zalando s open source infrastructure on aws with docker
play

Zalandos Open Source Infrastructure on AWS with Docker - PowerPoint PPT Presentation

Mar 03, 2023 •123 likes •486 views

Zalandos Open Source Infrastructure on AWS with Docker bernd.herding@zalando.de GOTO Con Berlin 2015, 2015-12-04 @01k One of Europes largest online Fashion Retailers 15 countries 3 fulfillment centers 17+ million active customers 2.2+

  2. Zalando’s Open Source Infrastructure on AWS with Docker bernd.herding@zalando.de GOTO Con Berlin 2015, 2015-12-04 @01k

  3. One of Europe’s largest online Fashion Retailers 15 countries 3 fulfillment centers 17+ million active customers 2.2+ billion € revenue 2014 135+ million visits per month 10.000+ employees in DE

  4. A BRIEF HISTORY ON ZALANDO TECHNOLOGY

  8. Deployment; ancient deploy request servers Platform Platform Team

  9. Deployment; recent 70+ Dev Teams deploy request servers request storage Platform Platform Team

  10. Deployment; the Truth 70+ Dev Teams deploy request servers request storage Platform Platform Team

  11. RADICAL AGILITY AUTONOMY MASTERY PURPOSE TRUST

  12. Compliance Innovation

  13. STUPS To Unleash Penguin Swarms

  14. A Platform on Top of Amazon Web Services DOCKER SSH AUDIT FULL AWS DEPLOY ACCESS REPORTS ACCESS STUPS AWS

  15. Isolated AWS Accounts & OAUTH 2.0 & Security Public Internet *.a.example.org LB Data Center *.b.example.org Team A ELB Team B ELB AWS

  16. DEPLOYMENT

  17. Immutable Stacks myapp.example.org 100% ELB myapp-v1 EC2 + EC2 + EC2 + Docker Docker Docker

  18. Immutable Stacks myapp.example.org $ senza traffic myapp v2 10 90% 10% ELB myapp-v1 ELB myapp-v2 EC2 + EC2 + EC2 + EC2 + EC2 + Docker Docker Docker Docker Docker

  19. Immutable Stacks myapp.example.org $ senza traffic myapp v2 100 0% 100% ELB myapp-v1 ELB myapp-v2 EC2 + EC2 + EC2 + EC2 + EC2 + Docker Docker Docker Docker Docker

  20. Deployment with Senza Pier One docker push Senza CLI docker pull AWS Taupage

  21. SENZA: DEFINITION YAML SenzaInfo : StackName : hello-world Parameters : - ImageVersion : Description : "Docker image version of Hello World." SenzaComponents : - Configuration : Type : Senza::StupsAutoConfiguration # auto-detect network setup - AppServer : # will create a launch configuration and ASG with scaling triggers Type : Senza::TaupageAutoScalingGroup InstanceType : t2.micro SecurityGroups : [app-hello-world] ElasticLoadBalancer : AppLoadBalancer TaupageConfig : runtime : Docker source : "stups/hello-world:{{Arguments.ImageVersion}}" ports : 8080: 8080

  22. The STUPS.io Stack Immutable ✓ … Image Immutable AMI ✓ Docker Runtime Ubuntu ✓ ✓ Application Managed SSH access OpenJDK ✓ ✓ Zalando CA Audit Logging ✓ ✓ Isolated certificate Log Collection ✓ ✓ Docker Container Monitoring Metrics team scm-source ✓ ✓ KMS encrypted vars accounts ✓ Created by Reviewed security ✓ ✓ Taupage AMI senza additions through Cloud AWS EC2 Formation

  23. LOGGING

  25. REMOTE ACCESS

  26. Remote SSH Access ● Mostly for Debugging ● Audit Logging ● più granting Access

  27. MONITORING

  28. ZMON - our monitoring Solution TODO: Screenshot

  29. ZMON Appliance ZMON KairosDB Controller *.foo.example.org *.bar.example.org Team “Foo” Team “Bar” ELB ELB ZMON ZMON EC2 EC2 EC2 Instance EC2 Appliance Appliance Instance EC2 Instance EC2 Instance Instance Instance

  30. SECURITY

  31. DISTRIBUTION OF CREDENTIALS OVER S3 BUCKETS WEB UI rotate OAuth passwords Provider Mint Rotator save request passwords OAuth2 token AWS S3 read password Taupage

  32. STUPS in a Nutshell ➊ Isolated AWS account per Team ➋ Deployment with Docker STUPS ➌ Managed SSH Access ➍ REST/OAuth 2.0 mandatory ➎ Traceability of changes

  33. What you might find valuable ● Taupage AMI with Docker runtime ● Senza to manage Cloud Formation ● Pier One Docker Registry with S3 http://docs.stups.io/en/latest/user-guide/standalone-deployment.html

  34. Questions? STUPS Homepage stups.io GitHub Repositories github.com/zalando-stups tech-stups-pr@zalando.de

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Why Zalando trusts in PostgreSQL A developers view on using the most advanced open-source

