SlideShare a Scribd company logo

Building a smarter application stack - service discovery and wiring for Docker

Tomas Doran, profile picture
Tomas Doran

The document discusses the challenges and solutions associated with building smarter application stacks using technologies such as Docker and microservices. It emphasizes the need for dynamic architecture, externalized wiring, and managing dependencies effectively to prevent system failures. The SmartStack solution, comprising Synapse and Nerve, is proposed for service discovery and health checks, allowing for improved flexibility and maintainability in complex systems.

InternetTechnology
1 of 42
Downloaded 90 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
Building a smarter application stack Tomas  Doran   @bobtfish   2014-­‐06-­‐10
Docker is the future • Preaching to the converted here ;)
 • Game changing technology
 • No silver bullets (ever) • Introduces it’s own set of problems and issues • Dependency discovery / wiring • Scheduling 2
Smartstack • One possible solution to discovery problems
 • This talk: • Application architecture • Problem(s) we’re solving • Why this solution works well for us • Alternate solutions 3
Microservices - also the future! • The same as SOA • But one API per service. • Own data store!
 • Lots of services (dozens, maybe 100s)
 • All individually very simple • Easy to reason about. • Easy to replace 4
Don’t break the site - ever!!! • Microservices are individually deployable! • When we say “Don’t break the site” • We mean • Don’t break all of the site! 5
Don’t break the site - ever!!! • If you have graceful degradation… • You can ignore MTBF in the backend services! • You only care about MTTR. 6
“I’ll just break this out into it’s own application, as it’ll be easier to maintain in 10 years time” - Pre seed funding nobody, ever! 7
Monolith - the reality • Everyone has one of these :) • If you’re far enough down the path, you call this ‘The presentation layer’.
 • Still poses a challenge • need async requests • need graceful degradation 8
Monolith - the reality • Most popular service
 • Most dependencies • Call into 10s or 100s of other services in a request!
 • Needs circuit breakers + dynamic configuration 9
No silver bullet = No one solution • You should always have 2. • Nagios / Sensu • RRDs + Ganglia / Graphite + Diamond • YAML files / Zookeeper 10
No silver bullet = No one solution • ‘Top down’ architecture sucks. • Instead, broad goals + ’Bottom up’ architecture • Internal competition! • Replacing the incumbent solution happens organically • If your thing works better, people will want to move! 
 • Not perfect! Better than top-down! 11
“Humans are bad at predicting the performance of complex systems […]. Our ability to create large and complex systems fools us into believing that we’re also entitled to understand them”
 - Carlos Bueno “Mature optimization handbook”
 12
Distributed complexity • Distributed systems introduce their own set of complexity • Reasoning about the whole system challenging • Timing/profiling/performance analysis non-trivial • Resource scheduling also non-trivial • 2nd order effects ! • Can’t reason about emergent behavior 13
14
15 ?
16 ? What the heck happened at 16:46?
17 ? And why did it stop at 17:00?
Dynamic architecture • Cattle not pets • AWS and VMs in ‘the cloud’ started this • Docker takes it a step further
 • Explicitly manage persistent state • Explicit regular recycling • All updates are redeploys
 18
Dependency nightmares • Almost everything has some dependencies • Simple example, web app with a mysql DB • App config in a YAML file
 • Mysql container address changes when you restart mysql! • Oops, app can’t find mysql!
 • Do I need to restart every application using mysql? • Sucks! • Do I need to rebuild application containers using mysql? • To edit the config YAML file! • Super super sucks! 19
Runtime wiring • mysql failovers - the simple case!
 • Presentation layer talking to service REST layers • Different deployment schedules • No downtime
 • Only possible solution: wiring dependencies at runtime • A challenge • Also an opportunity
 • DNS is workable in some cases 20
Dynamic discovery • Discovery becomes a core problem
 • DNS re-resolving not generally trustworthy • You need to test everything for this
 • DNS balancing (internally) is awful • Failed node + multiple connections/requests • DNS round robin • Everything sees failure • Slow to shift traffic • Round robin is crappy for load balancing
 21
