qcon 2015 uma abordagem pr tica ao lxc
play

QCON 2015 Uma abordagem prtica ao LXC UOLHOST Marcus Vincius - PowerPoint PPT Presentation

Dec 12, 2022 •11 likes •261 views

QCON 2015 Uma abordagem prtica ao LXC UOLHOST Marcus Vincius Soares mvc_msoares@uolinc.com Agenda Motivao LXC GO Dicas Perguntas e Respostas Complexidade Atual Complexidade atual (e crescendo) CAOS Version

  1. QCON 2015 Uma abordagem prática ao LXC UOLHOST Marcus Vinícius Soares mvc_msoares@uolinc.com

  2. Agenda • Motivação • LXC • GO • Dicas • Perguntas e Respostas

  3. Complexidade Atual

  4. Complexidade atual (e crescendo)

  5. CAOS • Version spawn • DEV / QA / Pre-Prod / Prod • Continuos Integration • Continuous Deployment

  6. História • Virtualização • Servidores • Rede • Storage • Aplicações – BINGO!!!

  7. Virtualização de Servidores • Benefícios amplamente conhecidos • Mas.... – Tempo de provisionamento – Quantidade de VM's – Provisionamento Dinâmico – HPC performance – Burocracia interna

  8. LXC – LinuX Containers • Idéia não é nova : Jail / Zones / IBM / HP Modelo Tradicional com Máquina Virtual LXC Style

  9. LXC • “Cgroups on steroids” • Ligthweight • Agilidade e Flexibilidade • Compartimentação • Open source / Custo • Larga adoção • HPC ready • Cloud stlye • Kernel Version

  10. LXC Kernel Namespaces Seccomp Cgroups policies LXC AppArmor chroot & SELinux

  11. LXC Sistema Tunnable blkio - Weighted proportional block I/O access. Group wide or per device. - Per device hard limits on block I/O read/write specified as bytes per second or IOPS per second. cpu - Time period (microseconds per second) a group should have CPU access. - Group wide upper limit on CPU time per second. - Weighted proportional value of relative CPU time for a group. cpuset - CPUs (cores) the group can access. - Memory nodes the group can access and migrate ability. - Memory hardwall, pressure, spread, etc. devices - Define which devices and access type a group can use. freezer - Suspend/resume group tasks. memory - Max memory limits for the group (in bytes). - Memory swappiness, OOM control, hierarchy, etc.. hugetlb - Limit HugeTLB size usage. - Per cgroup HugeTLB metrics. net_cls - Tag network packets with a class ID. - Use tc to prioritize tagged packets. net_prio - Weighted proportional priority on egress traffic (per interface).

  12. LXC – Colocando para Funcionar • Como fazer um server funcionar? – Instalar os pacotes – Config (rede / fs / memória / processador ) – RootFS ( images ) – LXC Tools

  13. LXC – Pacotes • RPM Based (Centos/RedHat etc) – yum install libvirt libvirt-client python-virtinst • Deb Based (Debian / Ubuntu / etc) – sudo apt-get install lxc • Enable cgroups – none /cgroup cgroup defaults 0 0

  14. LXC – Config • Configurações dos recursos utilizados pelo container – Rede – Rootfs – Limitações – Mount binds – Segurança

  15. LXC – Cgroups pseudofs

  16. LXC – Config • • lxc.tty = 1 lxc.network.0.type = veth • • lxc.utsname = b:u:inthosp:1 lxc.network.0.flags = up • • lxc.pivotdir = mnt lxc.network.0.link = br0 • • lxc.rootfs = lxc.network.0.name = eth1 /opt/phoenix/var/slot/b-u- • lxc.network.0.mtu = 1500 inthosp-1/rootfs • lxc.network.0.ipv4 = • lxc.cgroup.cpu.shares = 1024 10.1.0.41/16 • lxc.cgroup.cpu.cfs_period_us • lxc.network.0.veth.pair = = 100000 veth40 • lxc.cgroup.cpu.cfs_quota_us • lxc.cgroup.devices.deny = a = 100000 • lxc.cgroup.memory.limit_in_b ytes = 256M • lxc.cgroup.memory.memsw.limi t_in_bytes = 256M • lxc.mount.entry = proc proc proc nosuid,nodev,noexec 0 0

  17. LXC – Images • Sua “ISO“ • Read-only para o container • Shared • Como gerar � Docker dclient = docker.Client(base_url=docker_url,version='1.16',timeout=120) container = dclient.create_container(base, "/usr/bin/python -u /mnt/build/docker-template-setup.py", volumes=["/mnt/build", "/var/cache/yum"], name="build-%s" % pkg) ... resp = dclient.export(container) tar = subprocess.Popen(["/bin/tar", "-x", "-C", imagedir], stdin=subprocess.PIPE) ... .SPEC para gerar o RPM

  18. LXC – Images

  19. LXC – Tools • lxc-create -n shimoo-c -t debian • lxc-start –n shimmo-c • lxc-attach –n shimmo-c

  20. LXC – Dicas • Abstrair • Kernel updates !! – Vários erros no OOM durante o processo • Kernel Debug – Tenha seu kernel em debug mode em prod – Kdump habilitado até ter certeza • Testing...testing...more testing • Overcommit ... A lot • IT WORKS!!!

