deployment strategies on kubernetes
play

Deployment Strategies on Kubernetes By Etienne Tremel Software - PowerPoint PPT Presentation

Mar 22, 2024 •206 likes •822 views

Deployment Strategies on Kubernetes By Etienne Tremel Software engineer at Container Solutions @etiennetremel February 13th, 2017 Agenda Kubernetes in brief Look at 6 different strategies Recreate Ramped Blue/Green

  1. Deployment Strategies on Kubernetes By Etienne Tremel Software engineer at Container Solutions @etiennetremel February 13th, 2017

  2. Agenda Kubernetes in brief • Look at 6 different strategies • Recreate • Ramped • Blue/Green • Canary • A/B Testing • Shadow • Sum-up • Next • 2

  3. Kubernetes in brief Deployments, replica-sets, pods and services 3

  4. Kubernetes in brief Advanced routing using Ingress Ingress controllers: - Nginx - HA Proxy - Traefik - Istio - Linkerd - GKE - etc. 4

  5. Kubernetes in brief Configuration Deployment configuration: Service configuration: Ingress configuration: apiVersion: apps/v1 kind: Service apiVersion: extensions/v1beta1 kind: Deployment apiVersion: v1 kind: Ingress metadata: metadata: metadata: name: nginx-deployment name: my-service name: my-ingress Deployment labels: spec: annotations: app: nginx selector: kubernetes.io/ingress.class: nginx spec: app: nginx spec: replicas: 3 ports: rules: selector: - protocol: TCP - host: foo.bar.com matchLabels: port: 80 http: ReplicaSet app: nginx targetPort: 9376 paths: template: - path: /foo metadata: backend: labels: serviceName: my-service app: nginx servicePort: 80 spec: - path: /bar containers: backend: Pod - name: nginx serviceName: my-other-service image: nginx:1.7.9 servicePort: 80 ports: - containerPort: 80 5

  6. Deployment strategies Recreate native • Ramped native • Blue/Green extra step needed • Canary extra step needed • A/B Testing require additional component • Shadow require additional component • Get your hands on: https://github.com/ContainerSolutions/k8s-deployment-strategies 6

  7. Recreate 7

  8. Recreate In this case [LB] is a Kubernetes Service 8

  9. Recreate In this case [LB] is a Kubernetes Service 9

  10. Recreate In this case [LB] is a Kubernetes Service 10

  11. Recreate In this case [LB] is a Kubernetes Service 11

  12. Recreate [...] kind: Deployment spec: replicas: 3 $ kubectl apply -f ./manifest.yaml strategy: type: Recreate [...] 12

  13. Recreate Pattern of the traffic during a release Service unavailable 13

  14. Recreate Pros: • easy to setup Cons: • high impact on the user, expect downtime that depends on both shutdown and boot duration of the application 14

  15. Ramped aka incremental, rolling update 15

  16. Ramped - aka Incremental, Rolling In this case [LB] is a Kubernetes Service 16

  17. Ramped - aka Incremental, Rolling In this case [LB] is a Kubernetes Service 17

  18. Ramped - aka Incremental, Rolling In this case [LB] is a Kubernetes Service 18

  19. Ramped - aka Incremental, Rolling In this case [LB] is a Kubernetes Service 19

  20. Ramped - aka Incremental, Rolling In this case [LB] is a Kubernetes Service 20

  21. Ramped - aka Incremental, Rolling [...] kind: Deployment spec: replicas: 3 strategy: type: RollingUpdate rollingUpdate: maxSurge: 2 # how many pods we can add at a time maxUnavailable: 0 # maxUnavailable define how many pods can be # unavailable during the rolling update [...] $ kubectl apply -f ./manifest.yaml 21

  22. Ramped - aka Incremental, Rolling Pattern of the traffic during a release 22

  23. Ramped - aka Incremental, Rolling Pros: • easy to use • version is slowly released across instances • convenient for stateful applications that can handle ongoing rebalancing of the data Cons: • rollout/rollback can take time • no control over traffic 23

  24. Blue/Green aka red/black 24

  25. Blue/Green - aka Red/Black 25

  26. Blue/Green - aka Red/Black 26

  27. Blue/Green - aka Red/Black 27

  28. Blue/Green - aka Red/Black 28

  29. Blue/Green - aka Red/Black Single service deployment [...] kind: Service spec: # Note here that we match both the app and the version. # When switching traffic, update the label “version” with # the appropriate value, ie: v2.0.0 selector: app: my-app version: v1.0.0 [...] $ kubectl apply -f ./manifest-v2.yaml $ kubectl patch service my-app -p \ '{"spec":{"selector":{"version":"v2.0.0"}}}' $ kubectl delete -f ./manifest-v1.yaml 29

