Embed Size (px)
Citation preview
Container as a Service with Docker
Patrick Chanezon, Docker Inc.@chanezon
French
Polyglot
Platforms
Software Plumber
San Francisco
Developer Relations
@chanezon
1995 2015
“The future is already here — it's just not very evenly
distributed”William Gibson, Neuromancer
Docker’s mission is tobuild tools of mass
innovation
Internet (hardware layer)
Servers Desktops Phones Cars Houses Drones
Network equipmen
tPublic transit
TVsIndustri
al facilities
Scientific instrumen
tsFinancial system
Programmers
Internet (software layer)
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
Internet (hardware layer)
Servers Desktops Phones Cars Houses Drones
Network equipmen
tPublic transit
TVsIndustri
al facilities
Scientific instrumen
tsFinancial system
Programmers
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
App
a software layer to program the internet
Cloud Market
PublicHybridPrivate
IT Pros Devops DevelopersArchitects
Linux Container Ecosystem
flockerglusterfs
weavecalicomidokuracisconuage
Cloud
OS
Plugins
Orchestration
The Docker mission
Build Ship Run
Anywhere
Distributed Applications
5
XaaS Pyramid
Platform As A Service
Infrastructure As A Service
SoftwareAs A Service
5
Goldilocks and the 3 XaaS
Just rightToo highToo lowIaaS PaaS CaaS
5
Goldilocks and the 3 XaaS
Platform As A Service
Infrastructure As A Service
SoftwareAs A Service
Too high
Too low
Just right
Container As A Service
5
Goldilocks and the 3 XaaS
Container As A Service
Infrastructure As A Service
SoftwareAs A Service
Docker Containers as a Service (CaaS)An IT managed and secure application content and infrastructure where developers can self service build and deploy applications
The Docker Journey: The Power of AND
To run these Dockerized applications in production, teams need to secure and manage the infrastructure,
apps and service levels
Control
Speed and simplicity are the #1 drivers leading developers
to try Docker
Agility
By default, the Docker technology, gives apps
(containers) portability across environments
Portability
Continuous IntegrationPre-production environments deliver only 50%
of the Docker value
Docker Containers as a Service (CaaS)
Lessons learned: Avoid these pitfalls
12
3
Developers don’t adopt locked down systems
Existing “end to end” solutions break the Docker experience
Beware of lock-in and loss of portability
Let’s Play: Where’s Whaledo
in Google Container Engine?$ docker build -t gcr.io/${PROJECT_ID}/hello-node .$ gcloud docker push gcr.io/${PROJECT_ID}/hello-node$ gcloud container clusters create hello-world \ --num-nodes 1 \ --machine-type g1-small$ kubectl run hello-node --image=gcr.io/$
{PROJECT_ID}/hello-node --port=8080$ kubectl get services hello-node$ kubectl scale rc hello-node --replicas=3
https://cloud.google.com/container-engine/docs/tutorials/hello-node
in Kubernetes?
in EC2 Container Service?$ ecs-cli up --keypair id_rsa --capability-iam \—size 2 --instance-type t2.medium
create a compose file
$ ecs-cli compose --file hello-world.yml up$ ecs-cli ps$ ecs-cli compose --file hello-world.yml scale 2$ ecs-cli compose --file hello-world.yml service up
http://docs.aws.amazon.com/AmazonECS/latest/developerguide/ECS_CLI_tutorial.html
in Red Hat?$ ./openshift kube apply -c docker-registry-config.jsonOpenShift relies on the concept of Builds to turn your
application source into a runnable Docker image$ ./openshift kube create buildConfigs -c application-
buildconfig.json$ curl -s -A "GitHub-Hookshot/github" -H "Content-
Type:application/json" -H "X-Github-Event:push" -d @github-webhook-example.json http://localhost:8080/osapi/v1beta1/buildConfigHooks/build100/secret101/github$ ./openshift kube process -c application-template.json |
./openshift kube apply -c -
https://blog.openshift.com/openshift-v3-deep-dive-docker-kubernetes/
in Red Hat?
https://blog.openshift.com/openshift-v3-deep-dive-docker-kubernetes/
in Pivotal Cloud Foundry?$cf api --skip-ssl-validation api.bosh-lite.com$cf auth admin admin$cf create-org diego$cf target -o diego$cf create-space diego$cf target -s diego$cf push my-app --no-start$cf start my-app
https://github.com/cloudfoundry-incubator/diego-release
in Pivotal Cloud Foundry?
