highly available cross region deployments with kubernetes
play

Highly available cross-region deployments with Kubernetes Bastian - PowerPoint PPT Presentation

Sep 28, 2022 •984 likes •2.39k views

Highly available cross-region deployments with Kubernetes Bastian Hofmann @BastianHofmann Container orchestration platform Deploy, run and scale your services in isolated containers No vendor lock in Standardized APIs Runs on Your laptop

  1. Highly available cross-region deployments with Kubernetes Bastian Hofmann @BastianHofmann

  3. Container orchestration platform

  4. Deploy, run and scale your services in isolated containers

  5. No vendor lock in

  6. Standardized APIs

  7. Runs on

  8. Your laptop

  9. Bare metal

  10. Cloud Providers

  11. And if you don't want to install and maintain Kubernetes yourself

  12. Managed Kubernetes

  14. Self-healing built in

  15. But what happens when a complete datacenter is not available

  16. Multi-Region Kubernetes Setups

  17. Why

  18. Availability

  19. Scalability

  20. More Points-of-Presence

  21. Reduce dependencies on one single cloud provider

  22. Because of the standardised API across providers Kubernetes can help

  23. Features

  24. Scheduling by Node Labels

  25. failure- domain.beta.kubernetes.io/ region=dbl failure- domain.beta.kubernetes.io/ zone=dbl1

  26. Regions vs availability zone

  27. failure- domain.beta.kubernetes.io/ region=dbl failure- domain.beta.kubernetes.io/ zone=dbl1

  28. apiVersion: apps/v1 kind: Deployment metadata: name: nginx spec: template: spec: containers: - image: nginx name: nginx nodeSelector: failure-domain.beta.kubernetes.io/region: dbl

  29. Affinities

  30. spec: affinity: podAntiAffinity: requiredDuringSchedulingIgnoredDuringExecution: - topologyKey: "failure-domain.beta.kubernetes.io/ region" labelSelector: matchLabels: app: nginx

  31. Service discovery with built in DNS

  32. apiVersion: v1 kind: Service metadata: name: nginx spec: type: ClusterIP ports: - port: 80 targetPort: 80 selector: app: nginx

  33. External LoadBalancers

  34. apiVersion: v1 kind: Service metadata: name: nginx spec: type: LoadBalancer ports: - port: 80 targetPort: 80 selector: app: nginx

  35. external-dns

  36. StorageClasses

  37. Some storage providers support dynamic volume provisioning

  38. apiVersion: storage.k8s.io/v1 kind: StorageClass metadata: name: standard provisioner: kubernetes.io/gce-pd parameters: type: pd-standard volumeBindingMode: WaitForFirstConsumer allowedTopologies: - matchLabelExpressions: - key: failure-domain.beta.kubernetes.io/zone values: - us-central1-a - us-central1-b

  39. Challenges

  40. Especially over different regions

  41. External load balancing and traffic management

  42. Internal load balancing

  43. Connectivity between private networks

  44. Kubernetes DNS across multiple clusters

  45. Latencies

  46. Beskow, Paul & Vik, Knut-Helge & Halvorsen, Pål & Griwodz, Carsten. (2009). The partial migration of game state and dynamic server selection to reduce latency. Multimedia Tools Appl.. 45. 83-107. 10.1007/s11042-009-0287-7.

