Upload
others
View
0
Download
0
Embed Size (px)
Citation preview
PUBLIC SECTOR RED HAT DAYS - VICTORIA
Go Faster: Containers, Platforms and the Path to Better Software Development Paul TurnbullSenior Solutions Architect
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
Agenda
● What is DevOps and what problems does it solve?● What is a container?● Why containers alone are not sufficient● What is a Platform As A Service (PaaS)?● What is Openshift?● The Openshift Architecture● A Local success story● Q & A● Let’s Do Some Labs!!!
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
78%DevOps Adoption Rate 2017
Source: RightScale 2017 State of the Cloud Report
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
THE PROBLEM
Applications require complicated installation and integration every time they are deployed leading to
● Slow service delivery● Reduced service quality● Frequent down times
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
THE PROBLEM
I.T. OPERATIONSDEVELOPERS
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
THE SOLUTION
Adopting a container strategy will allow applications to be easily shared and deployed
● Consistent env and tools● Predictable building blocks● Faster deployment
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
WHAT ARE CONTAINERS?It Depends Who You Ask
● Sandboxed application processes on a shared Linux OS kernel
● Simpler, lighter, and denser than virtual machines
● Portable across different environments
● Package my application and all of its dependencies
● Deploy to any environment in seconds and enable CI/CD
● Easily access and share containerized components
INFRASTRUCTURE APPLICATIONS
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
VIRTUAL MACHINES AND CONTAINERS
VIRTUAL MACHINES CONTAINERS
virtual machines are isolatedapps are not
containers are isolatedso are the apps
VM
OS Dependencies
Kernel
Hypervisor
Hardware
App App App App
Hardware
Container Host (Kernel)
Container
App
OS deps
Container
App
OS deps
Container
App
OS deps
Container
App
OS deps
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
Container Host
Container
Application
OS dependencies
Virtual Machine
Application
OS dependencies
Operating System
VIRTUAL MACHINES AND CONTAINERS
VM IsolationComplete OSStatic ComputeStatic MemoryHigh Resource Usage
Container IsolationShared KernelBurstable ComputeBurstable MemoryLow Resource Usage
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
VIRTUAL MACHINES AND CONTAINERS
Container Host
Container
Application
OS dependencies
Dev
IT OpsInfrastructure
Virtual Machine
Application
OS dependencies
Operating System
IT Ops(and Dev, sort of)
Infrastructure
Clear ownership boundary between Dev and IT Ops drives DevOps adoption
and fosters agility
Optimized for stability
Optimized for agility
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
Virtual machines are NOT portable across hypervisor and do NOT provide portable packaging for applications
APPLICATION PORTABILITY WITH VM
VM Type X
Application
OS dependencies
Operating System
BARE METAL PRIVATE CLOUD PUBLIC CLOUDVIRTUALIZATIONLAPTOP
Application
OS dependencies
Operating System
VM Type Y
Application
OS dependencies
Operating System
VM Type Z
Application
OS dependencies
Operating System
Guest VM
Application
OS dependencies
Operating System
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
APPLICATION PORTABILITY WITH CONTAINERS
LAPTOP
Container
Application
OS dependencies
Guest VM
RHEL
BARE METAL
Container
Application
OS dependencies
RHEL
VIRTUALIZATION
Container
Application
OS dependencies
Virtual Machine
RHEL
PRIVATE CLOUD
Container
Application
OS dependencies
Virtual Machine
RHEL
PUBLIC CLOUD
Container
Application
OS dependencies
Virtual Machine
RHEL
RHEL Containers + RHEL Host = Guaranteed PortabilityAcross Any Infrastructure
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
Base Image
Image Layer 1
Image Layer 2
Image Layer 3
Base RHEL
OS Update Layer
Java Runtime Layer
Application Layer
Container Image Layers Example Container Image
RAPID SECURITY PATCHING USINGCONTAINER IMAGE LAYERING
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
HOST MANAGEMENT
STORAGEPLATFORM
RED HAT CONTAINER SOLUTIONS
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
THE SOLUTION
I.T. OPERATIONSDEVELOPERS
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
DEVOPS WITH CONTAINERS
sourcerepository
CI/CDengine
dev container
physical
virtual
private cloud
public cloud
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
Containerized Apps on Docker Hub
Source: DockerCon 2017 Keynote
900K
Image Pullson Docker Hub
12B
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
35%
Container Adoption Ratein Production
Source: RightScale 2017 State of the Cloud Report
Why The Difference?Interest In Containers Vs Adoption In Production
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
DEVOPS WITH CONTAINERS
?
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
DEVOPS WITH CONTAINERS
?
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
SchedulingDecide where to deploy containers
WE NEED MORE THAN JUST CONTAINERS
Lifecycle and healthKeep containers running despite failures
DiscoveryFind other containers on the network
MonitoringVisibility into running containers
SecurityControl who can do what
ScalingScale containers up and down
PersistenceSurvive data beyond container lifecycle
AggregationCompose apps from multiple containers
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
HOSTEnterprise grade lean operating system for running containers
MANAGEMENTOperational management of containers and infrastructure at scale
STORAGEPersistent storage for stateful containerized applications
PLATFORMAutomation of building, distributing, running and managing containers across hybrid infra
CONTAINER SOLUTIONS
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
OPENSHIFT CONTAINER APPLICATION PLATFORM
● Built for both traditional and cloud-native applications.