runC
The Docker CaaS Platform
BUILD SHIP RUN
Docker Toolbox
Docker Trusted Registry Docker UCP
Docker Hub Docker Tutum
Developer Workflows Secure Content and Collaboration Deploy, Manage, Scale
Developers IT Operations
BUILDDeveloper Workflows
SHIPSecure Content & Collaboration
RUNDeploy, Manage, Scale
Docker CaaS Platform
Docker Containers as a Service platform
BUILDDeveloper Workflows
SHIPRegistry Services
RUNManagement
Docker Toolbox
Docker Trusted Registry
Docker Universal Control Plane
Docker Hub Docker Cloud
Docker Engine
Ecosystem Plugins and Integrations
Characteristics of a CaaS: The Power of AND
Address needs of developers and IT ops
Support all stages in application lifecycle
Any language
Any operating system
Any infrastructure
Open APIs and pluggable architecture
Broad ecosystem support
Docker CaaS enables key initiatives
Continuous Integration
DevOps
Developer Self Service
Data PipelinesMicroservices Continuous Delivery
Containerization
Hybrid Cloud Multi Cloud
Use Case: Decentralized CaaS for hybrid and multi cloud portability
Private datacenter for regulated apps
Central Portal
• Provision resources
• RBAC to VPC / datacenter
• Trusted Registry hosted application templates
Cloud for all other apps
VPC 1 VPC2
App 1 App 2 App
App 1 App 2 App
Cloud Portability
App Portability
Use Case: Centralized CaaS for transformation to DevOps and micro services
After
Authorization
App Registration
Session Management
Marketplace Integration
Logging
…more
Trusted Registry App Service App Service
App A App B
Auth
…more
App Reg
Marketplace
Logging
Auth
Session
…more
App Reg
Logging
Before
App TeamsApp BAuth
App Reg Marketplace
Logging
App Service
Universal Control Plane
App AAuth
App Reg Marketplace
Logging
App Service
App BAuth
App Reg Marketplace
Logging
App Service
App AAuth
App Reg Marketplace
Logging
App Service
Portability
Demos
• Docker Swarm, Compose and networking• docker 1.10• swarm 1.1.0• compose 1.6.0 with networking
Spring Boot App using MongoDB
https://github.com/joshlong/spring-dogehttps://github.com/chanezon/docker-tips/orchestration-networking
THANK YOU
Let’s Dockerize a Neo4J App
https://github.com/neo4j-examples/movies-java-spring-data-neo4j-4
• Service Discovery• https://github.com/gliderlabs/registrator• https://github.com/hashicorp/consul-template• https://github.com/ehazlett/interlock
• Persistent volumes with Swarm and Rex Ray on AWS• http://blog.emccode.com/2015/11/03/use-docker-swarm-with-
a-data-persistence-layer/• https://github.com/emccode/rexray
• Kubernetes on Swarm• https://github.com/docker/swarm-frontends
Orchestration projects
• IPVS, Andrey Sibiryov, http://www.slideshare.net/Docker/kernel-load-balancing-for-docker-containers-using-ipvs
• DNS Service Discovery for Docker Swarm, Ahmet Alp Balkan, http://www.slideshare.net/Docker/dns-service-discovery-for-docker-swarm
Load Balancing
• Spring Boot, MongoDB, compose, swarm, networking• https://github.com/joshlong/spring-doge• https://github.com/chanezon/docker-tips/orchestration-
networking• Java EE 7 / Angular App with Docker Swarm by @mgreau
Compose for build and deploy, Wildfly, Apache, Angular, Mysql, Redis, batch and API apps• https://github.com/mgreau/docker4dev-tennistour-app
• Java EE Docker & Kubernetes by @arun-gupta• https://github.com/javaee-samples/docker-java
Java Examples
• Docs https://docs.docker.com/engine/userguide/networking/dockernetworks/
• Create a Swarm cluster with networking https://github.com/chanezon/docker-tips/orchestration-networking
• Networking in compose https://github.com/docker/compose/blob/master/docs/networking.md
• Nathan Leclaire Seamless Docker Multihost Overlay Networking on DigitalOcean With Machine, Swarm, and Compose, RethinkDB http://nathanleclaire.com/blog/2015/11/17/seamless-docker-multihost-overlay-networking-on-digitalocean-with-machine-swarm-and-compose-ft.-rethinkdb/
Docker networking
• Using Ansible with Docker Machine to Bootstrap Host Nodes http://nathanleclaire.com/blog/2015/11/10/using-ansible-with-docker-machine-to-bootstrap-host-nodes/
• Seamless Docker Multihost Overlay Networking on DigitalOcean With Machine, Swarm, and Compose, RethinkDB http://nathanleclaire.com/blog/2015/11/17/seamless-docker-multihost-overlay-networking-on-digitalocean-with-machine-swarm-and-compose-ft.-rethinkdb/
Nathan’s tips
