Abstract image of a woman sitting on books and studying on a laptop

K8s-zero-downtime-the-missing-part

Download as PPTX, PDF
H
Huynh Thai Bao

The document discusses strategies for zero-downtime deployment on Kubernetes, focusing on the importance of pod eviction lifecycle and graceful shutdown to prevent outages. It emphasizes the need for appropriate handling of traffic and introduces concepts like pod disruption budgets to manage application stability during deployments. Key recommendations include using pre-stop hooks and ensuring sufficient pod replicas to handle load during transitions.

Engineering
1 of 24
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
ZERO-DOWNTIME DEPLOYMENT on K8S the missing part Bảo Huỳnh Site Reliability Engineering 12-Jun-2020
AGENDA 1. Deployment & Replicas: are we really safe ? 2. Understand Pod Eviction Lifecycle 3. Avoid Outages 4. Beyond the Outages
1. Deployment & Replicas: really safe ? We have: ● Replicas : 2 ● RollingUpdate Strategy ● maxUnavailable: 1 * Everything seems quite strong to avoid downtime * What happens if one pod disappear ? * How about existing & upcoming traffic ?
1. Deployment & Replicas: really safe ? Downtime will occur IF: - Existing traffic does not being handled properly - Application does not handle graceful shutdown - ……….
2. Understand Pod Eviction Lifecycle ● kubectl delete / drain / upgrade ● A request 🡪 nodes where pod is located ● kubelet sends SIGTERM to pods ● kubelet sends SIGKILL after graceful period (preStop + time stopping app)
Add preStop hook to graceful shutdown nginx 🡪 Make sure app finish handling existing connections before quit 2. Understand Pod Eviction Lifecycle
2. Understand Pod Eviction Lifecycle - Drain “node 1” - Sent SIGTERM to nginx pod - preStop hook is executed (nginx quit)
2. Understand Pod Eviction Lifecycle + New request is coming + Being routed to stopping Nginx + Error….
2. Understand Pod Eviction Lifecycle
2. Understand Pod Eviction Lifecycle - Why does this sh*t happens ? - Why does stupid K8S still routing traffic to a “terminating” pod ? - said CT Engineer -
3. Avoid the Outages Recall pod shutdown sequence ● kubectl delete / drain / upgrade ● A request 🡪 nodes where pod is located ● kubelet sends SIGTERM to pods ● kubelet sends SIGKILL after graceful period (preStop + time to stop app) ………………………. RIGHT, but NOT ENOUGH
3. Avoid the Outages Figure 1: Sequences occur when pod is deleted
3. Avoid the Outages Figure 2: Timeline “version” for pod deletion’s events - Two flows run in parellel - No guarantee [A] finish after [B]
3. Avoid the Outages
3. Avoid the Outages BUT HOW ???
3. Avoid the Outages ● don’t work, just SLEEP ● … & wait for deregister flow (B) to complete before graceful shutdown
3. Avoid the Outages
3. Avoid the Outages
3. Avoid the Outages
4. Beyond the Outages - Introducing: PodDisruptionBudgets - An indicator of the number of disruptions that can be tolerated at a given time for a class of pods (a budget of faults). - If number of pod < PodDisruptionBudgets, the drain operation is halted (wait for new pod come up & increase above the threshold)
4. Beyond the Outages
Summary Application: - Handed SIGTERM for graceful shutdown System: - Apply preStop lifecycle - Apply Sleep to make sure pod Endpoint is deregistered from Service to avoid new coming traffic - Using PodDisruptionBudgets to avoid all pods down at the same time
Questions & Answers
Appendix: Service Disruption Involuntary disruptions Voluntary disruptions HW failure, node disappear from cluster deployment upgrade, delete pod node upgrade node drain