● An integrated hybrid cloud application platform for application development and deployment
● Develop, build, and manage container based applications
● Easily turn source code into running applications with source-to-image capabilities
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
BUILT ON OPEN CONTAINER STANDARDS
Red Hat is a top contributoralong with Docker Inc
Red Hat is a top contributoralong with Google
Red Hat Driving the Community
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
Infrastructure Automation & Cockpit
Container Runtime & Packaging(docker)
Enterprise Container Host
Red Hat Enterprise LinuxAtomic Host
Trusted by Fortune Global 500 companies
OPENSHIFT CONTAINER PLATFORM
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
OpenShift Application Lifecycle Management
Infrastructure Automation & Cockpit
Networking Storage Registry Logs & Metrics
Security
Container Orchestration & Cluster Management(kubernetes)
Container Runtime & Packaging(docker)
Enterprise Container Host
Red Hat Enterprise LinuxAtomic Host
Enterprise Kubernetes++container orchestration
Trusted by Fortune Global 500 companies
OPENSHIFT CONTAINER PLATFORM
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
OpenShift Application Lifecycle Management
Build Automation Deployment Automation
Service Catalog(Language Runtimes, Middleware, Databases)
Self-Service
Infrastructure Automation & Cockpit
Networking Storage Registry Logs & Metrics
Security
Container Orchestration & Cluster Management(kubernetes)
Container Runtime & Packaging(docker)
Enterprise Container Host
Red Hat Enterprise LinuxAtomic Host
Developer Experience
Enterprise Kubernetes++container orchestration
Trusted by Fortune Global 500 companies
OPENSHIFT CONTAINER PLATFORM
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
OpenShift Application Lifecycle Management
Build Automation Deployment Automation
Service Catalog(Language Runtimes, Middleware, Databases)
Self-Service
Infrastructure Automation & Cockpit
Container
BusinessAutomation
Container
Integration
Container
Data &Storage
Container
Web &Mobile
Networking Storage Registry Logs & Metrics
Security
Container Orchestration & Cluster Management(kubernetes)
Container Runtime & Packaging(docker)
Enterprise Container Host
Red Hat Enterprise LinuxAtomic Host
Traditional, stateful, and cloud-native apps
Developer Experience
Enterprise Kubernetes++container orchestration
Trusted by Fortune Global 500 companies
OPENSHIFT CONTAINER PLATFORM
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
CrunchyData
GitLab
Iron.io
Couchbase
Sonatype
EnterpriseDB
and many more
...and virtually any docker
image out there!
TRUE POLYGLOT PLATFORM
PHP Python Java NodeJS Perl Ruby .NETCore
ApacheHTTPServer
MySQL Redis
nginx TomcatVarnish
JBossEAP
JBossA-MQ
JBossFuse
JBossBRMS
JBossBPMS
JBossData Grid
JBossData Virt
RH Mobile RH SSO3SCALE
API mgmt
JBossWeb
Server
SpringBoot
Wildfly Swarm Vert.x
PostgreSQL MongoDB
Phusion Passenger
Third-partyLanguage Runtimes
Third-partyDatabases
Third-partyApp
Runtimes
Third-partyMiddleware
Third-partyMiddleware
MS SQL
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
DEVOPS WITH CONTAINERS
Red Hat OpenShift
Red HatGlusterStorage
Red Hat CloudForms
sourcerepository
CI/CDengine
dev container
The Openshift Architecture
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
YOUR CHOICE OF INFRASTRUCTURE
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
NODES RHEL INSTANCES WHERE APPS RUN
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
RHEL
NODE
c
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
C
C
C C
C
C
C CC C
APPS RUN IN CONTAINERS
Container Image
Container
Pod
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
PODS ARE THE UNIT OF ORCHESTRATION
RHEL
NODE
c
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
C
C
C C
C
C
C CC C
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
MASTERS ARE THE CONTROL PLANE
RED HATENTERPRISE LINUX
MASTER
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
RHEL
NODE
RHEL
NODE
RHEL
NODE
API AND AUTHENTICATION
RHEL
NODE
RHEL
NODE
RHEL
NODE
RED HATENTERPRISE LINUX
MASTER
API/AUTHENTICATION
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
RHEL
NODE
RHEL
NODE
RHEL
NODE
DESIRED AND CURRENT STATE
RHEL
NODE
RHEL
NODE
RHEL
NODE
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
RED HATENTERPRISE LINUX
MASTER
API/AUTHENTICATION
DATA STORE
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
INTEGRATED CONTAINER REGISTRY
RHEL
NODE
RHEL
NODE
RHEL
RHEL
NODE
RHEL