  21. LXC Commoditization: docker • Desacoplamento • Agnóstico • Imagens rodam em qualquer plataforma suportada pelo Docker • Portabilidade • Larga Adoção – muito fácil • Sharing • Integrações

  22. Docker vs. LXC vs. Hypervisor

  23. GO • New • https://golang.org/ • Funny

  24. GO Camada de WS de alto nível para provisionar seu container: • • curl -si \ -H "Host: shimoo.com.br" \ -H "X-User: shimoo" \ -H "X-User-Domains: shimoo.com.br" \ -H "X-Homedir: ha-pool02/ha-pool02-fs02/shimoo/home" \ -H "X-Application: tomcat8;jdk=8" \ -H "X-Instance: 1" \ -H "X-Memory-Limit: 256" \ -H "X-CPU-Limit: 25" \ -H "X-Idle-Timout: 5" \ -H "X-Backend: b:u:shimoo:1" \ -H "X-Realhost: shimoo.com.br" \ http://localhost

  25. Perguntas Marcus Vinícius Soares mvc_msoares@uolinc.com

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Aplicaes web que permanecem: uma abordagem arquitetural Java que vai alm do ltimo

Aplicaes web que permanecem: uma abordagem arquitetural Java que vai alm do ltimo

Aplicaes web que permanecem: uma abordagem arquitetural Java que vai alm do ltimo framework JS da moda Eder Ignatowicz Sr. Software Engineer Red Hat Qual arquitetura e frameworks para o backend? Java 9 modular, Reactive,

1.07k views • 103 slides
The Good, The Bad, and The Ugly of Growth Aaron Quint / @aq / QCon NY 2015 #sincewebeinhonest

The Good, The Bad, and The Ugly of Growth Aaron Quint / @aq / QCon NY 2015 #sincewebeinhonest

The Good, The Bad, and The Ugly of Growth Aaron Quint / @aq / QCon NY 2015 #sincewebeinhonest What follows is a true story, from an individuals perspective In 2015 > 1M receivers every week Revenue in the 10s of $M > 110

725 views • 68 slides
CI/CD at scale Lessons from LinkedIn and Mockito QCon, San Francisco, 11-2017 Szczepan Faber

CI/CD at scale Lessons from LinkedIn and Mockito QCon, San Francisco, 11-2017 Szczepan Faber

CI/CD at scale Lessons from LinkedIn and Mockito QCon, San Francisco, 11-2017 Szczepan Faber @mockitoguy Born in Poland (we like our zzzs) In US since 2015 Want to write great tests? My workshop at QCon on Thursday: Codes

278 views • 27 slides
PO POLI LITI TICA CAL L LAN LANDS DSCA CAPE PE Washingtons political dynamic is

PO POLI LITI TICA CAL L LAN LANDS DSCA CAPE PE Washingtons political dynamic is

PO POLI LITI TICA CAL L LAN LANDS DSCA CAPE PE Washingtons political dynamic is fractured House actions are tempered by conservative pressure and tight Democratic majority in the Senate and President Obama Demonstrating business

686 views • 37 slides
Inteligncia Artificial: Cincia, Negcios e tica Luis Lamb, Ph.D. Ttulo do captulo

Inteligncia Artificial: Cincia, Negcios e tica Luis Lamb, Ph.D. Ttulo do captulo

Inteligncia Artificial: Cincia, Negcios e tica Luis Lamb, Ph.D. Ttulo do captulo Novembro de 2018 Pr-Reitor de Pesquisa - UFRGS Sumrio Um pouco de Histria I.A., computao e impactos sociais Business: Reality

621 views • 60 slides
BI BIG PI PICTURE CTURE IN N STATIS TISTI TICA CAL FRAME AME A DATA VI VISUALIZA

BI BIG PI PICTURE CTURE IN N STATIS TISTI TICA CAL FRAME AME A DATA VI VISUALIZA

BI BIG PI PICTURE CTURE IN N STATIS TISTI TICA CAL FRAME AME A DATA VI VISUALIZA ALIZATI TION ON PR PROJECT OJECT OF OF ELECTRONIC RESOURCES PRICE CHANGES IN ACADEM ADEMIC IC LIBR BRAR ARIES IES Chen eng g Chen eng,