Why Zalando trusts in PostgreSQL A developers view on using the most advanced open-source

Why Zalando trusts in PostgreSQL A developers view on using the most advanced open-source database Henning Jacobs - Technical Lead Platform/Software Zalando GmbH Valentine Gogichashvili - Technical Lead Platform/Database Zalando GmbH GOTO

1.07k views • 37 slides
Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me

Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me

Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me Software engineer at Docker Maintainer on SwarmKit and Docker Engine open source projects Focusing on distributed state, task scheduling,

1.29k views • 62 slides
Sustaining open source digital infrastructure Bogdan Vasilescu @b_vasilescu Open source

Sustaining open source digital infrastructure Bogdan Vasilescu @b_vasilescu Open source

University of Zrich, March 14, 2019 Sustaining open source digital infrastructure Bogdan Vasilescu @b_vasilescu Open source software: from curiosity to digital infrastructure 1999 2016 Open source code as digital roads or Roads

834 views • 59 slides
ZALANDO Personalisation At Zalando @Melissa_Weston_ @Zalando 17/09/2019 OUR STORY NOW AND

ZALANDO Personalisation At Zalando @Melissa_Weston_ @Zalando 17/09/2019 OUR STORY NOW AND

MELISSA WESTON ZALANDO Personalisation At Zalando @Melissa_Weston_ @Zalando 17/09/2019 OUR STORY NOW AND THEN WE WENT FROM START- UP @Melissa_Weston_ @Zalando 3 TO GROWN -UP @Melissa_Weston_ @Zalando @Melissa_Weston_ @Zalando 4

478 views • 30 slides
Beyond x86_64 : Docker images for Multi-Platform Phil Estes IBM Cloud Open Technologies

Beyond x86_64 : Docker images for Multi-Platform Phil Estes IBM Cloud Open Technologies

Beyond x86_64 : Docker images for Multi-Platform Phil Estes IBM Cloud Open Technologies Twitter: @estesp 1 About Me Phil Estes Senior Technical Staff Member IBM Cloud, Open Technologies Container Strategy/Open Source Leader Docker

629 views • 10 slides
Open-source Public Key Infrastructure (PKI) Simos Xenitellis University of London

Open-source Public Key Infrastructure (PKI) Simos Xenitellis University of London

Open-source Public Key Infrastructure Open-source Public Key Infrastructure (PKI) Simos Xenitellis University of London S.Xenitellis@rhbnc.ac.uk 1 3rd August 2000, LBW2000 Open-source Public Key Infrastructure Agenda We are going to

826 views • 25 slides
Green Cloud Sustainable Open Source Cloud Architecture on ARM64 @KurtStam, PhD Red Hat

Green Cloud Sustainable Open Source Cloud Architecture on ARM64 @KurtStam, PhD Red Hat

Green Cloud Sustainable Open Source Cloud Architecture on ARM64 @KurtStam, PhD Red Hat Middleware Engineering Saturn 2018 Kubernetes on RaspberryPi Low Power ARM64 Cloud 1. Run your cloud infrastructure on ARM64: Docker and

212 views • 17 slides
A Cloud Infrastructure for Scaling Innovation Across Autonomous Teams henning.jacobs@zalando.de /

A Cloud Infrastructure for Scaling Innovation Across Autonomous Teams henning.jacobs@zalando.de /

A Cloud Infrastructure for Scaling Innovation Across Autonomous Teams henning.jacobs@zalando.de / @try_except_ GOTO Amsterdam 2015 AGENDA ABOUT US HISTORY RADICAL AGILITY ARCHITECTURE INFRASTRUCTURE ABOUT ME Henning Jacobs STUPS

942 views • 58 slides
Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y install docker s ystemctl start docker systemctl enable docker docker images - Launch pre-canned container: hello-world (busybox is another good

480 views • 4 slides
docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer / mgoelzer@docker.com / @mgoelzer Docker Inc. docker service is the new docker run docker run nginx 2013-14 docker run -p 3375:2375 swarm ; 2014-15

688 views • 34 slides
Docker : devops, shared registries, HPC and emerging use cases Franois Moreews & Olivier

Docker : devops, shared registries, HPC and emerging use cases Franois Moreews & Olivier

Docker : devops, shared registries, HPC and emerging use cases Franois Moreews & Olivier Sallou P r e s e n t a t i o n Docker is an open-source engine to easily create lightweight, portable , self-sufficient containers from

418 views • 19 slides
Is Docker Infrastructure or Platform? & Cloud Foundry intro A Lecture for InstallFest 2017

Is Docker Infrastructure or Platform? & Cloud Foundry intro A Lecture for InstallFest 2017

Is Docker Infrastructure or Platform? & Cloud Foundry intro A Lecture for InstallFest 2017 by Ing. Tom Vondra Cloud Architect at Outline Virtualization and IaaS PaaS Docker Problems with Docker Cloud Foundry

