Platform as a Service with Kubernetes and Mesos

Platform as a Service

Kubernetes/Mesos + Openstack

Miguel Zunigaabout.me/miguelzunigaFreenode miguelzuniga

Agenda

• Design your Platform

• Architecture

• Managing Resources

• Managing Containers

• High Availability

• Security

• Design your Platform Services

• Rolling out new services

• Questions

Design your Platform

• Who will be your users/customers?– Developers / Architects / Ops – Customers

• Identify workloads and applications– CPU / Memory / IO – Stateful or Stateless

• How secure do you need to be?– Multi-tenant– Network Isolation

• Multi Cloud? Multi Datacenter? Hybrid?

Architecture

Architecture – Mesos + Openstack

Architecture – Kubernetes + Openstack

Architecture – Kubernetes/Mesos + Openstack

Managing your Resources

• Resource management is done by mesos framework.

• All the kubernetes components run as marathon tasks.

• All the pods/containers are run as mesos tasks.

• Mesos can manage either VM or Physical Servers.

Managing your Containers

• Kubernetes takes care of Pod / Replica and Service Orchestration.

• Each pod and its respective containers are created by the mesos KM executor.

• Users can interact with Kubernetes either by CLI or API.

• Kubernetes maintains containers in replica controllers running constantly.

High Availability

Mesos Kubernetes Kubernetes / Mesos

• Use Marathon to keep containers up and running

• Requires external LB (hardware or software) to balance across containers.

• HA for kubernetes componentes is out of scope.

• Replicas controllers to keep pods and containers up and running

• Kube Proxy takes care of load balancing

• HA for kubernetes components is managed by mesos and marathon.

• HA for pods is handle by replicas.

• Load balancing can be done with External LB (i.e. haproxy) or kube-proxy.

Security

• Network Security is provided by SDN isolation.

• Provision mesos-kubernetes cluster by project or user.

• Run docker with SE Linux enabled (RHEL based).

• Enable Iptables Drop policy by default on each mesos slave.

Design your Platform Services

• Think of cattle.

• Think of processes not VMs.

• VM or Container?

• Complexity of access… To many jumps?

• You have Marathon… Use it.

• Use a private docker registry.

• Microservices? What is that?

• Your PaaS, even when is generic enough, is not a silver bullet.

Rolling out new services

• Use a private docker registry to track the container images required for each application/process stack.

• Create a level of abstraction (UI) easy to use for your users.

• Manage clustered services with Marathon.

• Remember containers are processes… not condensed VM’s.

• Use CICD to create new versions of your containers.

• OSS – Continuous + Strategos

Links and References

• Continuous http://github.com/symantec/continuous

• Strategos available June 30 http://strategos.io

• Kubernetes http://kubernetes.io

• Mesos http://mesos.apache.org/

• Marathon https://mesosphere.github.io/marathon/

Thank you!

Copyright © 2014 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice.

Miguel ZunigaTwitter @mikezuniga Freenode miguelzunigaGoogle plus +MiguelZuniga

Questions?

Platform as a Service with Kubernetes and Mesos

Technology

Containers and Kubernetes - GaeBlogX...Kubernetes Apache Mesos Docker Google Cloud Training and Certification Why Developers Care? “Separation of code and compute” Consistency

Viadeos Segmentation platform with Spark on Mesos

WITH SWARM MODE, MESOS/MARATHON AND KUBERNETES

KUBERNETES APACHE MESOS...Kubernetes, and Mesos all have fundamentally different functionality. Mesos doesn’t care what is running on top of it. Mesos can run any microservice, container,

Better together: OpenStack and Kubernetes...allows self-service provisioning of container orchestration engines like Kubernetes, Docker Swarm and Mesos on top of VMs or bare metal

Docker, Kubernetes, and Mesos recipes for Java developers

A brief primer of Mesos and the container orchestrators ...€¦ · Apache Mesos and Kubernetes are often compared directly to each other as container orchestrators, but they were

Deploying NGINX Plus & Kubernetes on Google Cloud Platform

Container and Kubernetes 101 - EventKaddy CMS · Container and Kubernetes 101 for vSphere Admins Robbie Jerrom, Tech. Lead – Applications Transformation NEMEA ... Docker, Mesos

PuppetConf 2016: Docker, Mesos, Kubernetes and...Puppet? Don't Panic! – Deepak Giridharagopal, Puppet

Kubernetes Superpower - QCon San Francisco · Kubernetes Superpower @SarahNovotny, Open Source Strategy Google Cloud Platform. Google Cloud Platform 2. ... Meetup Members Worldwide

Musings on Mesos: Docker, Kubernetes, and Beyond

HA Kubernetes on Mesos / Marathon

Scaling Jenkins with Docker: Swarm, Kubernetes or Mesos?

Running Apache Airflow reliably with Kubernetes · Kubernetes, Mesos, Spark, etc. Immutable infrastructure ... Airflow is a highly-available, mission-critical service Automated Airflow

Building a Global-Scale Multi- Tenant Cloud Platform on AWS and Docker… · 2020-06-05 · Container Cloud Platforms: Google Kubernetes Apache Mesos Docker Swarm Amazon Elastic Container

Google Cloud Platform and Kubernetes

SWARM, KUBERNETES OR MESOS? - cloudbees.com

Digital Transformation platform...container management App Catalog Helm Orchestration Compose, Kubernetes, Marathon Scheduling Swarm, Kubernetes, Mesos Monitoring cAdvisor, Sysdig,

Using Ceph for persistent storage on a Kubernetes platform