Externalized wiring • Remove a lot of complexity from the application domain
 • Run a load balancer (haproxy) on each machine
 • Applications always connect to load balancer on fixed host/port • localhost on traditional metal/VMs • supplied by —link or environment variables in Docker
 • Applications become wiring agnostic! 22
Externalized wiring 23
‘Client side load balancing’ • Lots of projects use this approach: • Project Atomic • Marathon + Mesos-Docker • vulcand (https://github.com/mailgun/vulcand) • Frontrunner (https://github.com/Wizcorp/ frontrunner) • Consul ! • Smartstack 24
Legacy infrastructure • Physical machines • Application images in AMIs • kvm
 • Can’t just use container links or a Docker only solution
 • Want to use the same (uniform) solution everywhere. 25
Entropy reduction • You can’t change everything at once!
 • Everything will tend towards chaos • ‘Old infrastructure’ • ‘New infrastructure’ • ‘New new infrastructure’ ! • Solution specifically chosen so it could be generic. 26
SmartStack • 2 parts • Synapse • Nerve ! • Conceptually simple • Very flexible • Easy to hack on • Plays well on traditional machines • Plays well in docker 27
Synapse • Does discovery against a pluggable backend • Writes out a haproxy configuration
 • Assign a well known port to all services • Application connects to that port • haproxy forwards to an available backend
 • Your application doesn’t need to know about discovery!
 • Technology agnostic - works the same on metal/VMs/Docker 28
29
Why synapse? • haproxy is a well known solution • ruby - easy to modify • simple (has one job) • Pluggable - discovery with multiple methods: • JSON config (static) • zookeeper • etcd • docker API • ec2 tags • Flexible • Deploy one per instance • Or pairs as dedicated lbs 30
Nerve • Health checks services • Health checks are pluggable. • HTTP (flexible) + mysql come out the box • Registers service information to backend • zookeeper • etcd (beta) 31
32
Connector agnostic containers • On ‘real servers’ or VMs, running a synapse instance per box is fine.
 • In docker, we want to abstract more than that • Make containers connector agnostic! • They don’t need to know or care • Upgrade independently. 33
Synapse <3 ambassador containers • ‘Ambassador pattern’ • Run a synapse ‘ambassador’ container on each host for each service • Link each application to the ambassador for each of it’s dependencies • Environment variables to each service’s haproxy • Separates synapse management (i.e. changing the wiring) from application management (i.e. upgrading the app version). 34
35
Container links • Ambassador for service A presents: • port 8000 for HTTP REST service • port 8443 for HTTPS REST service ! • Container linking to ambassador sees: • SRVA_PORT_8000_TCP=tcp://172.17.0.8:6379 • SRVA_PORT_8000_TCP_PROTO=tcp • SRVA_PORT_8000_TCP_ADDR=172.17.0.8 • SRVA_PORT_8000_TCP_PORT=6379 • SRVA_PORT_8443_TCP=tcp://172.17.0.8:6380 • SRVA_PORT_8443_TCP_PROTO=tcp • SRVA_PORT_8443_TCP_ADDR=172.17.0.8 • SRVA_PORT_8443_TCP_PORT=6380 36
Nerve registration container • Each app container gets a Nerve instance • Nerve registers its 1 app • Nerve instance can be generic • Make services all have a standard /health endpoint • Healthchecks standard • Only need one nerve container image! 37
Alternate options • Just register the contents of the docker API into etcd • http://coreos.com/blog/docker-dynamic-ambassador- powered-by-etcd/ • No health checks • Docker only • confd • Consul • frontrunner - discovery from Marathon • Uses haproxy too • Less health checking options 38
Vulcand 39
Issues • If you have lots of machines + services, you have a lot of Synapses • haproxy health checks can become expensive on end user apps • Nerve helps with this
 • Lots of small load balancers is harder to reason about than a few big ones 40
Live demo? 41
Thanks • Slides will be online
 http://slideshare.net/bobtfish
 • Official Smartstack site:
 http://nerds.airbnb.com/smartstack-service-discovery-cloud/
 • Pre-built containers to play with + blog post
 http://engineeringblog.yelp.com/
 https://index.docker.io/u/bobtfish/synapse-etcd-amb/
 https://index.docker.io/u/bobtfish/nerve-etcd/
 • Questions? 42

More Related Content

PDF
Dockersh and a brief intro to the docker internals
Tomas Doran
 
PDF
Steamlining your puppet development workflow
Tomas Doran
 
PPTX
Ansible: How to Get More Sleep and Require Less Coffee
Sarah Z
 
PDF
Chasing AMI - Building Amazon machine images with Puppet, Packer and Jenkins
Tomas Doran
 