  30. Blue/Green - aka Red/Black To rollout multiple services at once, use Ingress [...] [...] [...] kind: Service kind: Service kind: Ingress metadata: metadata: spec: name: login-v2 name: cart-v2 rules: spec: spec: - host: login.domain.com selector: selector: http: app: login app: cart paths: version: v2.0.0 version: v2.0.0 - backend: [...] [...] serviceName: login-v2 servicePort: 80 - host: cart.domain.com http: paths: - backend: $ kubectl apply -f ./manifest-v2.yaml serviceName: cart-v2 $ kubectl apply -f ./ingress.yaml servicePort: 80 $ kubectl delete -f ./manifest-v1.yaml [...] 30

  31. Blue/Green - aka Red/Black Pattern of the traffic during a release 31

  32. Blue/Green - aka Red/Black Pros: • instant rollout/rollback good fit for front-end that load versioned assets from the same server • dirty way to fix application dependency hell • Cons: • expensive as it requires double the resources • proper test of the entire platform should be done before releasing to production 32

  33. Canary 33

  34. Canary 34

  35. Canary 35

  36. Canary 36

  37. Canary 37

  38. Canary [...] [...] [...] kind: Service kind: Deployment kind: Deployment metadata: metadata: metadata: name: my-app name: my-app-v1 name: my-app-v2 spec: spec: spec: selector: replicas: 9 replicas: 1 app: my-app template: template: [...] labels: labels: app: my-app app: my-app version: v1.0.0 version: v2.0.0 [...] [...] $ kubectl apply -f ./manifest-v2.yaml $ kubectl scale deploy/my-app-v2 --replicas=10 $ kubectl delete -f ./manifest-v1.yaml 38

  39. Canary Example of shifting traffic based on weight (percentage) using Istio [...] kind: RouteRule metadata: name: my-app spec: destination: $ kubectl apply -f ./manifest-v2.yaml name: my-app $ kubectl apply -f ./routerule.yaml route: - labels: version: v1.0.0 weight: 90 # 90% traffic - labels: version: v2.0.0 weight: 10 # 10% traffic [...] 39

  40. Canary Pattern of the traffic during a release 40

  41. Canary Pros: • version released for a subset of users • convenient for error rate and performance monitoring • fast rollback Cons: • slow rollout • sticky sessions might be required • precise traffic shifting would require additional tool like Istio or Linkerd 41

  42. A/B Testing 42

  43. A/B Testing 43

  44. A/B Testing 44

  45. A/B Testing 45

  46. A/B Testing Possible conditions: - Geolocalisation - Language - Cookie - User Agent (device, OS, etc.) - Custom Header - Query parameters 46

  47. A/B Testing Example of shifting traffic based on request Headers using Istio [...] [...] kind: RouteRule kind: RouteRule metadata: metadata: name: my-app-v1 name: my-app-v2 spec: spec: destination: destination: $ kubectl apply -f ./manifest-v2.yaml name: my-app name: my-app $ kubectl apply -f ./routerule.yaml route: route: - labels: - labels: version: v1.0.0 version: v2.0.0 match: match: request: request: headers: headers: x-api-version: x-api-version: exact: "v1.0.0" exact: "v2.0.0" [...] [...] 47

  48. A/B Testing Pattern of the traffic during a release 48

  49. A/B Testing Pros: • several versions run in parallel • full control over the traffic distribution • great tool that can be used for business purpose to improve conversion Cons: • requires intelligent load balancer (Istio, Linkerd, etc.) • hard to troubleshoot errors for a given session, distributed tracing becomes mandatory 49

  50. Shadow aka Mirrored, Dark 50

  51. Shadow - aka Mirrored, Dark 51

  52. Shadow - aka Mirrored, Dark 52

  53. Shadow - aka Mirrored, Dark 53

  54. Shadow - aka Mirrored, Dark 54

  55. Shadow - aka Mirrored, Dark Example of mirroring traffic using Istio [...] kind: RouteRule spec: destination: name: my-app route: - labels: $ kubectl apply -f ./manifest-v2.yaml version: v1.0.0 $ kubectl apply -f ./routerule.yaml weight: 100 - labels: version: v2.0.0 weight: 0 mirror: name: my-app-v2 labels: version: v2.0.0 [...] 55

  56. Shadow - aka Mirrored, Dark Pattern of the traffic during a release 56

  57. Shadow - aka Mirrored, Dark Pros: • performance testing of the application with production traffic • no impact on the user • no rollout until the stability and performance of the application meet the requirements Cons: • complex to setup • expensive as it requires double the resources • not a true user test and can be misleading • requires mocking/stubbing service for certain cases 57