956 views • 62 slides
The State Of Docker and Vagrant Tooling in Eclipse Jeff Johnston jjohnstn@redhat.com Roland

The State Of Docker and Vagrant Tooling in Eclipse Jeff Johnston jjohnstn@redhat.com Roland

The State Of Docker and Vagrant Tooling in Eclipse Jeff Johnston jjohnstn@redhat.com Roland Grunberg rgrunber@redhat.com What is Docker? Open-source project Light-weight virtualization sharing Linux kernel Deploy applications

556 views • 28 slides
Make Money With Open Source What is Open Source? Community Free software vs. open source

Make Money With Open Source What is Open Source? Community Free software vs. open source

Make Money With Open Source What is Open Source? Community Free software vs. open source Licenses: GPL vs. LGPL vs. MIT/Apache Foundations: Linux, Apache, Eclipse, Similar: Open Data, Open Hardware, Open Knowledge, ... Advantages of OS

508 views • 13 slides
Development in the Civil Infrastructure Platform Yoshitake Kobayashi Open Source Summit Japan,

Development in the Civil Infrastructure Platform Yoshitake Kobayashi Open Source Summit Japan,

SLTS Kernel and Base-Layer Development in the Civil Infrastructure Platform Yoshitake Kobayashi Open Source Summit Japan, Tokyo, June 2, 2017 Our Civilization is Run by Linux Open Source Summit Japan 2017 2

1.03k views • 46 slides
Here's where we are with open source security and here's what we need to do about it Nicko

Here's where we are with open source security and here's what we need to do about it Nicko

Here's where we are with open source security and here's what we need to do about it Nicko van Someren, Core Infrastructure Initiative 2014 was a bad year for FOSS security The Linux Foundation created the Core Infrastructure Initiative

931 views • 25 slides
Herding in P2P Lending Market: Rational Inference or Irrational Trust? Pei Ping, Zhang Ke

Herding in P2P Lending Market: Rational Inference or Irrational Trust? Pei Ping, Zhang Ke

Herding in P2P Lending Market: Rational Inference or Irrational Trust? Pei Ping, Zhang Ke Department of Finance and Insurance Business School Nanjing University 2016/5/22 1 Content Introduction Literature review Aim of study

343 views • 17 slides
Kernel Methods, Quadrature or Sampling, and Probabilistic Numerics Motonobu Kanagawa Prob Num

Kernel Methods, Quadrature or Sampling, and Probabilistic Numerics Motonobu Kanagawa Prob Num

Kernel Methods, Quadrature or Sampling, and Probabilistic Numerics Motonobu Kanagawa Prob Num 2018 London, April 2018 some of the presented work is supported by the European Research Council. Short Self-Introduction Research Scientist

353 views • 14 slides
27/04/2017 In two hours time you will Know what to expect at the hearing. Preparing

27/04/2017 In two hours time you will Know what to expect at the hearing. Preparing

27/04/2017 In two hours time you will Know what to expect at the hearing. Preparing for the Hearing Know how to leave a favourable and lasting impression on the decision makers. Understand what the s42A report means for

278 views • 9 slides
DC Department of Human Services FY21 Budget Oversight Hearing Laura Green Zeilinger, Director

DC Department of Human Services FY21 Budget Oversight Hearing Laura Green Zeilinger, Director

1 DC Department of Human Services FY21 Budget Oversight Hearing Laura Green Zeilinger, Director May 26, 2020 Investing in our Strategic Priorities 2 Reform System of Care for Families Experiencing Homelessness End Chronic Homelessness Among

107 views • 10 slides
Herding networking cats: Integrating Linux routing with FusionCLI Stephen Hemminger

Herding networking cats: Integrating Linux routing with FusionCLI Stephen Hemminger

Herding networking cats: Integrating Linux routing with FusionCLI Stephen Hemminger shemminger@vyatta.com Vyatta versions http://vyatta.org http://vyatta.com Free download Subscription livecd Update 2x year Update 4x

645 views • 19 slides
Information Cascades - Also following the crowd or herding - Example: Choosing a

Information Cascades - Also following the crowd or herding - Example: Choosing a

Information Cascades - Also following the crowd or herding - Example: Choosing a restaurant in an unfamiliar town you do your research, and plan to go to restaurant A When you arrive, A is empty and B next door is full if you believe

587 views • 3 slides
Gaussian Cheap Talk Game with Quadratic Cost Functions: When Herding between Strategic Senders Is

Gaussian Cheap Talk Game with Quadratic Cost Functions: When Herding between Strategic Senders Is

Gaussian Cheap Talk Game with Quadratic Cost Functions: When Herding between Strategic Senders Is a Virtue Farhad Farokhi , Andr e Teixeira , and C edric Langbort KTH Royal Institute of Technology, Sweden University of

275 views • 25 slides
Pr srtr

Pr srtr

Pr srtr Pr sst r rt

1.01k views • 71 slides

More recommend