PDF
Docker Container Orchestration
Fernand Galiana
 
PPTX
Hashicorp: Delivering the Tao of DevOps
Ramit Surana
 
PDF
Mitchell Hashimoto, HashiCorp
Ontico
 
PPTX
Automating aws infrastructure and code deployments using Ansible @WebEngage
Vishal Uderani
 
Dockersh and a brief intro to the docker internals
Tomas Doran
 
Steamlining your puppet development workflow
Tomas Doran
 
Ansible: How to Get More Sleep and Require Less Coffee
Sarah Z
 
Chasing AMI - Building Amazon machine images with Puppet, Packer and Jenkins
Tomas Doran
 
Docker Container Orchestration
Fernand Galiana
 
Hashicorp: Delivering the Tao of DevOps
Ramit Surana
 
Mitchell Hashimoto, HashiCorp
Ontico
 
Automating aws infrastructure and code deployments using Ansible @WebEngage
Vishal Uderani
 

What's hot (20)

PDF
Puppet Development Workflow
Jeffery Smith
 
PPTX
How Yelp does Service Discovery
John Billings
 
PDF
Service discovery in Docker environments
alexandru giurgiu
 
PDF
Docker at Shopify: From This-Looks-Fun to Production by Simon Eskildsen (Shop...
Docker, Inc.
 
PDF
Cassandra on Docker
Instaclustr
 
PPTX
Ansible presentation
Suresh Kumar
 
PPTX
Distributed automation sel_conf_2015
aragavan
 
PDF
Clocker - The Docker Cloud Maker
Andrew Kennedy
 
PDF
Cassandra and docker
Ben Bromhead
 
PDF
Ansible Oxford - Cows & Containers
jonatanblue
 
PDF
Ansible v2 and Beyond (Ansible Hawai'i Meetup)
Timothy Appnel
 
PDF
How Ansible Makes Automation Easy
Peter Sankauskas
 
PPTX
Monitor-Driven Development Using Ansible
Itamar Hassin
 
PDF
EC2 AMI Factory with Chef, Berkshelf, and Packer
George Miranda
 
PPTX
Automation with Packer and TerraForm
Wesley Charles Blake
 
PDF
Service Delivery Assembly Line with Vagrant, Packer, and Ansible
Isaac Christoffersen
 
PPTX
Go Faster with Ansible (PHP meetup)
Richard Donkin
 
KEY
London devops logging
Tomas Doran
 
PDF
Ansible - A 'crowd' introduction
Manuel de la Peña Peña
 
PDF
Ansible 2.0 - How to use Ansible to automate your applications in AWS.
Idan Tohami
 
Puppet Development Workflow
Jeffery Smith
 
How Yelp does Service Discovery
John Billings
 
Service discovery in Docker environments
alexandru giurgiu
 
Docker at Shopify: From This-Looks-Fun to Production by Simon Eskildsen (Shop...
Docker, Inc.
 
Cassandra on Docker
Instaclustr
 
Ansible presentation
Suresh Kumar
 
Distributed automation sel_conf_2015
aragavan
 
Clocker - The Docker Cloud Maker
Andrew Kennedy
 
Cassandra and docker
Ben Bromhead
 
Ansible Oxford - Cows & Containers
jonatanblue
 
Ansible v2 and Beyond (Ansible Hawai'i Meetup)
Timothy Appnel
 
How Ansible Makes Automation Easy
Peter Sankauskas
 
Monitor-Driven Development Using Ansible
Itamar Hassin
 
EC2 AMI Factory with Chef, Berkshelf, and Packer
George Miranda
 
Automation with Packer and TerraForm
Wesley Charles Blake
 
Service Delivery Assembly Line with Vagrant, Packer, and Ansible
Isaac Christoffersen
 
Go Faster with Ansible (PHP meetup)
Richard Donkin
 
London devops logging
Tomas Doran
 
Ansible - A 'crowd' introduction
Manuel de la Peña Peña
 
Ansible 2.0 - How to use Ansible to automate your applications in AWS.
Idan Tohami
 
Ad

Viewers also liked (20)

