SlideShare a Scribd company logo

DoxLon | Life with kube, containers and microservices

R
Richard Marshall

The document discusses the challenges and experiences of a platform team utilizing Kubernetes, containers, and microservices in a regulated financial advisory environment. It highlights the shift of complexity to the platform, ease of deployment with Kubernetes, and the importance of maintaining infrastructure and security. The challenges faced include slow deployment times, patching needs, and navigating AWS’s intricacies while adapting to new technologies.

Technology
1 of 13
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
Life With Kube, Containers and Microservices Richard Marshall, Head of Platform
Regulated Robo-Advisors • FCA Regulated • Financial Advisors • Automating Financial Advice • Lots of regulations • and compliance • and audits • and risk committees. • And not much traffic (yet) • But really big customers. • We’re Hiring.
In the beginning • Linux, Apache, Mongo(!), PHP • Development turn-around times taking to long. • Complex Code base. • 15 releases in a year • (most of those were fixing the planned release)
#MicroKubeTainers • Microservices + Containers + Kubernetes • Engineering team kick-start • Complexity is moved from the app to the platform. • But it’s repeated complexity! • Kube makes it SO easy to deploy, run and scale apps. • Relearning most of the past 10 years
Production ready?? • Deploying a kube cluster is easy (Kube- up, KOPS) • Kube PoC deployed, declared production-ready (done…) • d’oh! • Kube evolves fast! Be comfortable rebuilding. • Have an infrastructure pipeline ready. (before you tell people you’re ready to go) • Try “Kube the hard way.” • AWS “interesting” selection. Use GCE.
Engineered Pipeline • Deploying to kube is easy. too easy • Have code defining what is deployed to Kube • Maintain cluster state outside Kube. • Helm is available now. YMMV • Built our own using git, consul+consul-template (and Bash) • Happy to share this code, if you’re interested.
• Kube re-implements what your I(aaS) is doing. • Networking is re-implemented within Kube (so your firewalls/SGs don’t help much) • Make use of Kube Tools. We’re growing to love Weave (and NetPol) • Learn and Understand what kube is doing. It makes it easy until it’s not working.
• Security Hygiene, Washing Hands. • Easier with a scheduler. • Host patching a breeze. • Now containers need patching, and tracking, too. • *Solving*: quay.io/Clair/docker Hub. • _Always_ patching.
•AWS Persistent Storage •IO Burst Credits •High Disk IO Demand •Cascade failures. capacity? •du -s •Node maturity, NVM instrumentation •Slow Pod deployment times •IP Exhaustion •AWS ELB TLS Policies
Easy to deploy, hard to know what’s happening.
Declarative means kube only confirms that we asked for a deployment
DoxLon | Life with kube, containers and microservices
• Are we better off? • Platform is way more complex, but interesting • Techies love the stack • Auditors seem pretty pleased. • Code is quicker to develop, Time To Deliver smaller • So yes. #MicroKubeTainers

More Related Content

PDF
Handling 1 Billion Requests/hr with Minimal Latency Using Docker
Matomy
 
PPTX
Project RedDwarf - Database Services in the Cloud.pptx
OpenStack Foundation
 
PDF
A 5 Minute Intro To Weave - Software Circus July 2015
Weaveworks
 
PDF
CentOS and OpenNebula, a Perfect Match
NETWAYS
 
PPTX
Stateful Applications On the Cloud: A PayPal Journey
Tesora
 
PDF
dodai_grizzly.pdf
OpenStack Foundation
 
PPTX
Openstack portal-bestpractices-campbell mcneill
Campbell McNeill
 
PPTX
Welcome to CloudLand - DevOps Seattle Feb 2020
Kaslin Fields
 
Handling 1 Billion Requests/hr with Minimal Latency Using Docker
Matomy
 
Project RedDwarf - Database Services in the Cloud.pptx
OpenStack Foundation
 
A 5 Minute Intro To Weave - Software Circus July 2015
Weaveworks
 
CentOS and OpenNebula, a Perfect Match
NETWAYS
 
Stateful Applications On the Cloud: A PayPal Journey
Tesora
 
dodai_grizzly.pdf
OpenStack Foundation
 
Openstack portal-bestpractices-campbell mcneill
Campbell McNeill
 
Welcome to CloudLand - DevOps Seattle Feb 2020
Kaslin Fields
 

What's hot (20)

PDF
Pablo Chico de Guzman | Introducción a Docker y Kubernetes | Codemotion Madri...
Codemotion
 
PDF
How DreamHost builds a Public Cloud with OpenStack
Carl Perry
 
PDF
Salt Air 19 - Intro to SaltStack RAET (reliable asyncronous event transport)
SaltStack
 
