Self scaling Multi cloud nomad workloads
0 likes34 views
The document discusses maintaining platform uptime through self-scaling multi-cloud environments, emphasizing strategies for vertical and horizontal scaling. It highlights using tools like Nomad for dynamic workload scheduling, Consul for service discovery, and Traefik for routing, along with autoscaling configurations based on metrics. The content also addresses redundancy and risk management across different regions to ensure service reliability.
![CODE EDITOR
Lets build awesome product
job "lorem-ipsum" {
group âfrontend" {
network {
port "http" { to = â3000â }
}
service {
name = âlorem"
port = âhttp"
}
task "server" {
driver = "docker"
config {
image = âcicero/lorem-ipsum:v1.0.0"
ports = ["http"]
}
}](https://image.slidesharecdn.com/selfscalingmulticloudnomadworkloads1-240215162108-f5da9242/85/Self-scaling-Multi-cloud-nomad-workloads-9-320.jpg)
![CODE EDITOR
Exposing as a service
job "lorem-ipsum" {
group âfrontend" {
service {
name = "www"
tags = ["metrics",âtraefik.enable=trueâ]
port = "http"
check {
name = "alive"
type = "http"
path = "/health"
interval = "10s"
timeout = "2s"
}
}](https://image.slidesharecdn.com/selfscalingmulticloudnomadworkloads1-240215162108-f5da9242/85/Self-scaling-Multi-cloud-nomad-workloads-15-320.jpg)
![CODE EDITOR
Nomad Federation
server {
enabled = true
bootstrap_expect = 3
server_join {
authoritative_region = âmgmtâ
retry_join = [
"1.1.1.1", â1.1.1.2â, â1.1.1.3â,
â2.2.2.1â,â2.2.2.2â,â2.2.2.3â
]
retry_max = 3
retry_interval = "15s"
}
}](https://image.slidesharecdn.com/selfscalingmulticloudnomadworkloads1-240215162108-f5da9242/85/Self-scaling-Multi-cloud-nomad-workloads-21-320.jpg)
![CODE EDITOR
Sleep++ Separate mgmt from workload
server {
enabled = true
bootstrap_expect = 3
server_join {
authoritative_region = âmgmtâ
retry_join = [ "1.1.1.1", â1.1.1.2â, â1.1.1.3â,
â2.2.2.1â,â2.2.2.2â,â2.2.2.3â ]
retry_max = 3
retry_interval = "15s"
}
}](https://image.slidesharecdn.com/selfscalingmulticloudnomadworkloads1-240215162108-f5da9242/85/Self-scaling-Multi-cloud-nomad-workloads-22-320.jpg)
![CODE EDITOR
Sleep++ Redirect to other regions
curl http://127.0.0.1:8500/v1/query
--request POST
--data @- << EOF
{
"Name": "www",
"Service": {
"Service": "www",
"Failover": {
"Datacenters": ["us", "eu"]
}
}
}
EOF](https://image.slidesharecdn.com/selfscalingmulticloudnomadworkloads1-240215162108-f5da9242/85/Self-scaling-Multi-cloud-nomad-workloads-29-320.jpg)
![CODE EDITOR
Sleep++ Redirect to other regions
curl http://127.0.0.1:8500/v1/query
--request POST
--data @- << EOF
{
"Name": "www",
"Service": {
"Service": "www",
"Failover": {
"NearestN": 2,
"Datacenters": ["us", "eu"]
}
}
}
EOF](https://image.slidesharecdn.com/selfscalingmulticloudnomadworkloads1-240215162108-f5da9242/85/Self-scaling-Multi-cloud-nomad-workloads-30-320.jpg)
Self scaling Multi cloud nomad workloads
- 1. Self scaling multi cloud nomad workloads
- 2. Cloud Engineer @ Seaplane.io @attachmentgenie Bram Vogelaar
- 3. We have all been thereâŠ
- 4. What would it take to keep the platform running (no matter what)? And more importantlyâŠ.