PDF
Empowering developers to deploy their own data stores
Tomas Doran
 
PDF
Service Discovery in Distributed Systems
Ivan Voroshilin
 
PDF
Sensu and Sensibility - Puppetconf 2014
Tomas Doran
 
PPTX
Service Discovery using etcd, Consul and Kubernetes
Sreenivas Makam
 
PDF
Cumulonimbus fortification-secure-your-data-in-the-cloud
David Busby, CISSP
 
PPTX
Dear IT...I'd Like A Kubernetes Cluster
Shannon Williams
 
PPTX
Introducing Kubernetes Clusters in Rancher - February 2016 Online Meetup
Shannon Williams
 
PPTX
Next Gen Storage and Networking in Container Environments - September 2016 Ra...
Shannon Williams
 
PPTX
Rancher March 2016 Online Meetup Containers-as-a-Service with Rancher 1.0
Shannon Williams
 
PPTX
Storage for containers and cloud-native deployments - Rancher Online Meetup -...
Shannon Williams
 
PDF
PuppetConf 2016: Service Discovery and Puppet – Marc Cluet, Ukon Cherry
Puppet
 
PDF
Automate CI/CD with Rancher
Nick Thomas
 
PDF
Deploying Containers with Rancher
Chris Tankersley
 
PDF
Workshop WSO2 BPS 3.5.x - BPMN
Edgar Silva
 
PPTX
The ultimate container monitoring bake-off - Rancher Online Meetup October 2016
Shannon Williams
 
PDF
WTF Is Rancher?
Chris Tankersley
 
PDF
Docker In the Bank
Aleksandr Tarasov
 
PDF
WILD microSERVICES v2
Aleksandr Tarasov
 
PPTX
Intro to Docker and clustering with Rancher from scratch
John Culviner
 
PPT
Docker and CloudStack
Sebastien Goasguen
 
Empowering developers to deploy their own data stores
Tomas Doran
 
Service Discovery in Distributed Systems
Ivan Voroshilin
 
Sensu and Sensibility - Puppetconf 2014
Tomas Doran
 
Service Discovery using etcd, Consul and Kubernetes
Sreenivas Makam
 
Cumulonimbus fortification-secure-your-data-in-the-cloud
David Busby, CISSP
 
Dear IT...I'd Like A Kubernetes Cluster
Shannon Williams
 
Introducing Kubernetes Clusters in Rancher - February 2016 Online Meetup
Shannon Williams
 
Next Gen Storage and Networking in Container Environments - September 2016 Ra...
Shannon Williams
 
Rancher March 2016 Online Meetup Containers-as-a-Service with Rancher 1.0
Shannon Williams
 
Storage for containers and cloud-native deployments - Rancher Online Meetup -...
Shannon Williams
 
PuppetConf 2016: Service Discovery and Puppet – Marc Cluet, Ukon Cherry
Puppet
 
Automate CI/CD with Rancher
Nick Thomas
 
Deploying Containers with Rancher
Chris Tankersley
 
Workshop WSO2 BPS 3.5.x - BPMN
Edgar Silva
 
The ultimate container monitoring bake-off - Rancher Online Meetup October 2016
Shannon Williams
 
WTF Is Rancher?
Chris Tankersley
 
Docker In the Bank
Aleksandr Tarasov
 
WILD microSERVICES v2
Aleksandr Tarasov
 
Intro to Docker and clustering with Rancher from scratch
John Culviner
 
Docker and CloudStack
Sebastien Goasguen
 
Ad

Similar to Building a smarter application stack - service discovery and wiring for Docker (20)

PPTX
Microservices with Node and Docker
Tony Pujals
 
PDF
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
NETWAYS
 
PDF
API Microservices with Node.js and Docker
Apigee | Google Cloud
 
PPTX
Docker & aPaaS: Enterprise Innovation and Trends for 2015
WaveMaker, Inc.
 
PDF
Microservices Architecture In The Real World: Mason Jones
Redis Labs
 
PDF
Modern times - architectures for a Next Generation of IT
Uwe Friedrichsen
 
PDF
Rise of the machines: Continuous Delivery at SEEK - YOW! Night Summary Slides
DiUS
 
PDF
Platform - Technical architecture
David Rundle
 
PDF
What they don't tell you about micro-services
Daniel Rolnick
 
PDF
Platform Clouds, Containers, Immutable Infrastructure Oh My!
Stuart Charlton
 
PDF
The Need of Cloud-Native Application
Emiliano Pecis
 
ODP
The journey to container adoption in enterprise
Igor Moochnick
 
PDF
Newt global meetup microservices
Venkatnadhan Thirunalai
 
PDF
Docker microservices and the service mesh
Docker, Inc.
 