More Related Content

PPTX
ELK - Optimizations & Updates
Huynh Thai Bao
 
PPTX
CICD pipelines with GitOps
Huynh Thai Bao
 
PDF
Enabling GitOps - Architecture for Implementation
Huynh Thai Bao
 
PDF
Shaker
Ilya Shakhat
 
PPTX
Neutron upgrades strategy
Victor Morales
 
PDF
Git workflows
Sergiu Savva
 
PDF
Git Series. Episode 3. Git Flow and Github-Flow
Mikhail Melnik
 
PDF
Git flow for daily use
Mediacurrent
 
ELK - Optimizations & Updates
Huynh Thai Bao
 
CICD pipelines with GitOps
Huynh Thai Bao
 
Enabling GitOps - Architecture for Implementation
Huynh Thai Bao
 
Shaker
Ilya Shakhat
 
Neutron upgrades strategy
Victor Morales
 
Git workflows
Sergiu Savva
 
Git Series. Episode 3. Git Flow and Github-Flow
Mikhail Melnik
 
Git flow for daily use
Mediacurrent
 

What's hot (20)

PDF
Git flow Introduction
David Paluy
 
PDF
Git Series. Episode 2. Merge, Upstream Commands and Tags
Mikhail Melnik
 
ODP
Git Flow - An Introduction
Knoldus Inc.
 
PPTX
Continious integration pipeline
GomathiNayagam S
 
PPTX
Git presentation
Sai Kumar Satapathy
 
PDF
Git and git flow
Fran García
 
PPTX
Git flow
Suraj Aair
 
PDF
Kubernetes-native or not? When should you ditch your traditional CI/CD server...
Red Hat Developers
 
PPTX
Git tutorial git branches 20131206-Bryan
LearningTech
 
PDF
Kubernetes configuration and security policies with KubeLinter | DevNation Te...
Red Hat Developers
 
PDF
Git Tricks
Ivelina Dimova
 
PDF
Top 10 Kubernetes Native Java Quarkus Features
jclingan
 
PDF
Quarkus: From developer joy to Kubernetes nirvana! | DevNation Tech Talk
Red Hat Developers
 
PPTX
Neutron upgrades
Victor Morales
 
PPTX
Why Aren't You Using Git Flow?
John Congdon
 
PPT
Git workflows presentation
Mack Hardy
 
PDF
Git tutorial
Nuttapon Pattanavijit
 
PPTX
git-flow R3Labs
Raül Pérez
 
PDF
GitLab 라이선스별 특징 요약 - 인포그랩
InfoGrab LC
 
PDF
Crossing the Streams! Rollout Strategies to Keep Your Users Happy!
VMware Tanzu
 
Git flow Introduction
David Paluy
 
Git Series. Episode 2. Merge, Upstream Commands and Tags
Mikhail Melnik
 
Git Flow - An Introduction
Knoldus Inc.
 
Continious integration pipeline
GomathiNayagam S
 
Git presentation
Sai Kumar Satapathy
 
Git and git flow
Fran García
 
Git flow
Suraj Aair
 
Kubernetes-native or not? When should you ditch your traditional CI/CD server...
Red Hat Developers
 
Git tutorial git branches 20131206-Bryan
LearningTech
 
Kubernetes configuration and security policies with KubeLinter | DevNation Te...
Red Hat Developers
 
Git Tricks
Ivelina Dimova
 
Top 10 Kubernetes Native Java Quarkus Features
jclingan
 
Quarkus: From developer joy to Kubernetes nirvana! | DevNation Tech Talk
Red Hat Developers
 
Neutron upgrades
Victor Morales
 
Why Aren't You Using Git Flow?
John Congdon
 
Git workflows presentation
Mack Hardy
 
Git tutorial
Nuttapon Pattanavijit
 
git-flow R3Labs
Raül Pérez
 
GitLab 라이선스별 특징 요약 - 인포그랩
InfoGrab LC
 
Crossing the Streams! Rollout Strategies to Keep Your Users Happy!
VMware Tanzu
 
Ad

Similar to K8s-zero-downtime-the-missing-part (20)

PPTX
Production Grade Kubernetes Applications
Narayanan Krishnamurthy
 
PPTX
Upgrade Kubernetes the boring way
Oleksandr Slynko
 
PPT
F33 book-depend-pres-pt6
NAVEENKUMARR18EC016
 
PDF
Why I love Kubernetes Failure Stories and you should too - GOTO Berlin
Henning Jacobs
 