  47. Synchronising Deployments across multiple clusters

  48. Storage

  49. Data replication

  50. Split-brain problem

  51. Possible setups

  52. One cluster across AZs in one region

  53. One cluster across regions

  54. Multiple clusters connected via VPN

  55. One cluster setup

  56. One Kubernetes cluster across multiple availability zones

  57. Zone 1 Zone 2 Kubernetes Master Components Curl Nginx Service Nginx Nginx

  58. Easiest option

  59. Low latencies

  60. You can use one network

  61. All pods and services can talk with each other

  62. One cluster => one internal DNS

  63. Service Discovery and internal load balancing works

  64. External LoadBalancers work

  65. LB Zone 1 Zone 2 Kubernetes Master Components Curl Nginx Service Nginx Nginx

  66. You can mount storage across AZ

  67. One cluster state => One deployment

  68. But what if the whole region is down?

  69. One Kubernetes cluster across multiple regions and VPN connection between networks

  70. Region 1 Region 2 Kubernetes Master Components WireGuard VPN Curl Nginx Service Nginx Nginx

  71. Latencies get higher by distance

  72. You need a VPN to connect the networks

  73. WireGuard as a VPN

  74. https:/ /github.com/squat/kilo

  75. Kilo gets all Nodes from Kubernetes

  76. Discovers regions and zones by Kubernetes Node labels

  77. Configures WireGuard

  78. Routing tables

  79. All pods and services can talk with each other

  80. One cluster => one internal DNS

  81. Service Discovery and internal load balancing works

  82. You need a solution for external load balancing

  83. Region 1 Region 2 LB LB Kubernetes Master Components WireGuard VPN Curl Nginx Service Nginx Nginx

  84. You have to replicate storage yourself

  85. Not every Storage provider supports dynamic volume provisioning

  86. One cluster state => One deployment

  87. Demo

  88. Multi cluster setup

  89. Connecting multiple clusters with a VPN

  90. Cluster 1 Cluster 2 Kubernetes Master Kubernetes Master Components Components WireGuard VPN Curl Nginx Service Nginx Service Nginx Nginx

  91. WireGuard as a VPN

  92. https:/ /github.com/squat/kilo

  93. All pods and services can talk with each other

  94. Separate clusters => separate internal DNS

  95. For service discovery configure each internal DNS to resolve to other clusters

  96. cluster.region2:53 { forward . 10.10.11.10 } .:53 { kubernetes cluster.local cluster.region1 in-addr.arpa ip6.arpa { pods insecure upstream fallthrough in-addr.arpa ip6.arpa } forward . /etc/resolv.conf loop loadbalance }

  97. cluster.region1:53 { forward . 10.10.10.10 } .:53 { kubernetes cluster.local cluster.region2 in-addr.arpa ip6.arpa { pods insecure upstream fallthrough in-addr.arpa ip6.arpa } forward . /etc/resolv.conf loop loadbalance }

  98. Internal load balancing works

  99. You have to replicate storage yourself

  100. Every cluster has their own StorageClass that works on all nodes

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Highly resilient, multi-region Keystone deployments Michael Richardson // 22 May 2018 1 2.1 3

Highly resilient, multi-region Keystone deployments Michael Richardson // 22 May 2018 1 2.1 3

Highly resilient, multi-region Keystone deployments Michael Richardson // 22 May 2018 1 2.1 3 Purpose Caveats SQL-backed deployment All regions are considered equal "Standard" regions, not singular Edge nodes 4 Compute Storage

528 views • 52 slides
Automating MySQL Deployments on Kubernetes Calin Don & Flavius Mecea Presslabs Automating

Automating MySQL Deployments on Kubernetes Calin Don & Flavius Mecea Presslabs Automating

Automating MySQL Deployments on Kubernetes Calin Don & Flavius Mecea Presslabs Automating MySQL Deployments on Kubernetes Percona Live 2018 00. Who are we? Calin Don Flavius Mecea Co-founder & CTO Project Lead @Presslabs

595 views • 40 slides
Ultimate Guide to Successful Cross-Platform Deployments with Apache Ignite Pavel Petroshenko

Ultimate Guide to Successful Cross-Platform Deployments with Apache Ignite Pavel Petroshenko

Ultimate Guide to Successful Cross-Platform Deployments with Apache Ignite Pavel Petroshenko Electric Imp Agenda Apache Ignite Clients Data interoperability in Ignite Binary Client Protocol Cross-platform deployment demo 2

501 views • 13 slides
Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes Overview 1 Airflows integration with Kubernetes 2 Deployment of Airflow on Kubernetes 3 Kubernetes Pod Operator and its benefits 4 DAG Development