PPTX
Cloud to hybrid edge cloud evolution Jun112020.pptx
Michel Burger
 
PDF
Cloud Computing as Innovation Hub - Mohammad Fairus Khalid
OpenNebula Project
 
PDF
Lattice: A Cloud-Native Platform for Your Spring Applications
Matt Stine
 
PDF
Microservices: How loose is loosely coupled?
John Rofrano
 
PDF
AWS Community Day - Amy Negrette - Gateways to Gateways
AWS Chicago
 
PPTX
Microservices, Docker deploy and Microservices source code in C#
Karmanjay Verma
 
Microservices with Node and Docker
Tony Pujals
 
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
NETWAYS
 
API Microservices with Node.js and Docker
Apigee | Google Cloud
 
Docker & aPaaS: Enterprise Innovation and Trends for 2015
WaveMaker, Inc.
 
Microservices Architecture In The Real World: Mason Jones
Redis Labs
 
Modern times - architectures for a Next Generation of IT
Uwe Friedrichsen
 
Rise of the machines: Continuous Delivery at SEEK - YOW! Night Summary Slides
DiUS
 
Platform - Technical architecture
David Rundle
 
What they don't tell you about micro-services
Daniel Rolnick
 
Platform Clouds, Containers, Immutable Infrastructure Oh My!
Stuart Charlton
 
The Need of Cloud-Native Application
Emiliano Pecis
 
The journey to container adoption in enterprise
Igor Moochnick
 
Newt global meetup microservices
Venkatnadhan Thirunalai
 
Docker microservices and the service mesh
Docker, Inc.
 
Cloud to hybrid edge cloud evolution Jun112020.pptx
Michel Burger
 
Cloud Computing as Innovation Hub - Mohammad Fairus Khalid
OpenNebula Project
 
Lattice: A Cloud-Native Platform for Your Spring Applications
Matt Stine
 
Microservices: How loose is loosely coupled?
John Rofrano
 
AWS Community Day - Amy Negrette - Gateways to Gateways
AWS Chicago
 
Microservices, Docker deploy and Microservices source code in C#
Karmanjay Verma
 

More from Tomas Doran (20)

PPTX
Long haul infrastructure: Failures and successes
Tomas Doran
 
PPT
Deploying puppet code at light speed
Tomas Doran
 
PDF
Thinking through puppet code layout
Tomas Doran
 
PDF
Docker puppetcamp london 2013
Tomas Doran
 
PDF
"The worst code I ever wrote"
Tomas Doran
 
PDF
Test driven infrastructure development (2 - puppetconf 2013 edition)
Tomas Doran
 
PDF
Test driven infrastructure development
Tomas Doran
 
PPT
London devops - orc
Tomas Doran
 
KEY
Message:Passing - lpw 2012
Tomas Doran
 
KEY
Webapp security testing
Tomas Doran
 
KEY
Webapp security testing
Tomas Doran
 
KEY
Dates aghhhh!!?!?!?!
Tomas Doran
 
KEY
Messaging, interoperability and log aggregation - a new framework
Tomas Doran
 
KEY
Zero mq logs
Tomas Doran
 
KEY
Cooking a rabbit pie
Tomas Doran
 
KEY
High scale flavour
Tomas Doran
 
KEY
Large platform architecture in (mostly) perl - an illustrated tour
Tomas Doran
 