576 views • 28 slides
de la Pobreza Sabina Alkire (OPHI) Motivacin tica ca Las vidas humanas son maltratadas y

de la Pobreza Sabina Alkire (OPHI) Motivacin tica ca Las vidas humanas son maltratadas y

La Medicin Multidimensional de la Pobreza Sabina Alkire (OPHI) Motivacin tica ca Las vidas humanas son maltratadas y disminudas en una gran diversidad de formas . Amartya Sen Visin in de conjun junto to Mientras que

1.33k views • 106 slides
RetailNet: Uma abordagem baseada em Deep Learning para contagem de pessoas e deteco de zonas

RetailNet: Uma abordagem baseada em Deep Learning para contagem de pessoas e deteco de zonas

RetailNet: Uma abordagem baseada em Deep Learning para contagem de pessoas e deteco de zonas quentes em lojas de varejo Valrio Nogueira Jr., Hugo Oliveira, Jos Krerley Oliveira Augusto Silva, Thales Vieira (presenter) Institute of

906 views • 65 slides
A Brief History of Chain Replication Christopher Meiklejohn // @cmeik QCon 2015, November 17th,

A Brief History of Chain Replication Christopher Meiklejohn // @cmeik QCon 2015, November 17th,

A Brief History of Chain Replication Christopher Meiklejohn // @cmeik QCon 2015, November 17th, 2015 1 The Overview Chain Replication for High Throughput and Availability 1. Object Storage on CRAQ 2. FAWN: A Fast Array of Wimpy Nodes 3. Chain

814 views • 67 slides
Tribes Treaties and Time Presented to 15 th Annual ILPC/TICA Indigenous Law Conference Heather

Tribes Treaties and Time Presented to 15 th Annual ILPC/TICA Indigenous Law Conference Heather

Tribes Treaties and Time Presented to 15 th Annual ILPC/TICA Indigenous Law Conference Heather Whiteman Runs Him, Senior Staff Attorney Native American Rights Fund November 15, 2018 Herreras case Clayvin Herrera, a Crow tribal citizen, and

517 views • 14 slides
HOW BDD CAN SAVE AGILE @mattwynne | QCon 2015 | London Does agile really need saving? Scrum !=

HOW BDD CAN SAVE AGILE @mattwynne | QCon 2015 | London Does agile really need saving? Scrum !=

HOW BDD CAN SAVE AGILE @mattwynne | QCon 2015 | London Does agile really need saving? Scrum != Agile Predictability Communication Quality Small pieces Collaboration Technical discipline How does BDD help? Individuals and Interactions

843 views • 37 slides
Breve introduo a User Dir e Senhas no Apache Uma abordagem prtica (aka crash course on User

Breve introduo a User Dir e Senhas no Apache Uma abordagem prtica (aka crash course on User

Breve introduo a User Dir e Senhas no Apache Uma abordagem prtica (aka crash course on User Dir and Directory Authentication on Apache) Prof. Rossano Pablo Pinto Novembro/2012 - v0.1 Abril/2013 - v0.3 (em construo) Prof. Rossano

197 views • 18 slides
Functional Distributed Programming with Irmin QCon NYC 2015, New York Anil Madhavapeddy (speaker)

Functional Distributed Programming with Irmin QCon NYC 2015, New York Anil Madhavapeddy (speaker)

Functional Distributed Programming with Irmin QCon NYC 2015, New York Anil Madhavapeddy (speaker) with Benjamin Farinier, Thomas Gazagnaire, Thomas Leonard University of Cambridge Computer Laboratory June 12, 2015 Anil Madhavapeddy (speaker)

757 views • 38 slides
Mobile-First Architectures Alexander Stigsen QCon 2015 Who am I? Former Mobile Engineer

Mobile-First Architectures Alexander Stigsen QCon 2015 Who am I? Former Mobile Engineer

Mobile-First Architectures Alexander Stigsen QCon 2015 Who am I? Former Mobile Engineer from Nokia Working on mobile since 1999 Realm Currently CEO of Realm, building a modern mobile database Very biased :-) Problem Mobile

408 views • 27 slides
How Netflix directs 1/3rd of Haley Tucker QCon San Francisco Mohit Vora Nov 16, 2015 Playback

How Netflix directs 1/3rd of Haley Tucker QCon San Francisco Mohit Vora Nov 16, 2015 Playback