2.79k views • 14 slides
Using Cloud Native Technologies to Solve Complex Application Security Challenges in Kubernetes

Using Cloud Native Technologies to Solve Complex Application Security Challenges in Kubernetes

Using Cloud Native Technologies to Solve Complex Application Security Challenges in Kubernetes Deployments Cequence Security: A Cloud Native Approach to Application Security Venture-backed start-up bringing much-needed innovation to

304 views • 17 slides
Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like -

Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like -

Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like - Sec-ish - Ops-y Is this Kubernetes cluster secure? EPIC FAIL GIF How secure is Kubernetes? What this Kubernetes talk is about Common Pwns

1.18k views • 113 slides
Gold exploration in the renowned WA region of Southern Cross I N V E S T O R P R E S E N TAT I O

Gold exploration in the renowned WA region of Southern Cross I N V E S T O R P R E S E N TAT I O

Gold exploration in the renowned WA region of Southern Cross I N V E S T O R P R E S E N TAT I O N MARCH 2020 xantippe.com.au EXECUTIVE SUMMARY A strategic, contiguous ground holding in the gold-rich Southern Cross Greenstone Belt of WA

305 views • 15 slides
Gold exploration in the renowned WA region of Southern Cross I N V E S T O R P R E S E N TAT I O

Gold exploration in the renowned WA region of Southern Cross I N V E S T O R P R E S E N TAT I O

Gold exploration in the renowned WA region of Southern Cross I N V E S T O R P R E S E N TAT I O N MAY 2020 xantippe.com.au EXECUTIVE SUMMARY A strategic, contiguous ground holding in the gold-rich Southern Cross Greenstone Belt of WA

141 views • 13 slides
Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source

Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source

Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source platform designed to automate deploying , scaling , and operating application containers . Kubernetes v1.0 was released in 2015. It utilizes

916 views • 52 slides
K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi @marcoceppi Ryan Beisner @ryanbeisner Why Kubernetes Computing in the modern age Virtual Process Machines Containers Traditional Container

516 views • 24 slides
Red Cross Disaster Communications and the Amateur Radio Community 1 American Red Cross Gold

Red Cross Disaster Communications and the Amateur Radio Community 1 American Red Cross Gold

American Red Cross CA Gold Country Region Red Cross Disaster Communications and the Amateur Radio Community 1 American Red Cross Gold Country Region What you can learn from this presentation: Who is the Red Cross. What the Red Cross

1.32k views • 96 slides
From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang

From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang

From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang Developer Advocate Google Cloud Platform @saturnism | +RayTsang @saturnism @googlecloud #kubernetes Ray Tsang Developer Architect Traveler

1.29k views • 65 slides
Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes

Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes

Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes & Cloud Native Meetups in Jakarta and Bandung https://www.meetup.com/jakarta-kubernetes/ https://www.meetup.com/Microservice-JKT/ You can find

709 views • 47 slides
Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes?

Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes?

@MELANIECEBULA / MARCH 2019 / CON LONDON Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes? @MELANIECEBULA Who am I? A BRIEF HISTORY @MELANIECEBULA Why Microservices? 4000000 3000000 2000000 MONOLITH

1.74k views • 111 slides
Slovenske eleznice, d.o.o. Danube Region Development Cross-border eColaboration Kranj,

Slovenske eleznice, d.o.o. Danube Region Development Cross-border eColaboration Kranj,

Slovenske eleznice, d.o.o. Danube Region Development Cross-border eColaboration Kranj, 21.04.2010 Content 1 Presentation of the Organization from the Cross-border Transactions Perspective 2 Problems & Opportunities In the Current

247 views • 7 slides
Positive Electronic Cross-Correlations in a Highly Transparent Normal-Superconducting Beam

Positive Electronic Cross-Correlations in a Highly Transparent Normal-Superconducting Beam

Positive Electronic Cross-Correlations in a Highly Transparent Normal-Superconducting Beam Splitter Rgis Mlin, Institut NEL, Grenoble May 24, 2012

592 views • 33 slides
Clusters Roble & Acacia Background on Seismic Evaluation requirement Compliance with

