Kops = Kubernetes per tutti -...

transcript

Kops = Kubernetes per tutti

Introduzione al cluster Kubernetes secondo Kops

di Valentino Pistis

Cagliari 27 Ottobre 2018

Guasila

Software Engineer

Padre .......durante il tempo libero

Chi sono?!2

Cos'è un clusterWikipedia:

è un insieme di computer connessi tra loro tramite una rete telematica.

Cos'è un cluster

cluster di computer fisici

Cos'è un clustercomputer virtuali

Cos'è un clustercluster di containers?

No...ma quasi...

Cos'è un containerLXC -> linux containers

Cos'è un containerWikipedia:

Linux Container...è un ambiente di virtualizzazione a container, che opera a livello del sistema operativo e permette di eseguire

diversi ambienti Linux virtuali isolati tra loro...

Cos'è un container!9

KubernetesWikipedia: e' un sistema di orchestrazione e gestione di container.

KubernetesArchitettura

KubernetesPods

Un POD rappresenta un processo in esecuzione sul cluster kubernetes

KubernetesDeployments

KubernetesapiVersion: apps/v1kind: Deploymentmetadata: name: nginx-deployment labels: k8s-app: myappspec: replicas: 3 selector: matchLabels: k8s-app: myapp template: metadata: labels: k8s-app: myapp spec: containers: - name: nginx image: nginx:1.15.4 resources: limits: cpu: 200m memory: 700Mi requests: cpu: 100m memory: 500Mi ports: - containerPort: 80

KubernetesServices

KubernetesapiVersion: v1kind: Servicemetadata: labels: k8s-app: myapp name: myapp-service namespace: my-namespace annotations:spec: ports: - name: http port: 80 protocol: TCP targetPort: 80 - name: https port: 443 protocol: TCP targetPort: 80 selector: k8s-app: myapp sessionAffinity: None type: ClusterIP

KubernetesIngress

KubernetesapiVersion: extensions/v1beta1kind: Ingressmetadata: name: myapp-ingress namespace: my-namespace annotations:spec: rules: - host: myapp.org http: paths: - path: backend: serviceName: myapp-service servicePort: 80

KubernetesPersistent Volumes

KubernetesapiVersion: v1kind: PersistentVolumeClaimmetadata: name: pvc-my-disk namespace: my-namespacespec: accessModes: - ReadWriteOnce resources: requests: storage: 3Gi

KubernetesHorizontal Pod Autoscaler

KubernetesapiVersion: autoscaling/v2beta1kind: HorizontalPodAutoscalermetadata: name: myapp-hpa namespace: my-namespacespec: scaleTargetRef: apiVersion: apps/v1beta1 kind: Deployment name: myapp minReplicas: 1 maxReplicas: 10 metrics: - type: Resource resource: name: cpu targetAverageUtilization: 90 - type: Resource resource: name: memory targetAverageUtilization: 90

KubernetesCluster Autoscaler

KubernetesMonitoring e Logging

KubernetesSite Reliability Engineering:

is a discipline that incorporates aspects of software engineering and applies that to IT operations problems

KubernetesCreazione cluster

KopsCome funziona

Kops!28

Kopsinstallare kops

macos: • brew update && brew install kops

Linux: • curl -LO https://github.com/kubernetes/kops/releases/download/$(curl -s

https://api.github.com/repos/kubernetes/kops/releases/latest | grep tag_name | cut -d '"' -f 4)/kops-linux-amd64

• chmod +x kops-linux-amd64• sudo mv kops-linux-amd64 /usr/local/bin/kops

KopsIAM per kops

• aws iam create-group --group-name kops• aws iam attach-group-policy --policy-arn arn:aws:iam::aws:policy/AmazonEC2FullAccess --group-

name kops• aws iam attach-group-policy --policy-arn arn:aws:iam::aws:policy/AmazonRoute53FullAccess --group-

name kops• aws iam attach-group-policy --policy-arn arn:aws:iam::aws:policy/AmazonS3FullAccess --group-name

kops• aws iam attach-group-policy --policy-arn arn:aws:iam::aws:policy/IAMFullAccess --group-name kops• aws iam attach-group-policy --policy-arn arn:aws:iam::aws:policy/AmazonVPCFullAccess --group-

name kops• aws iam create-user --user-name kops• aws iam add-user-to-group --user-name kops --group-name kops• aws iam create-access-key --user-name kops

KopsS3 Bucket per cluster state storage

• aws s3api create-bucket --bucket my-cluster-state-store --region aws-region --create-bucket-configuration LocationConstraint=aws-region

• aws s3api put-bucket-versioning --bucket my-cluster-state-store --versioning-configuration Status=Enabled`

Un solo comando Kops per accendere Kubernetes su AWS: • kops create cluster --cloud aws --zones aws-zone my-cluster-name --yes

Un solo comando per distruggere: • kops delete cluster --name my-cluster-name --yes

Due comandi per aggiornare il cluster: • kops update cluster my-cluster-name --yes• kops rolling-update cluster my-cluster-name --yes

Comandi utili• kops validate cluster

Comandi utilivpistis@vpistisMacBookAir⎈ (my-kube-cluster-name|namespace) ~> kops validate cluster Using cluster from kubectl context: my-kube-cluster-name

Validating cluster my-kube-cluster-name

INSTANCE GROUPSNAME ROLE MACHINETYPE MIN MAX SUBNETSapp-nodes Node t2.large 1 20 eu-west-2bdb-nodes Node t2.large 1 8 eu-west-2bmaster-eu-west-2b Master c4.large 1 3 eu-west-2b

NODE STATUSNAME ROLE READYip-X-X-X-X.eu-west-2.compute.internal node Trueip-X-X-X-X..eu-west-2.compute.internal node Trueip-X-X-X-X..eu-west-2.compute.internal node Trueip-X-X-X-X..eu-west-2.compute.internal masterTrueip-X-X-X-X..eu-west-2.compute.internal node Trueip-X-X-X-X..eu-west-2.compute.internal node True

Your cluster my-kube-cluster-name is ready

Comandi utili• kubectl top pods • kubectl top nodes • kubectl apply -f config-file.yaml

Comandi utilikubectl top pods

NAME CPU(cores) MEMORY(bytes) deployment-name-xxxxxxx-xxxxxx 18m 53Mi

kubectl top nodes

NAME CPU(cores) CPU% MEMORY(bytes) MEMORY% ip-x-x-x-x.eu-west-2.compute.internal 415m 20% 5236Mi 66% ip-x-x-x-x.eu-west-2.compute.internal 108m 5% 4845Mi 61%

KopsKubernetes Dashboard

Kopse ora?

Docker: la tua applicazione web Load Balancer: Zalando skipper e aws ingress controller..Logging: Fluentd, Mongo, ElasticSearch... Monitoring: Prometheus, Grafana...

Grazie!Valentino Pistis

github: @vpistis

Kops = Kubernetes per tutti -...

Documents