KEY
Large platform architecture in (mostly) perl
Tomas Doran
 
KEY
Web frameworks don't matter
Tomas Doran
 
KEY
Real time system_performance_mon
Tomas Doran
 
Long haul infrastructure: Failures and successes
Tomas Doran
 
Deploying puppet code at light speed
Tomas Doran
 
Thinking through puppet code layout
Tomas Doran
 
Docker puppetcamp london 2013
Tomas Doran
 
"The worst code I ever wrote"
Tomas Doran
 
Test driven infrastructure development (2 - puppetconf 2013 edition)
Tomas Doran
 
Test driven infrastructure development
Tomas Doran
 
London devops - orc
Tomas Doran
 
Message:Passing - lpw 2012
Tomas Doran
 
Webapp security testing
Tomas Doran
 
Webapp security testing
Tomas Doran
 
Dates aghhhh!!?!?!?!
Tomas Doran
 
Messaging, interoperability and log aggregation - a new framework
Tomas Doran
 
Zero mq logs
Tomas Doran
 
Cooking a rabbit pie
Tomas Doran
 
High scale flavour
Tomas Doran
 
Large platform architecture in (mostly) perl - an illustrated tour
Tomas Doran
 
Large platform architecture in (mostly) perl
Tomas Doran
 
Web frameworks don't matter
Tomas Doran
 
Real time system_performance_mon
Tomas Doran
 

Recently uploaded (20)

PDF
Best Practices for Testing and Debugging Shopify Third-Party API Integrations...
CartCoders
 
DOCX
Unit-3 cyber security network security of internet system
shivangisharma636228
 
PDF
Slides PDF The World Game (s) Eco Economic Epochs.pdf
Steven McGee
 
PDF
Automated vs Manual WooCommerce to Shopify Migration_ Pros & Cons.pdf
CartCoders
 
PDF
Unit-1 introduction to cyber security discuss about how to secure a system
shivangisharma636228
 
PDF
SASE Traffic Flow - ZTNA Connector-1.pdf
mackwell7777
 
PPTX
Introduction about ICD -10 and ICD11 on 5.8.25.pptx
naveenithkrishnan
 
PDF
WebRTC in SignalWire - troubleshooting media negotiation
Giacomo Vacca
 
PDF
Tenda Login Guide: Access Your Router in 5 Easy Steps
tendawifi16
 
PPTX
artificial intelligence overview of it and more
yafotin445
 
PPTX
522797556-Unit-2-Temperature-measurement-1-1.pptx
msar8888
 
PPTX
INTERNET------BASICS-------UPDATED PPT PRESENTATION
poonam62133
 
PPTX
Digital Literacy And Online Safety on internet
riksa rifqi
 
PDF
Vigrab.top – Online Tool for Downloading and Converting Social Media Videos a...
Vigrab Top
 
PPTX
presentation_pfe-universite-molay-seltan.pptx
yahyamohibme
 
PPTX
Job_Card_System_Styled_lorem_ipsum_.pptx
Jeffkigen
 
PPTX
Introuction about ICD -10 and ICD-11 PPT.pptx
naveenithkrishnan
 
PDF
Cloud-Scale Log Monitoring _ Datadog.pdf
MuhammadDhomanhuriMa
 
PDF
Triggering QUIC, presented by Geoff Huston at IETF 123
APNIC
 
PDF
An introduction to the IFRS (ISSB) Stndards.pdf
farhankhan13694
 
Best Practices for Testing and Debugging Shopify Third-Party API Integrations...
CartCoders
 
Unit-3 cyber security network security of internet system
shivangisharma636228
 
Slides PDF The World Game (s) Eco Economic Epochs.pdf
Steven McGee
 
Automated vs Manual WooCommerce to Shopify Migration_ Pros & Cons.pdf
CartCoders
 
Unit-1 introduction to cyber security discuss about how to secure a system
shivangisharma636228
 
SASE Traffic Flow - ZTNA Connector-1.pdf
mackwell7777
 
Introduction about ICD -10 and ICD11 on 5.8.25.pptx
naveenithkrishnan
 
WebRTC in SignalWire - troubleshooting media negotiation
Giacomo Vacca
 
Tenda Login Guide: Access Your Router in 5 Easy Steps
tendawifi16
 
artificial intelligence overview of it and more
yafotin445
 
522797556-Unit-2-Temperature-measurement-1-1.pptx
msar8888
 
INTERNET------BASICS-------UPDATED PPT PRESENTATION
poonam62133
 
Digital Literacy And Online Safety on internet
riksa rifqi
 
Vigrab.top – Online Tool for Downloading and Converting Social Media Videos a...
Vigrab Top
 