NODE
RHEL
RHEL
NODE
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
RED HATENTERPRISE LINUX
MASTER
API/AUTHENTICATION
DATA STORE
NODE
REGISTRY
RHEL
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
ORCHESTRATION AND SCHEDULING
RHEL
NODE
RHEL
NODE
RHEL
RHEL
NODE
RHEL
NODE
RHEL
RHEL
NODE
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
RED HATENTERPRISE LINUX
MASTER
API/AUTHENTICATION
DATA STORE
SCHEDULER
NODE
REGISTRY
RHEL
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
PLACEMENT BY POLICY
RHEL
NODE
RHEL
NODE
RHEL
NODE
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
RED HATENTERPRISE LINUX
MASTER
API/AUTHENTICATION
DATA STORE
SCHEDULERREGISTRY
RHEL
NODE
RHEL
NODE
C
C
RHEL
NODE
c
C
C
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
C
C
RHEL
NODE
c
C
C
AUTOSCALING PODS
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
RED HATENTERPRISE LINUX
MASTER
API/AUTHENTICATION
DATA STORE
SCHEDULERREGISTRY
HEALTH/SCALING
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
SERVICE DISCOVERY
SERVICE LAYER
REGISTRY
RHEL
NODE
C
C
RHEL
NODE
C C
RHEL
NODE
c
C
C
RHEL
NODE
C C
RHEL
NODE
C
RHEL
NODE
CRED HATENTERPRISE LINUX
MASTER
API/AUTHENTICATION
DATA STORE
SCHEDULER
HEALTH/SCALING
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
PERSISTENT DATA IN CONTAINERS
SERVICE LAYER
PERSISTENTSTORAGE
REGISTRY
RHEL
NODE
C
C
RHEL
NODE
C C
RHEL
NODE
c
C
C
RHEL
NODE
C C
RHEL
NODE
C
RHEL
NODE
CRED HATENTERPRISE LINUX
MASTER
API/AUTHENTICATION
DATA STORE
SCHEDULER
HEALTH/SCALING
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
ROUTING AND LOAD-BALANCING
SERVICE LAYER
ROUTING LAYER
PERSISTENTSTORAGE
REGISTRY
RHEL
NODE
C
C
RHEL
NODE
C C
RHEL
NODE
c
C
C
RHEL
NODE
C C
RHEL
NODE
C
RHEL
NODE
CRED HATENTERPRISE LINUX
MASTER
API/AUTHENTICATION
DATA STORE
SCHEDULER
HEALTH/SCALING
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
ACCESS VIA WEB, CLI, IDE AND API
EXISTING AUTOMATION
TOOLSETS
SCM(GIT)
CI/CD
SERVICE LAYER
ROUTING LAYER
PERSISTENTSTORAGE
REGISTRY
RHEL
NODE
C
C
RHEL
NODE
C C
RHEL
NODE
c
C
C
RHEL
NODE
C C
RHEL
NODE
C
RHEL
NODE
CRED HATENTERPRISE LINUX
MASTER
API/AUTHENTICATION
DATA STORE
SCHEDULER
HEALTH/SCALING
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
Province Of British Columbia
A Journey To Containerized Applications
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
The Key Business Challenges
● 27 discrete Ministries
● Small development community (bootique developers in Victoria)
● The need to improve “Speed to market” (6-8 months)
● Monolithic application development (limited/no elasticity)
● Limited/no code sharing
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
The Journey to containerized Applications
● 2014/15 - Detailed review of all major Platform As A Service Offerings (PaaS)
● Focused on OpenShift Origin in 2015 (Opensource version of Openshift)
● February 2016 - Red Hat in joint workshops (business/technical) + Hackathon (100+)
● May-July 2016 piloted POC using virtualized Openshift (VMWARE ESXi, 6-8 apps)
● August 2016 – March 2017 – grew to over 30 projects on the single controlled production env
● March 2017 – Start Phase 2 bare metal Openshift build (targeting 200+ projects)
● Current – 16 Active Dev Teams, 21 production applications, multiple POC apps
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
The Journey to containerized Applications
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
Key Results
● Reduced time to access dev environments from months to minutes
● Enabled self service for developers (GitHub authentication)
● Enabled Elastic infrastructure (# of containers shrink and expand based on demand)
● Able to gain visibility on development languages used/enable better security visibility
● Enabled code sharing between Ministries & Federal Government (all source code is Open Sourced)
● Red Hat Innovator of the year 2017 for “The Open Source Way”
PUBLIC SECTOR RED HAT DAY - VICTORIA - JANUARY 24th, 2018
Reference Material● BC Government Innovator Of The year Video (Youtube)
● https://www.youtube.com/watch?v=Aux0n73gFoU
● BC Developers Exchange “The Cube” Interview Video (Youtube)● https://www.youtube.com/watch?v=p2RykRAHuCM&t=116s
● Openshift Commons Initiative
● https://commons.openshift.org/
● BC Developers Exchange● https://bcdevexchange.org/
● Red Hat Summit 2017 ● https://www.redhat.com/en/summit/2017
Let’s Do Some Labs!!
THANK YOU
plus.google.com/+RedHat
linkedin.com/company/red-hat
youtube.com/user/RedHatVideos
facebook.com/redhatinc
twitter.com/RedHatNews