PDF
Kubernetes Failure Stories, or: How to Crash Your Cluster - ContainerDays EU ...
Henning Jacobs
 
PDF
Rac 12c optimization
Riyaj Shamsudeen
 
PPTX
Monitoring klassisch oder Cloud
ConSol Consulting & Solutions Software GmbH
 
PDF
Lessons Learned from Migrating Legacy Enterprise Applications to Microservices
VMware Tanzu
 
PDF
"Scaling in space and time with Temporal", Andriy Lupa .pdf
Fwdays
 
PDF
Scheduling in Android
Opersys inc.
 
PDF
Running Kubernetes in Production: A Million Ways to Crash Your Cluster - Cont...
Henning Jacobs
 
PDF
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 
PDF
Velocity 2012 - Learning WebOps the Hard Way
Cosimo Streppone
 
PDF
2017 Microservices Practitioner Virtual Summit: Microservices at Squarespace ...
Ambassador Labs
 
PPTX
Introduce to Git and Jenkins
An Nguyen
 
PDF
TechTalk5-WhatDoesItTakeToRunLLVMBuildbots.pdf
xiso
 
PDF
GitOps and security by Reto Bollinger, CSIO nine.ch
nine
 
PDF
Awe k2 midterms finals
Karen Tay
 
PDF
Cloud orchestration risks
Glib Pakharenko
 
PDF
"Scaling in space and time with Temporal", Andriy Lupa.pdf
Fwdays
 
Production Grade Kubernetes Applications
Narayanan Krishnamurthy
 
Upgrade Kubernetes the boring way
Oleksandr Slynko
 
F33 book-depend-pres-pt6
NAVEENKUMARR18EC016
 
Why I love Kubernetes Failure Stories and you should too - GOTO Berlin
Henning Jacobs
 
Kubernetes Failure Stories, or: How to Crash Your Cluster - ContainerDays EU ...
Henning Jacobs
 
Rac 12c optimization
Riyaj Shamsudeen
 
Monitoring klassisch oder Cloud
ConSol Consulting & Solutions Software GmbH
 
Lessons Learned from Migrating Legacy Enterprise Applications to Microservices
VMware Tanzu
 
"Scaling in space and time with Temporal", Andriy Lupa .pdf
Fwdays
 
Scheduling in Android
Opersys inc.
 
Running Kubernetes in Production: A Million Ways to Crash Your Cluster - Cont...
Henning Jacobs
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 
Velocity 2012 - Learning WebOps the Hard Way
Cosimo Streppone
 
2017 Microservices Practitioner Virtual Summit: Microservices at Squarespace ...
Ambassador Labs
 
Introduce to Git and Jenkins
An Nguyen
 
TechTalk5-WhatDoesItTakeToRunLLVMBuildbots.pdf
xiso
 
GitOps and security by Reto Bollinger, CSIO nine.ch
nine
 
Awe k2 midterms finals
Karen Tay
 
Cloud orchestration risks
Glib Pakharenko
 
"Scaling in space and time with Temporal", Andriy Lupa.pdf
Fwdays
 
Ad

More from Huynh Thai Bao (7)

PPTX
Service Mesh 101 - Digging into your service
Huynh Thai Bao
 
PPTX
K8s Webhook Admission
Huynh Thai Bao
 
PPTX
Cassandra - decentralized structured database
Huynh Thai Bao
 
PPTX
Skaffold - faster development on K8S
Huynh Thai Bao
 
PDF
Kubernetes - A Rising Hero
Huynh Thai Bao
 
PDF
Vault - Enhancement for K8S secret security
Huynh Thai Bao
 
PDF
GCP Best Practices for SRE Team
Huynh Thai Bao
 
Service Mesh 101 - Digging into your service
Huynh Thai Bao
 
K8s Webhook Admission
Huynh Thai Bao
 
Cassandra - decentralized structured database
Huynh Thai Bao
 
Skaffold - faster development on K8S
Huynh Thai Bao
 
Kubernetes - A Rising Hero
Huynh Thai Bao
 
Vault - Enhancement for K8S secret security
Huynh Thai Bao
 
GCP Best Practices for SRE Team
Huynh Thai Bao
 

Recently uploaded (20)