presentation_pfe-universite-molay-seltan.pptx
yahyamohibme
 
Job_Card_System_Styled_lorem_ipsum_.pptx
Jeffkigen
 
Introuction about ICD -10 and ICD-11 PPT.pptx
naveenithkrishnan
 
Cloud-Scale Log Monitoring _ Datadog.pdf
MuhammadDhomanhuriMa
 
Triggering QUIC, presented by Geoff Huston at IETF 123
APNIC
 
An introduction to the IFRS (ISSB) Stndards.pdf
farhankhan13694
 

Building a smarter application stack - service discovery and wiring for Docker

  • 1. Building a smarter application stack Tomas  Doran   @bobtfish   2014-­‐06-­‐10
  • 2. Docker is the future • Preaching to the converted here ;)
 • Game changing technology
 • No silver bullets (ever) • Introduces it’s own set of problems and issues • Dependency discovery / wiring • Scheduling 2
  • 3. Smartstack • One possible solution to discovery problems
 • This talk: • Application architecture • Problem(s) we’re solving • Why this solution works well for us • Alternate solutions 3
  • 4. Microservices - also the future! • The same as SOA • But one API per service. • Own data store!
 • Lots of services (dozens, maybe 100s)
 • All individually very simple • Easy to reason about. • Easy to replace 4
  • 5. Don’t break the site - ever!!! • Microservices are individually deployable! • When we say “Don’t break the site” • We mean • Don’t break all of the site! 5
  • 6. Don’t break the site - ever!!! • If you have graceful degradation… • You can ignore MTBF in the backend services! • You only care about MTTR. 6
  • 7. “I’ll just break this out into it’s own application, as it’ll be easier to maintain in 10 years time” - Pre seed funding nobody, ever! 7
  • 8. Monolith - the reality • Everyone has one of these :) • If you’re far enough down the path, you call this ‘The presentation layer’.
 • Still poses a challenge • need async requests • need graceful degradation 8
  • 9. Monolith - the reality • Most popular service
 • Most dependencies • Call into 10s or 100s of other services in a request!
 • Needs circuit breakers + dynamic configuration 9
  • 10. No silver bullet = No one solution • You should always have 2. • Nagios / Sensu • RRDs + Ganglia / Graphite + Diamond • YAML files / Zookeeper 10
  • 11. No silver bullet = No one solution • ‘Top down’ architecture sucks. • Instead, broad goals + ’Bottom up’ architecture • Internal competition! • Replacing the incumbent solution happens organically • If your thing works better, people will want to move! 
 • Not perfect! Better than top-down! 11
  • 12. “Humans are bad at predicting the performance of complex systems […]. Our ability to create large and complex systems fools us into believing that we’re also entitled to understand them”
 - Carlos Bueno “Mature optimization handbook”
 12
  • 13. Distributed complexity • Distributed systems introduce their own set of complexity • Reasoning about the whole system challenging • Timing/profiling/performance analysis non-trivial • Resource scheduling also non-trivial • 2nd order effects ! • Can’t reason about emergent behavior 13
  • 14. 14
  • 15. 15 ?
  • 16. 16 ? What the heck happened at 16:46?
  • 17. 17 ? And why did it stop at 17:00?
  • 18. Dynamic architecture • Cattle not pets • AWS and VMs in ‘the cloud’ started this • Docker takes it a step further
 • Explicitly manage persistent state • Explicit regular recycling • All updates are redeploys
 18
  • 19. Dependency nightmares • Almost everything has some dependencies • Simple example, web app with a mysql DB • App config in a YAML file
 • Mysql container address changes when you restart mysql! • Oops, app can’t find mysql!
 • Do I need to restart every application using mysql? • Sucks! • Do I need to rebuild application containers using mysql? • To edit the config YAML file! • Super super sucks! 19
  • 20. Runtime wiring • mysql failovers - the simple case!
 • Presentation layer talking to service REST layers • Different deployment schedules • No downtime
 • Only possible solution: wiring dependencies at runtime • A challenge • Also an opportunity
 • DNS is workable in some cases 20
  • 21. Dynamic discovery • Discovery becomes a core problem
 • DNS re-resolving not generally trustworthy • You need to test everything for this
 • DNS balancing (internally) is awful • Failed node + multiple connections/requests • DNS round robin • Everything sees failure • Slow to shift traffic • Round robin is crappy for load balancing