- 5. Vertical vs Horizontal Scaling
- 6. Absorb additional pressure and pay for what you need
- 7. The aim becomes 100% 99.999% uptime
- 8. Task Scheduler Spec Sheet Open-source tool for dynamic workload scheduling Batch, containerized, and non-containerized applications. Jobs written in (H)ashiCorp (C)onïŹguration (L)anguage https://www.nomadproject.io/
- 9. CODE EDITOR Lets build awesome product job "lorem-ipsum" { group âfrontend" { network { port "http" { to = â3000â } } service { name = âlorem" port = âhttp" } task "server" { driver = "docker" config { image = âcicero/lorem-ipsum:v1.0.0" ports = ["http"] } }
- 10. CODE EDITOR Expose it to the world ## traefik.yml entryPoints: web: address: :80 providers: file: directory: /etc/traefik.d/dynamic.yml watch: true
- 11. CODE EDITOR Expose it to the world ## dynamic.yml http: routers: lorem-ipsum: rule: "Host(`lorem-ipsum.io`)" service: lorem-ipsum services: lorem-ipsum: loadBalancer: servers: - url: http://localhost:26489
- 12. CODE EDITOR Sleep++ step1 job "lorem-ipsum" { group âfrontend" { count = 2 constraint { operator = "distinct_hosts" value = "true" }
- 13. Your scheduler should not be an expensive systemd Service Discovery + Service Mesh + Scheduler
- 14. Service Discovery + Service Mesh Spec Sheet Open-Source Service Discovery Tool Build-in KV store Service Mesh tool Uses watchers to have near instant feedback loops https://www.consul.io/
- 15. CODE EDITOR Exposing as a service job "lorem-ipsum" { group âfrontend" { service { name = "www" tags = ["metrics",âtraefik.enable=trueâ] port = "http" check { name = "alive" type = "http" path = "/health" interval = "10s" timeout = "2s" } }
- 16. CODE EDITOR Expose it to the world ## dynamic.yml http: routers: lorem-ipsum: rule: "Host(`lorem-ipsum.io`)" service: lorem-ipsum services: lorem-ipsum: loadBalancer: servers: - url: http://lorem-ipsum.service.consul:26489
- 17. CODE EDITOR Sleep++ lazy++ ## traefik.yml entryPoints: web: address: :80 providers: consulCatalog: defaultRule: "Host(`{{ .Name }}.lorem-ipsum.io`)" endpoint: address: 'http://localhost:8500' exposedByDefault: false
- 18. CODE EDITOR Dynamic Metric Scraping # prometheus.yml - job_name: nomad_workload scrape_interval: 60s consul_sd_configs: - server: localhost:8500 tags: - metrics
- 19. CODE EDITOR Sleep++ Autoscaling job "lorem-ipsum" { group âfrontend" { scaling { enabled = false min = 1 max = 20 policy { cooldown = "20s" check "avg_sessions" { source = "prometheus" query = "sum(traefik_entrypoint_open_connections{entrypoint="lorem-ipsum"}" strategy "target-value" { target = 5 } } } }
- 20. Data where your users are
- 21. CODE EDITOR Nomad Federation server { enabled = true bootstrap_expect = 3 server_join { authoritative_region = âmgmtâ retry_join = [ "1.1.1.1", â1.1.1.2â, â1.1.1.3â, â2.2.2.1â,â2.2.2.2â,â2.2.2.3â ] retry_max = 3 retry_interval = "15s" } }
- 22. CODE EDITOR Sleep++ Separate mgmt from workload server { enabled = true bootstrap_expect = 3 server_join { authoritative_region = âmgmtâ retry_join = [ "1.1.1.1", â1.1.1.2â, â1.1.1.3â, â2.2.2.1â,â2.2.2.2â,â2.2.2.3â ] retry_max = 3 retry_interval = "15s" } }
- 23. CODE EDITOR Sleep++ Ingress resource "ns1_record" "www" { zone = âlorem-ipsum.ioâ domain = "www.lorem-ipsum.io" type = "CNAME" ttl = 60 regions { name = "usa" meta = { country = "US" } } answers { answer = "usa.lorem-ipsum.io" region = "usa" } }
- 24. CODE EDITOR Identify workload region external_labels: datacenter: "%{::trusted.extensions.pp_datacenter}" region: "%{::trusted.extensions.pp_region}" # ${IATA_CODES} env: "%{::trusted.extensions.pp_environment}"
- 25. What would it take to keep it running while losing an entire region Limit the blast radius
- 27. Not all vendors are created equally VPCs vs Network mesh, Base Images etc,etc
- 28. CODE EDITOR Lazy++ Redirect to other regions ## traefik.yml entryPoints: web: address: :80 providers: consul: endpoints: address: 'http://localhost:8500' consul kv put traefik/http/services/www/loadbalancer/servers/0/url "-X PUT -d 'http://usa.lorem-ipsum.io'"
- 29. CODE EDITOR Sleep++ Redirect to other regions curl http://127.0.0.1:8500/v1/query --request POST --data @- << EOF { "Name": "www", "Service": { "Service": "www", "Failover": { "Datacenters": ["us", "eu"] } } } EOF
- 30. CODE EDITOR Sleep++ Redirect to other regions curl http://127.0.0.1:8500/v1/query --request POST --data @- << EOF { "Name": "www", "Service": { "Service": "www", "Failover": { "NearestN": 2, "Datacenters": ["us", "eu"] } } } EOF
- 31. Follow the sun? Follow the moon? Discover nearest? Sleep++ Consul watchers
- 32. Thank You bram@attachmentgenie.com | @attachmentgenie | https://www.slideshare.net/attachmentgenie