PDF
Abrasive, erosive and cavitation wear.pdf
nfandraden
 
PPTX
Current and future trends in Computer Vision.pptx
Subramanyam Natarajan
 
PPTX
Amdahl’s law is explained in the above power point presentations
sangeetha952248
 
PPT
INTRODUCTION -Data Warehousing and Mining-M.Tech- VTU.ppt
Subramanyam Natarajan
 
PDF
Improvement effect of pyrolyzed agro-food biochar on the properties of.pdf
LasFernandaJuchem
 
PDF
distributed database system" (DDBS) is often used to refer to both the distri...
Hemlathadhevi Annadhurai
 
PDF
Soil Improvement Techniques Note - Rabbi
rahmatideal000
 
PPTX
Feature types and data preprocessing steps
deepalishinkar1
 
PPT
Total quality management ppt for engineering students
juleeyadav818
 
PDF
A SYSTEMATIC REVIEW OF APPLICATIONS IN FRAUD DETECTION
IJNSA Journal
 
PDF
PREDICTION OF DIABETES FROM ELECTRONIC HEALTH RECORDS
ijaia
 
PDF
BIO-INSPIRED ARCHITECTURE FOR PARSIMONIOUS CONVERSATIONAL INTELLIGENCE : THE ...
ijaia
 
PPTX
Fundamentals of Mechanical Engineering.pptx
MdMowdudAhmed
 
PDF
EXPLORING LEARNING ENGAGEMENT FACTORS INFLUENCING BEHAVIORAL, COGNITIVE, AND ...
johnmathew9417
 
PDF
Artificial Superintelligence (ASI) Alliance Vision Paper.pdf
SonaliPatil325517
 
PPTX
6ME3A-Unit-II-Sensors and Actuators_Handouts.pptx
anukaranugi
 
PPTX
tack Data Structure with Array and Linked List Implementation, Push and Pop O...
usham61
 
PPTX
CURRICULAM DESIGN engineering FOR CSE 2025.pptx
Amuda3
 
PPTX
Software Engineering and software moduleing
deepikame6
 
PDF
Accra-Kumasi Expressway - Prefeasibility Report Volume 1 of 7.11.2018.pdf
JeorgeWilsonKingson1
 
Abrasive, erosive and cavitation wear.pdf
nfandraden
 
Current and future trends in Computer Vision.pptx
Subramanyam Natarajan
 
Amdahl’s law is explained in the above power point presentations
sangeetha952248
 
INTRODUCTION -Data Warehousing and Mining-M.Tech- VTU.ppt
Subramanyam Natarajan
 
Improvement effect of pyrolyzed agro-food biochar on the properties of.pdf
LasFernandaJuchem
 
distributed database system" (DDBS) is often used to refer to both the distri...
Hemlathadhevi Annadhurai
 
Soil Improvement Techniques Note - Rabbi
rahmatideal000
 
Feature types and data preprocessing steps
deepalishinkar1
 
Total quality management ppt for engineering students
juleeyadav818
 
A SYSTEMATIC REVIEW OF APPLICATIONS IN FRAUD DETECTION
IJNSA Journal
 
PREDICTION OF DIABETES FROM ELECTRONIC HEALTH RECORDS
ijaia
 
BIO-INSPIRED ARCHITECTURE FOR PARSIMONIOUS CONVERSATIONAL INTELLIGENCE : THE ...
ijaia
 
Fundamentals of Mechanical Engineering.pptx
MdMowdudAhmed
 
EXPLORING LEARNING ENGAGEMENT FACTORS INFLUENCING BEHAVIORAL, COGNITIVE, AND ...
johnmathew9417
 
Artificial Superintelligence (ASI) Alliance Vision Paper.pdf
SonaliPatil325517
 
6ME3A-Unit-II-Sensors and Actuators_Handouts.pptx
anukaranugi
 
tack Data Structure with Array and Linked List Implementation, Push and Pop O...
usham61
 