 21
  • 22. Externalized wiring • Remove a lot of complexity from the application domain
 • Run a load balancer (haproxy) on each machine
 • Applications always connect to load balancer on fixed host/port • localhost on traditional metal/VMs • supplied by —link or environment variables in Docker
 • Applications become wiring agnostic! 22
  • 24. ‘Client side load balancing’ • Lots of projects use this approach: • Project Atomic • Marathon + Mesos-Docker • vulcand (https://github.com/mailgun/vulcand) • Frontrunner (https://github.com/Wizcorp/ frontrunner) • Consul ! • Smartstack 24
  • 25. Legacy infrastructure • Physical machines • Application images in AMIs • kvm
 • Can’t just use container links or a Docker only solution
 • Want to use the same (uniform) solution everywhere. 25
  • 26. Entropy reduction • You can’t change everything at once!
 • Everything will tend towards chaos • ‘Old infrastructure’ • ‘New infrastructure’ • ‘New new infrastructure’ ! • Solution specifically chosen so it could be generic. 26
  • 27. SmartStack • 2 parts • Synapse • Nerve ! • Conceptually simple • Very flexible • Easy to hack on • Plays well on traditional machines • Plays well in docker 27
  • 28. Synapse • Does discovery against a pluggable backend • Writes out a haproxy configuration
 • Assign a well known port to all services • Application connects to that port • haproxy forwards to an available backend
 • Your application doesn’t need to know about discovery!
 • Technology agnostic - works the same on metal/VMs/Docker 28
  • 29. 29
  • 30. Why synapse? • haproxy is a well known solution • ruby - easy to modify • simple (has one job) • Pluggable - discovery with multiple methods: • JSON config (static) • zookeeper • etcd • docker API • ec2 tags • Flexible • Deploy one per instance • Or pairs as dedicated lbs 30
  • 31. Nerve • Health checks services • Health checks are pluggable. • HTTP (flexible) + mysql come out the box • Registers service information to backend • zookeeper • etcd (beta) 31
  • 32. 32
  • 33. Connector agnostic containers • On ‘real servers’ or VMs, running a synapse instance per box is fine.
 • In docker, we want to abstract more than that • Make containers connector agnostic! • They don’t need to know or care • Upgrade independently. 33
  • 34. Synapse <3 ambassador containers • ‘Ambassador pattern’ • Run a synapse ‘ambassador’ container on each host for each service • Link each application to the ambassador for each of it’s dependencies • Environment variables to each service’s haproxy • Separates synapse management (i.e. changing the wiring) from application management (i.e. upgrading the app version). 34
  • 35. 35
  • 36. Container links • Ambassador for service A presents: • port 8000 for HTTP REST service • port 8443 for HTTPS REST service ! • Container linking to ambassador sees: • SRVA_PORT_8000_TCP=tcp://172.17.0.8:6379 • SRVA_PORT_8000_TCP_PROTO=tcp • SRVA_PORT_8000_TCP_ADDR=172.17.0.8 • SRVA_PORT_8000_TCP_PORT=6379 • SRVA_PORT_8443_TCP=tcp://172.17.0.8:6380 • SRVA_PORT_8443_TCP_PROTO=tcp • SRVA_PORT_8443_TCP_ADDR=172.17.0.8 • SRVA_PORT_8443_TCP_PORT=6380 36
  • 37. Nerve registration container • Each app container gets a Nerve instance • Nerve registers its 1 app • Nerve instance can be generic • Make services all have a standard /health endpoint • Healthchecks standard • Only need one nerve container image! 37
  • 38. Alternate options • Just register the contents of the docker API into etcd • http://coreos.com/blog/docker-dynamic-ambassador- powered-by-etcd/ • No health checks • Docker only • confd • Consul • frontrunner - discovery from Marathon • Uses haproxy too • Less health checking options 38
  • 40. Issues • If you have lots of machines + services, you have a lot of Synapses • haproxy health checks can become expensive on end user apps • Nerve helps with this
 • Lots of small load balancers is harder to reason about than a few big ones 40
  • 42. Thanks • Slides will be online
 http://slideshare.net/bobtfish
 • Official Smartstack site:
 http://nerds.airbnb.com/smartstack-service-discovery-cloud/
 • Pre-built containers to play with + blog post
 http://engineeringblog.yelp.com/
 https://index.docker.io/u/bobtfish/synapse-etcd-amb/
 https://index.docker.io/u/bobtfish/nerve-etcd/
 • Questions? 42