How Netflix directs 1/3rd of Haley Tucker QCon San Francisco Mohit Vora Nov 16, 2015 Playback Overview DATA PLANE NETFLIX STREAM DEVICE (CDN) CONTROL PLANE Project 366 #59; 280212 Days Gone By..., CC BY-SA, Pete 2012, Flickr VIDEO

1.26k views • 112 slides
heretical resilience (to repair is human) Ryn Daniels - @rynchantress QCon New York 2018

heretical resilience (to repair is human) Ryn Daniels - @rynchantress QCon New York 2018

heretical resilience (to repair is human) Ryn Daniels - @rynchantress QCon New York 2018 @rynchantress qcon nyc 2018 my side of the story AKA: A Dramatic blargh Retelling of The Time I Nearly Broke Etsy Dot Com @rynchantress qcon

977 views • 69 slides
SuperVessel: The Open Cloud Service for OpenPOWER Yonghua Lin, Ling Shao IBM SuperVessel

SuperVessel: The Open Cloud Service for OpenPOWER Yonghua Lin, Ling Shao IBM SuperVessel

www.ptopenlab.com SuperVessel: The Open Cloud Service for OpenPOWER Yonghua Lin, Ling Shao IBM SuperVessel WeChat group Facebook group: SuperVessel OpenPOWER QQ group: SuperVessel Why SuperVessel Cloud Motivation: To grow the number of

592 views • 12 slides
DOE-ORP Update Oregon Hanford Cleanup Board Jon Peschong, Director, WTP Project Controls

DOE-ORP Update Oregon Hanford Cleanup Board Jon Peschong, Director, WTP Project Controls

DOE-ORP Update Oregon Hanford Cleanup Board Jon Peschong, Director, WTP Project Controls Division Nov. 5, 2018 Mission Framework ORP Mission: To safely manage the waste in Hanfords underground tanks while delivering the waste treatment

387 views • 23 slides
Presenting a live 90-minute webinar with interactive Q&A M&A Deal Protection Terms:

Presenting a live 90-minute webinar with interactive Q&A M&A Deal Protection Terms:

Presenting a live 90-minute webinar with interactive Q&A M&A Deal Protection Terms: Leveraging Recent Court Decisions Negotiating No-Solicitation, Standstill, Fiduciary Outs, Matching Rights, and Change of Recommendation Provisions

1.24k views • 63 slides
SRP Telecom SRP Telecom Presentation to the ATIC Board Presentation to the ATIC Board Chris

SRP Telecom SRP Telecom Presentation to the ATIC Board Presentation to the ATIC Board Chris

SRP Telecom SRP Telecom Presentation to the ATIC Board Presentation to the ATIC Board Chris Forsyth Chris Forsyth March 8, 2006 March 8, 2006 Agenda Agenda Wireless Division Overview Wireline Division Overview SRP & SRP

526 views • 24 slides
Its Your Supplier Survey A product designed specifically to meet the requirements for

Its Your Supplier Survey A product designed specifically to meet the requirements for

Its Your Supplier Survey A product designed specifically to meet the requirements for ISO9001:2000 relating to Customer Satisfaction Measurement and Monitoring (sub-clause 8.2.1) Martin Gosling The Gosling Group 1 Agenda ISO9001:2000

493 views • 22 slides
Early Help Consultation Childrens Trust Board 22 nd September 2016 Introduction The purpose of

Early Help Consultation Childrens Trust Board 22 nd September 2016 Introduction The purpose of

Early Help Consultation Childrens Trust Board 22 nd September 2016 Introduction The purpose of todays session is to: Reflect on findings from Part One of our Engagement process. Share more detail about the proposed model for early

523 views • 27 slides
jingle: jabber does multimedia peter saint-andre stpeter@jabber.org http://stpeter.im/ jingle

jingle: jabber does multimedia peter saint-andre stpeter@jabber.org http://stpeter.im/ jingle

jingle: jabber does multimedia peter saint-andre stpeter@jabber.org http://stpeter.im/ jingle modular framework multimedia session management negotiate session parameters over xmpp use a binary-friendly transport for media pluggable

848 views • 71 slides
Welcome You Bronze Sponsors: Exhibitors: Non-profit: Pacific Northwest University of Health

Welcome You Bronze Sponsors: Exhibitors: Non-profit: Pacific Northwest University of Health

2020 NRTRC TAO VIRTUAL CONFERENCE Northwest Regional Telehealth Resource Center and the Telehealth Alliance of Oregon Welcome You Bronze Sponsors: Exhibitors: Non-profit: Pacific Northwest University of Health Sciences University of Utah

359 views • 13 slides

More recommend