Ce diaporama a bien été signalé.
Nous utilisons votre profil LinkedIn et vos données d’activité pour vous proposer des publicités personnalisées et pertinentes. Vous pouvez changer vos préférences de publicités à tout moment.

IPv6 on Container Plattforms

204 vues

Publié le

The state of IPv6 with Docker, Kubernetes, OpenShift

Talk at the Swiss IPv6 Council event Oct 1st 2018

Publié dans : Logiciels
  • Soyez le premier à commenter

IPv6 on Container Plattforms

  1. 1. vshn.ch - The DevOps Company 2018-10-01 IPv6 on Container Plattforms Aarno Aukia VSHN AG 1
  2. 2. vshn.ch - The DevOps Company 2018-10-01 About me Aarno Aukia, CTO & Co-Founder @ VSHN ETH → Google → Atrila → VSHN @aarnoaukia http://about.me/aarno VSHN - The DevOps Company Since 2014, currently 30 VSHNeers in Zürich, Switzerland We help developers run web applications 24/7 in any cloud making both visitors happy with stability and developers happy with agility 2
  3. 3. vshn.ch - The DevOps Company 2018-10-01 Agenda - About Aarno/VSHN.ch - From Ops to DevOps - From configuration management to containers - Container orchestration/Kubernetes - Kubernetes Distributions - Kubernetes as a Service: APPUiO.ch - Cloud Native Computing - Demo 3
  4. 4. vshn.ch - The DevOps Company 2018-10-01 OPS = Feuerwehr-as- 4 OPS = Firefighting-as-a-Service ?
  5. 5. vshn.ch - The DevOps Company 2018-10-01 DevOps people, processes & tools 5
  6. 6. vshn.ch - The DevOps Company 2018-10-01 Customer project with Python, Celery, Postgres 6
  7. 7. vshn.ch - The DevOps Company 2018-10-01 Challenges - Scaling (virtual/cloud) servers takes minutes to hours, occasional manual intervention needed - configuration management on server-level, not on project/ deployment-level - dependencies in separate GIT, separate coordination of versions & backends needed - adding new services is complex, affects multiple components, lots of moving parts & risk - managing service dependencies at runtime - scaling up is OK, scaling down is difficult 7
  8. 8. vshn.ch - The DevOps Company 2018-10-01 wishful thinking... - Solving the build-ship-run workflow, integrated in CI/CD, DevOps and self-service-portal - Isolation between environments, projects, services and customers/tenants - solves software operations processes: hitless deployment, scaling, monitoring, backups, logs, metrics, etc - Open standards: 100% open source software - No vendor lock-in, cloud-native not cloud-only, working on any infrastructure - extensible using APIs 8
  9. 9. vshn.ch - The DevOps Company 2018-10-01 Docker - Container runtime - Tools for container image management - Dockerfile describes application environment, can be built automatically and lightweight - Packages application code, appserver, plugins, modules, libraries down to libc - enforces 12 factor app patterns - https://vshn.ch/blog/docker/ - https://github.com/docker/docker-ce/blob/master/components.conf 9
  10. 10. vshn.ch - The DevOps Company 2018-10-01 12 Factor App Patterns - https://12factor.net/ - Use declarative formats for setup automation - Have a clean, portable contract with the underlying operating system - Are suitable for deployment on modern cloud platforms, obviating the need for servers and systems administration; - Minimize divergence between development and production, enabling continuous deployment for maximum agility; - And can scale up without significant changes to tooling, architecture, or development practices. 10
  11. 11. vshn.ch - The DevOps Company 2018-10-01 IPv6 in Docker - Implemented since January 2015 - Add --ipv6 to docker daemon command line flags - -> add {"ipv6": true, "fixed-cidr-v6": "2001:db8:1::/64"} in 
 /etc/docker/daemon.json - sets up dual-stack bridge-device, routes & ip-forwarding docker run -it alpine ash -c "ip -6 addr show dev eth0; ip -6 route show" - https://docs.docker.com/v17.09/engine/userguide/networking/ default_network/ipv6/ 11
  12. 12. vshn.ch - The DevOps Company 2018-10-01 From container to production? 12
  13. 13. vshn.ch - The DevOps Company 2018-10-01 Kubernetes Container Orchestrator - How many container instances should be running per service? - On which IP/port/server are they running on? - Service discovery - What happens if a container/server goes away? - scaling, load balancing, rolling deployments, persistent storage etc 13
  14. 14. vshn.ch - The DevOps Company 2018-10-01 Kubernetes Architecture Example 14
  15. 15. vshn.ch - The DevOps Company 2018-10-01 Kubernetes IPv6 - can currently only handle 1 IP-address per container/service internally - that address can be IPv6 since Kubernetes 1.9 (December 2017)
 -> IPv4-only or IPv6-only - More than 1 address (=dual-stack) -> scheduled for K8s 1.11 -> 1.12 - Ingress load balancers have been dual stack for longer, but are not part of Kubernetes - Howto IPv6-Kubernetes: https://github.com/leblancd/kube-v6 - Scripts: https://github.com/leblancd/kube-in-the-box 15
  16. 16. vshn.ch - The DevOps Company 2018-10-01 Kubernetes Distributions Software distributions: • Redhat OpenShift • Rancher • Canonical • Docker Datacenter Enterprise • IBM cloud private • CoreOS Tectonic (aquired -> will be merged into OpenShift) Services: • EKS, AKS, GKE • APPUiO.ch See also https://thenewstack.io/find-perfect-kubernetes-distribution/ 16
  17. 17. vshn.ch - The DevOps Company 2018-10-01 OpenShift Architecture 17
  18. 18. vshn.ch - The DevOps Company 2018-10-01 APPUiO - Swiss Container Platform - Product from VSHN.ch - Managed Docker, Kubernetes, OpenShift - Shared clusters in Switzerland on cloudscale.ch, exoscale.ch or Swisscom - Shared clusters worldwide on AWS, Azure - Private clusters on any infrastructure and on-premises - Free monthly half-day training/workshops: https://appuio.ch/ techlabs.html - Starting at CHF 40/month 18
  19. 19. vshn.ch - The DevOps Company 2018-10-01 APPUiO Architecture 19
  20. 20. vshn.ch - The DevOps Company 2018-10-01 OpenShift IPv6 - No internal dualstack/IPv6 due to missing feature in upstream Kubernetes - Default HTTP(s)-Loadbalancer supports dualstack-IPv6 since Release 3.6 (August 2017) - IPv6-IP-Failover added in Release 3.7 (November 2017) - But broken (IPv6 address math seems to be hard) - Supposedly fixed in Release 3.9 (March 2018, there was no 3.8) - But broken (produces invalid VRRP config) -> thus not deployed on APPUiO.ch :( - Fixed in 3.9 errata release, live at https:// swissipv6council.appuiolab.ch/ 20
  21. 21. vshn.ch - The DevOps Company 2018-10-01 Cloud Native Computing Next Event 22. November 2018 from 18:30 Uhr https://www.meetup.com/Cloud-Native-Computing-Switzerland Please volunteer for Sponsoring & Talks https://cnc-meetup.ch 21
  22. 22. vshn.ch - The DevOps Company 2018-10-01 Examples & Demo - PHP example: https://github.com/arska/phpinfo - Python example: https://github.com/arska/flask-helloworld - Java/Spring example: https://github.com/appuio/springdemo 22
  23. 23. vshn.ch - The DevOps Company 2018-10-01 Thanks! Would you like to work with IPv6 and Kubernetes? https://vshn.ch/jobs/docker-kubernetes/ 23

×