Clusters Roble & Acacia Background on Seismic Evaluation requirement Compliance with

EVERGREEN VALLEY COLLEGE Clusters Roble & Acacia Background on Seismic Evaluation requirement Compliance with Field Act and Education Code Seismic Evaluation by Engineer Occupancy Safety District Responsibilities Options

404 views • 17 slides
Regional Clusters of Opportunity Regional Clusters of Opportunity Northern Rural Training &

Regional Clusters of Opportunity Regional Clusters of Opportunity Northern Rural Training &

Regional Clusters of Opportunity Regional Clusters of Opportunity Northern Rural Training & Employment Consortium (NoRTEC) BACKGROUND & BACKGROUND & INTRODUCTION INTRODUCTION NoRTEC Region NoRTEC Region The NoRTEC region is

415 views • 23 slides
TONIGHTS WORK SESSION Community Team Project History Community Outreach Vision Conceptual

TONIGHTS WORK SESSION Community Team Project History Community Outreach Vision Conceptual

TONIGHTS WORK SESSION Community Team Project History Community Outreach Vision Conceptual Plan Next Steps FAQs COMMUNITY TEAM COMMUNITY TEAM Collectively, over 80 years of community building Began work on Independence over 2 years ago

788 views • 32 slides
EFFECTS OF PLY CLUSTERING IN LAMINATED COMPOSITE PLATES UNDER LOW-VELOCITY IMPACT LOADING E.V.

EFFECTS OF PLY CLUSTERING IN LAMINATED COMPOSITE PLATES UNDER LOW-VELOCITY IMPACT LOADING E.V.

18 TH INTERNATIONAL CONFERENCE ON COMPOSITE MATERIALS EFFECTS OF PLY CLUSTERING IN LAMINATED COMPOSITE PLATES UNDER LOW-VELOCITY IMPACT LOADING E.V. Gonzlez 1 *, P. Maim 1 , P.P. Camanho 2 , A. Turon 1 , J. Costa 3 1 Department of Engineering

541 views • 6 slides
A Georgia School of Excellence CHS Counselors Test Your Knowledge Common Misconceptions (Pre

A Georgia School of Excellence CHS Counselors Test Your Knowledge Common Misconceptions (Pre

A Georgia School of Excellence CHS Counselors Test Your Knowledge Common Misconceptions (Pre test) Please type exactly as you see below: http://bit.ly/2E7btdm Meet the Counseling Department Elizabeth Chilson A-Dap Curtisa Johnson

629 views • 34 slides
An Adaptive Design for Survival Studies with Subgroup Selection based on Predictive Biomarkers

An Adaptive Design for Survival Studies with Subgroup Selection based on Predictive Biomarkers

An Adaptive Design for Survival Studies with Subgroup Selection based on Predictive Biomarkers RSS / MRC HTMR Workshop on Stratified Medicine Thomas Hamborg t.hamborg@warwick.ac.uk Warwick Medical School The University of Warwick Funded by

612 views • 46 slides
NASA EEE Parts and NASA Electronic Parts and Packaging (NEPP) Program Update 2018 Kenneth A.

NASA EEE Parts and NASA Electronic Parts and Packaging (NEPP) Program Update 2018 Kenneth A.

NASA EEE Parts and NASA Electronic Parts and Packaging (NEPP) Program Update 2018 Kenneth A. LaBel NEPP Program Manager ken.label@nasa.gov Michael J. Sampson NEPAG Manager michael.j.sampson@nasa.gov Jonathan A. Pellish NASA EEE Parts

607 views • 32 slides
Investor Presentation June 2014 Forward-Looking and Cautionary Statements This presentation

Investor Presentation June 2014 Forward-Looking and Cautionary Statements This presentation

(OTCQX: VYEY) Investor Presentation June 2014 Forward-Looking and Cautionary Statements This presentation contains forward-looking statements within the meaning of Section 21E of the Securities Exchange Act of 1934. All statements, other than

416 views • 24 slides

More recommend