2 - selector: - app: my-app - version: 1.0 + Deployment: - strategy: - rollingUpdate

28. UPDATES Service: - nodePort: 30128 - selector: - app: my-app

    + + Replica Set: - replicas: 3 - selector: - app: my-app - version: 2.0 Replica Set: - replicas: 1 - selector: - app: my-app - version: 1.0 + Deployment: - strategy: - rollingUpdate

29. UPDATES Service: - nodePort: 30128 - selector: - app: my-app

    + Replica Set: - replicas: 4 - selector: - app: my-app - version: 2.0 Replica Set: - replicas: 1 - selector: - app: my-app - version: 1.0 + + Deployment: - strategy: - rollingUpdate

30. UPDATES Service: - nodePort: 30128 - selector: - app: my-app

    + Replica Set: - replicas: 4 - selector: - app: my-app - Version: 2.0 Replica Set: - replicas: 0 - selector: - app: my-app - version: 1.0 + + Deployment: - strategy: - rollingUpdate

31. UPDATES Service: - nodePort: 30128 - selector: - app: my-app

    + Replica Set: - replicas: 4 - selector: - app: my-app - Version: 2.0 + Deployment: - strategy: - rollingUpdate

32. CONFIGMAPS Service: - nodePort: 30128 - selector: - app: my-app

    + + Deployment: - strategy: - rollingUpdate ConfigMap: - sample.yaml: | env: production cache: true max_threads: 8

33. SECRETS Service: - nodePort: 30128 - selector: - app: my-app

    + + Deployment: - strategy: - rollingUpdate Secret: - sample.yaml: | key: *** db_user: *** db_pw: ***

34. Recap - Multiple resource types - Deployments - Services -

    ConfigMaps - Secrets - … - Serializable Manifests (store as yaml) Managing these bundles is a challenge in the long run!

35. Challenges 1. Collaboration a. Sharing Manifest files, trust? b. Iterating

    c. Best Practices 2. Managing Releases a. Define package b. Tweaking ~ Multiple copies & variations c. Migrating

36. Helm Introduction & Templating

37. Helm: Package Manager - Collaboration with Google, Bitnami, Deis and

    others - Deis/Helm -> Kubernetes/Helm - Architecture: - Client: Helm - Server: Tiller - This talk: - Focused on writing charts

38. Helm core values - Aim for the Apt/Yum/Homebrew UX -

    Ensure collaboration - Reproducible releases - Shareable Packages

39. Chart, Repositories, Releases - Chart: “Package”, “Bundle” - Repository: Package

    Repository Evolving towards a registry (CoreOS) - Release: Installed Chart (same chart can be installed multiple times)

40. Basic Architecture Client - Server

41. Usage

42. Writing Charts - Templating and Release Management - More templating

    and User notes - Debugging and Troubleshooting features

43. Templating & Release Management workshop available

44. Review using helm - Install charts (creates a release) -

    helm install - List releases - helm ls - - Bootstrap charts - helm create

45. More features - Upgrade Releases - helm upgrade <release> -

    Search Charts - helm search - KubeApps.com (Monocular - https://github.com/helm/monocular) - Manage Chart dependencies - requirements.yaml - helm dep up - Helm Plugins - Keybase: helm keybase sign/verify - GitHub: helm github push

46. More info Kubecon talk

47. Thank you!

48. Future? - Advanced orchestration (AppController)

49. Shipping, Deploying & Service Discovery