PDF
Innovating faster with SBT, Continuous Delivery, and LXC
kscaldef
 
PPTX
OpenNebula in a Multiuser Environment
NETWAYS
 
PPTX
DNN & The CloudOS: Windows Azure on your terms
Jess Coburn
 
PDF
Meetup Melbourne August 2017 - Agile Integration with Apache Camel microservi...
Claus Ibsen
 
PDF
Migrate the Mission Critical Application to AWS Cloud
Shuen-Huei Guan
 
PDF
Ci & proServer
Sebastian Helzle
 
PPT
Docker in the Cloud
Sascha Möllering
 
PPTX
Server Side Swift with Kitura@IBM by Sangeeth K Sivakumar
Sangeeth K Sivakumar
 
PPTX
Saltconf 2016: Salt stack transport and concurrency
Thomas Jackson
 
PPTX
Sas 2015 event_driven
Sascha Möllering
 
PDF
AWS re:Invent 2016 Fast Forward
Shuen-Huei Guan
 
PDF
Serverless framework on kubernetes
inwin stack
 
PPTX
Kubernetes at NU.nl (Kubernetes meetup 2019-09-05)
Tibo Beijen
 
PDF
AWS to Bare Metal: Motivation, Pitfalls, and Results
MongoDB
 
PDF
Whats all the FaaS About
Haggai Philip Zagury
 
PDF
Building a bakery of Windows servers with Packer - London WinOps
Ricard Clau
 
PPTX
Meetup #3: Migrate a fast scale system to AWS
AWS Vietnam Community
 
Pablo Chico de Guzman | Introducción a Docker y Kubernetes | Codemotion Madri...
Codemotion
 
How DreamHost builds a Public Cloud with OpenStack
Carl Perry
 
Salt Air 19 - Intro to SaltStack RAET (reliable asyncronous event transport)
SaltStack
 
Innovating faster with SBT, Continuous Delivery, and LXC
kscaldef
 
OpenNebula in a Multiuser Environment
NETWAYS
 
DNN & The CloudOS: Windows Azure on your terms
Jess Coburn
 
Meetup Melbourne August 2017 - Agile Integration with Apache Camel microservi...
Claus Ibsen
 
Migrate the Mission Critical Application to AWS Cloud
Shuen-Huei Guan
 
Ci & proServer
Sebastian Helzle
 
Docker in the Cloud
Sascha Möllering
 
Server Side Swift with Kitura@IBM by Sangeeth K Sivakumar
Sangeeth K Sivakumar
 
Saltconf 2016: Salt stack transport and concurrency
Thomas Jackson
 
Sas 2015 event_driven
Sascha Möllering
 
AWS re:Invent 2016 Fast Forward
Shuen-Huei Guan
 
Serverless framework on kubernetes
inwin stack
 
Kubernetes at NU.nl (Kubernetes meetup 2019-09-05)
Tibo Beijen
 
AWS to Bare Metal: Motivation, Pitfalls, and Results
MongoDB
 
Whats all the FaaS About
Haggai Philip Zagury
 
Building a bakery of Windows servers with Packer - London WinOps
Ricard Clau
 
Meetup #3: Migrate a fast scale system to AWS
AWS Vietnam Community
 
Ad

Similar to DoxLon | Life with kube, containers and microservices (20)

PDF
KubeCon 2019 Recap (Parts 1-3)
Ford Prior
 
PPTX
Building a PaaS with Docker and AWS
vesirin
 
PPTX
A Million ways of Deploying a Kubernetes Cluster
Jimmy Lu
 
PPTX
DockerCon 15 Keynote - Day 2
Docker, Inc.
 
PPTX
Kubernetes Manchester - 6th December 2018
David Stockton
 
PPTX
Kubernetes Security
Karthik Gaekwad
 
PDF
Dockerize or die
Create Digital
 
PDF
Cloudsolutionday 2016: DevOps workflow with Docker on AWS
AWS Vietnam Community
 
PDF
Dutchcontainerdays
4bakker
 
PDF
What we talk about when we talk about DevOps
Ricard Clau
 
PDF
Kuby, ActiveDeployment for Rails Apps
Cameron Dutro
 
PDF
bol.com Dutch Container Day presentation
Maarten Dirkse
 
PDF
Practical PaaS presentation
hmalphettes
 
PDF
Five Years of EC2 Distilled
Grig Gheorghiu
 
PPTX
Considerations for Operating An OpenStack Cloud
Mark Voelker
 
PPTX
Why kubernetes matters
Platform9
 
PDF
From Heroku to Amazon AWS
Sebastian Schleicher
 
PDF
DevOps! What, Why and How?
Omar Fathy
 
PPTX
Considerations for Operating an OpenStack Cloud
All Things Open
 
PPTX
SkyBase - a Devops Platform for Hybrid Cloud
Vlad Kuusk
 
KubeCon 2019 Recap (Parts 1-3)
Ford Prior
 
Building a PaaS with Docker and AWS
vesirin
 
A Million ways of Deploying a Kubernetes Cluster
Jimmy Lu
 
DockerCon 15 Keynote - Day 2
Docker, Inc.
 