  58. Sum-up recreate if downtime is not a problem • recreate and ramped doesn’t require any extra step (kubectl apply is enough) • ramped and blue/green deployment are usually a good fit and easy to use • blue/green is a good fit for front-end that load versioned assets from the same server • blue/green and shadow can be expensive • canary and a/b testing should be used if little confidence on the quality of the release • canary , a/b testing and shadow might require additional cluster component • 58

  59. Sum-up 59

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes Overview 1 Airflows integration with Kubernetes 2 Deployment of Airflow on Kubernetes 3 Kubernetes Pod Operator and its benefits 4 DAG Development

2.79k views • 14 slides
Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie

Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie

Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie and Joe Beda 2/3rds of a pod Connaissez-vous Kubernetes? Kubernetes is an open-source system for automating deployment, scaling, and

747 views • 63 slides
Tales Of The Kubernetes Ingress Networking: Deployment Patterns For External Load Balancers 1

Tales Of The Kubernetes Ingress Networking: Deployment Patterns For External Load Balancers 1

Tales Of The Kubernetes Ingress Networking: Deployment Patterns For External Load Balancers 1 How To Access The Slides? Slides (HTML): https://containous.github.io/slides/webinar-cncf-jan-2020 Slides (PDF):

1.02k views • 49 slides
JUG Bern Real World Kubernetes Agenda - Introduction Agenturclient - Architecture

JUG Bern Real World Kubernetes Agenda - Introduction Agenturclient - Architecture

JUG Bern Real World Kubernetes Agenda - Introduction Agenturclient - Architecture Agenturclient - Kubernetes Deployment - HA-Setup - Demo - Istio Introduction Florian Lscher Software Engineer and Co-Founder Skills CV Solution

1.48k views • 70 slides
JUG Real World Kubernetes Agenda - Introduction Agenturclient - Architecture Agenturclient

JUG Real World Kubernetes Agenda - Introduction Agenturclient - Architecture Agenturclient

JUG Real World Kubernetes Agenda - Introduction Agenturclient - Architecture Agenturclient - Kubernetes Deployment - HA-Setup - Demo - Istio Introduction Florian Lscher Solution Architect and Co-Founder Skills CV Solution

845 views • 70 slides
Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like -

Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like -

Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like - Sec-ish - Ops-y Is this Kubernetes cluster secure? EPIC FAIL GIF How secure is Kubernetes? What this Kubernetes talk is about Common Pwns

1.18k views • 113 slides
Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source

Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source

Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source platform designed to automate deploying , scaling , and operating application containers . Kubernetes v1.0 was released in 2015. It utilizes

916 views • 52 slides
K8s Intermediate Kubernetes a clustered container orchestration Software an open-source system

K8s Intermediate Kubernetes a clustered container orchestration Software an open-source system

K8s Intermediate Kubernetes a clustered container orchestration Software an open-source system for automating deployment, scaling, and management of containerized applications. It groups containers that make up an application into logical units

566 views • 45 slides
K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi @marcoceppi Ryan Beisner @ryanbeisner Why Kubernetes Computing in the modern age Virtual Process Machines Containers Traditional Container

516 views • 24 slides
From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang

From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang

From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang Developer Advocate Google Cloud Platform @saturnism | +RayTsang @saturnism @googlecloud #kubernetes Ray Tsang Developer Architect Traveler

1.29k views • 65 slides
Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes

Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes

Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes & Cloud Native Meetups in Jakarta and Bandung https://www.meetup.com/jakarta-kubernetes/ https://www.meetup.com/Microservice-JKT/ You can find

709 views • 47 slides
Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes?

Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes?

@MELANIECEBULA / MARCH 2019 / CON LONDON Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes? @MELANIECEBULA Who am I? A BRIEF HISTORY @MELANIECEBULA Why Microservices? 4000000 3000000 2000000 MONOLITH

1.74k views • 111 slides
StarlingX Hardened Managed Kubernetes Platform for the Edge BRENT ROWSELL STARLINGX TSC

StarlingX Hardened Managed Kubernetes Platform for the Edge BRENT ROWSELL STARLINGX TSC

StarlingX Hardened Managed Kubernetes Platform for the Edge BRENT ROWSELL STARLINGX TSC MEMBER GREG WAINES STARLINGX CORE BART WENSLEY STARLINGX CORE STARLINGX.IO Agenda Architecture Overview Deployment Models Day 1/Day

225 views • 19 slides
Automated Canaries with Prometheus, Kubernetes and Service Mesh Bryan Boreham