CURRICULAM DESIGN engineering FOR CSE 2025.pptx
Amuda3
 
Software Engineering and software moduleing
deepikame6
 
Accra-Kumasi Expressway - Prefeasibility Report Volume 1 of 7.11.2018.pdf
JeorgeWilsonKingson1
 

K8s-zero-downtime-the-missing-part

  • 1. ZERO-DOWNTIME DEPLOYMENT on K8S the missing part Bảo Huỳnh Site Reliability Engineering 12-Jun-2020
  • 2. AGENDA 1. Deployment & Replicas: are we really safe ? 2. Understand Pod Eviction Lifecycle 3. Avoid Outages 4. Beyond the Outages
  • 3. 1. Deployment & Replicas: really safe ? We have: ● Replicas : 2 ● RollingUpdate Strategy ● maxUnavailable: 1 * Everything seems quite strong to avoid downtime * What happens if one pod disappear ? * How about existing & upcoming traffic ?
  • 4. 1. Deployment & Replicas: really safe ? Downtime will occur IF: - Existing traffic does not being handled properly - Application does not handle graceful shutdown - ……….
  • 5. 2. Understand Pod Eviction Lifecycle ● kubectl delete / drain / upgrade ● A request 🡪 nodes where pod is located ● kubelet sends SIGTERM to pods ● kubelet sends SIGKILL after graceful period (preStop + time stopping app)
  • 6. Add preStop hook to graceful shutdown nginx 🡪 Make sure app finish handling existing connections before quit 2. Understand Pod Eviction Lifecycle
  • 7. 2. Understand Pod Eviction Lifecycle - Drain “node 1” - Sent SIGTERM to nginx pod - preStop hook is executed (nginx quit)
  • 8. 2. Understand Pod Eviction Lifecycle + New request is coming + Being routed to stopping Nginx + Error….
  • 9. 2. Understand Pod Eviction Lifecycle
  • 10. 2. Understand Pod Eviction Lifecycle - Why does this sh*t happens ? - Why does stupid K8S still routing traffic to a “terminating” pod ? - said CT Engineer -
  • 11. 3. Avoid the Outages Recall pod shutdown sequence ● kubectl delete / drain / upgrade ● A request 🡪 nodes where pod is located ● kubelet sends SIGTERM to pods ● kubelet sends SIGKILL after graceful period (preStop + time to stop app) ………………………. RIGHT, but NOT ENOUGH
  • 12. 3. Avoid the Outages Figure 1: Sequences occur when pod is deleted
  • 13. 3. Avoid the Outages Figure 2: Timeline “version” for pod deletion’s events - Two flows run in parellel - No guarantee [A] finish after [B]
  • 14. 3. Avoid the Outages
  • 15. 3. Avoid the Outages BUT HOW ???
  • 16. 3. Avoid the Outages ● don’t work, just SLEEP ● … & wait for deregister flow (B) to complete before graceful shutdown
  • 17. 3. Avoid the Outages
  • 18. 3. Avoid the Outages
  • 19. 3. Avoid the Outages
  • 20. 4. Beyond the Outages - Introducing: PodDisruptionBudgets - An indicator of the number of disruptions that can be tolerated at a given time for a class of pods (a budget of faults). - If number of pod < PodDisruptionBudgets, the drain operation is halted (wait for new pod come up & increase above the threshold)
  • 21. 4. Beyond the Outages
  • 22. Summary Application: - Handed SIGTERM for graceful shutdown System: - Apply preStop lifecycle - Apply Sleep to make sure pod Endpoint is deregistered from Service to avoid new coming traffic - Using PodDisruptionBudgets to avoid all pods down at the same time
  • 24. Appendix: Service Disruption Involuntary disruptions Voluntary disruptions HW failure, node disappear from cluster deployment upgrade, delete pod node upgrade node drain