Kubernetes Manchester - 6th December 2018
David Stockton
 
Kubernetes Security
Karthik Gaekwad
 
Dockerize or die
Create Digital
 
Cloudsolutionday 2016: DevOps workflow with Docker on AWS
AWS Vietnam Community
 
Dutchcontainerdays
4bakker
 
What we talk about when we talk about DevOps
Ricard Clau
 
Kuby, ActiveDeployment for Rails Apps
Cameron Dutro
 
bol.com Dutch Container Day presentation
Maarten Dirkse
 
Practical PaaS presentation
hmalphettes
 
Five Years of EC2 Distilled
Grig Gheorghiu
 
Considerations for Operating An OpenStack Cloud
Mark Voelker
 
Why kubernetes matters
Platform9
 
From Heroku to Amazon AWS
Sebastian Schleicher
 
DevOps! What, Why and How?
Omar Fathy
 
Considerations for Operating an OpenStack Cloud
All Things Open
 
SkyBase - a Devops Platform for Hybrid Cloud
Vlad Kuusk
 
Ad

Recently uploaded (20)

PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PPTX
SOPHOS-XG Firewall Administrator PPT.pptx
AgnesMunisi
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PPTX
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PPTX
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
SOPHOS-XG Firewall Administrator PPT.pptx
AgnesMunisi
 
Teaching material agriculture food technology
LiaRayya
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
Encapsulation theory and applications.pdf
gurumoop
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 

DoxLon | Life with kube, containers and microservices

  • 1. Life With Kube, Containers and Microservices Richard Marshall, Head of Platform
  • 2. Regulated Robo-Advisors • FCA Regulated • Financial Advisors • Automating Financial Advice • Lots of regulations • and compliance • and audits • and risk committees. • And not much traffic (yet) • But really big customers. • We’re Hiring.
  • 3. In the beginning • Linux, Apache, Mongo(!), PHP • Development turn-around times taking to long. • Complex Code base. • 15 releases in a year • (most of those were fixing the planned release)
  • 4. #MicroKubeTainers • Microservices + Containers + Kubernetes • Engineering team kick-start • Complexity is moved from the app to the platform. • But it’s repeated complexity! • Kube makes it SO easy to deploy, run and scale apps. • Relearning most of the past 10 years
  • 5. Production ready?? • Deploying a kube cluster is easy (Kube- up, KOPS) • Kube PoC deployed, declared production-ready (done…) • d’oh! • Kube evolves fast! Be comfortable rebuilding. • Have an infrastructure pipeline ready. (before you tell people you’re ready to go) • Try “Kube the hard way.” • AWS “interesting” selection. Use GCE.
  • 6. Engineered Pipeline • Deploying to kube is easy. too easy • Have code defining what is deployed to Kube • Maintain cluster state outside Kube. • Helm is available now. YMMV • Built our own using git, consul+consul-template (and Bash) • Happy to share this code, if you’re interested.
  • 7. • Kube re-implements what your I(aaS) is doing. • Networking is re-implemented within Kube (so your firewalls/SGs don’t help much) • Make use of Kube Tools. We’re growing to love Weave (and NetPol) • Learn and Understand what kube is doing. It makes it easy until it’s not working.
  • 8. • Security Hygiene, Washing Hands. • Easier with a scheduler. • Host patching a breeze. • Now containers need patching, and tracking, too. • *Solving*: quay.io/Clair/docker Hub. • _Always_ patching.
  • 9. •AWS Persistent Storage •IO Burst Credits •High Disk IO Demand •Cascade failures. capacity? •du -s •Node maturity, NVM instrumentation •Slow Pod deployment times •IP Exhaustion •AWS ELB TLS Policies
  • 10. Easy to deploy, hard to know what’s happening.
  • 11. Declarative means kube only confirms that we asked for a deployment
  • 13. • Are we better off? • Platform is way more complex, but interesting • Techies love the stack • Auditors seem pretty pleased. • Code is quicker to develop, Time To Deliver smaller • So yes. #MicroKubeTainers