Automated Canaries with Prometheus, Kubernetes and Service Mesh Bryan Boreham

Automated Canaries with Prometheus, Kubernetes and Service Mesh Bryan Boreham @bboreham https://weave.works @weaveworks 1 Canary Deployment Stages https://github.com/weaveworks/flagger Thank You! Weaveworks

301 views • 5 slides
Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop R U Ready? This is my vest this is my CORE. These are all of the things I need as a Marine to be successful during this deployment: Who

453 views • 34 slides
Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop R U Ready? This is my vest this is my CORE. These are all of the things I need as a Marine to be successful during this deployment: Who

426 views • 25 slides
The Affordable Care Act (aka Obamacare) and the New Insurance Marketplace: Help is Available NEW

The Affordable Care Act (aka Obamacare) and the New Insurance Marketplace: Help is Available NEW

The Affordable Care Act (aka Obamacare) and the New Insurance Marketplace: Help is Available NEW OPTIONS AVAILABLE FOR CONSUMER 2 ASSISTANCE Where can people go for help enrolling in the NY State of Health? The NY State of Health will

510 views • 12 slides
to Performance Standards aka Benchmarks Mary Jane K. DiMattio, PhD, RN 2017 Intersession

to Performance Standards aka Benchmarks Mary Jane K. DiMattio, PhD, RN 2017 Intersession

An Introduction to Performance Standards aka Benchmarks Mary Jane K. DiMattio, PhD, RN 2017 Intersession Assessment Institute Learning Outcomes At the conclusion of todays presentation, the participant will: o Define local

398 views • 12 slides
Outings Committee Presentation Explore, enjoy and protect the planet Innings educational

Outings Committee Presentation Explore, enjoy and protect the planet Innings educational

Outings Committee Presentation Explore, enjoy and protect the planet Innings educational meetings Newsletter Take action Conservation Membership Please stay muted throughout the presentation Navigating Zoom

586 views • 25 slides
Loan Guaranty Service (aka VA Home Loan Program) Presented by: Sharvon Jackson Assistant Loan

Loan Guaranty Service (aka VA Home Loan Program) Presented by: Sharvon Jackson Assistant Loan

MBAs Risk Management, Quality Assurance & Fraud Prevention Forum 2017 Loan Guaranty Service (aka VA Home Loan Program) Presented by: Sharvon Jackson Assistant Loan Production Officer & Alberto Planas Assistant Director of Oversight

188 views • 14 slides
CONSTRUCTA BUILDERS CONSTRUCTA BUILDERS ( A.K.A. LEMBONGHOUSE ) ( A.K.A. LEMBONGHOUSE )

CONSTRUCTA BUILDERS CONSTRUCTA BUILDERS ( A.K.A. LEMBONGHOUSE ) ( A.K.A. LEMBONGHOUSE )

CONSTRUCTA BUILDERS CONSTRUCTA BUILDERS ( A.K.A. LEMBONGHOUSE ) ( A.K.A. LEMBONGHOUSE ) Overview 36 Years in the Business Currently Have More Than 160 Houses in South Jakarta Mostly located inside our 10 Complexes, Few Outside the

464 views • 9 slides
Project Scheduling Ronald (Ron) D. Allen, Sr., PE, CPM Schedule Management Office (SMO)

Project Scheduling Ronald (Ron) D. Allen, Sr., PE, CPM Schedule Management Office (SMO)

Project Scheduling Ronald (Ron) D. Allen, Sr., PE, CPM Schedule Management Office (SMO) Project Setup New Schedule Form NEW Assignment PreCon STaRS MAINTAIN 5 Year Work Program & REPORT Past Due Report

465 views • 42 slides
Healthcare Data Privacy on the Cloud (AKA How can we use a public cloud for patient health

Healthcare Data Privacy on the Cloud (AKA How can we use a public cloud for patient health

Healthcare Data Privacy on the Cloud (AKA How can we use a public cloud for patient health records?) Kunwadee Sripanidkulchai, Ph.D. Head of Healthcare Systems and Data Analytics Lab (HDA), NECTEC 1 kunwadee (AT) nectec.or.th Around 2011, we

415 views • 18 slides
DEPARTMENT OF THE DISTRICT ATTORNEY Presenter: Patty Perlow Department Overview Mission: Strive

DEPARTMENT OF THE DISTRICT ATTORNEY Presenter: Patty Perlow Department Overview Mission: Strive

DEPARTMENT OF THE DISTRICT ATTORNEY Presenter: Patty Perlow Department Overview Mission: Strive to improve public safety and quality of life by prosecuting the guilty, protecting the innocent, securing appropriate support for children and

476 views • 13 slides

More recommend