below kubernetes
play

BELOW KUBERNETES DEMYSTIFYING CONTAINER RUNTIMES Thierry Carrez, - PowerPoint PPT Presentation

Mar 13, 2024 •834 likes •1.37k views

BELOW KUBERNETES DEMYSTIFYING CONTAINER RUNTIMES Thierry Carrez, OpenStack Foundation (OSF) @tcarrez on Twitter ttx on Freenode WHY AM I HERE? WHY AM I HERE? OpenStack is more than just VMs WHY AM I HERE? OpenStack is more than just

  1. BELOW KUBERNETES DEMYSTIFYING CONTAINER RUNTIMES Thierry Carrez, OpenStack Foundation (OSF) @tcarrez on Twitter ttx on Freenode

  2. WHY AM I HERE?

  3. WHY AM I HERE? ▪ OpenStack is more than just VMs

  4. WHY AM I HERE? ▪ OpenStack is more than just VMs ▪ OSF is more than just OpenStack

  5. WHY AM I HERE? ▪ OpenStack is more than just VMs ▪ OSF is more than just OpenStack ▪ Openly developing open infrastructure

  6. WHY AM I HERE? ▪ OpenStack is more than just VMs ▪ OSF is more than just OpenStack ▪ Openly developing open infrastructure

  7. WHY AM I HERE? ▪ OpenStack is more than just VMs ▪ OSF is more than just OpenStack ▪ Openly developing open infrastructure

  8. WHY AM I HERE? ▪ OpenStack is more than just VMs ▪ OSF is more than just OpenStack ▪ Openly developing open infrastructure

  9. WHY AM I HERE? ▪ OpenStack is more than just VMs ▪ OSF is more than just OpenStack ▪ Openly developing open infrastructure

  10. WHY AM I HERE? ▪ OpenStack is more than just VMs ▪ OSF is more than just OpenStack ▪ Openly developing open infrastructure

  11. Kubernetes

  12. Kubernetes

  13. Kubernetes ?

  14. Kubernetes ? Linux Kernel

  15. 15

  16. 1. THE WORLD USED TO BE SIMPLE

  17. Kubernetes Docker Linux Kernel

  18. 2. INTERFACES

  19. OCI ▪ Open Containers Initiative, est. June 2015

  20. OCI ▪ Open Containers Initiative, est. June 2015 ▪ Standardize the wild west of container tech

  21. OCI ▪ Open Containers Initiative, est. June 2015 ▪ Standardize the wild west of container tech ▪ Runtime spec defining OCI runtimes

  22. OCI ▪ Open Containers Initiative, est. June 2015 ▪ Standardize the wild west of container tech ▪ Runtime spec defining OCI runtimes ▪ Image spec defining OCI runtime bundles

  23. Kubernetes Docker Linux Kernel

  24. Kubernetes Docker OCI runC Linux Kernel

  25. CRI ▪ Container Runtime Interface, est. Dec 2016

  26. CRI ▪ Container Runtime Interface, est. Dec 2016 ▪ Primitives to manage pods of containers

  27. CRI ▪ Container Runtime Interface, est. Dec 2016 ▪ Primitives to manage pods of containers ▪ A single interface for Rkt & Docker

  28. Kubernetes Docker OCI rkt runC Linux Kernel

  29. Kubernetes CRI Docker OCI rkt runC Linux Kernel

  30. Kubernetes CRI Docker CLI cri-containerd containerd OCI rkt runC Linux Kernel

  31. 2. MORE PUZZLE PIECES

  32. Kubernetes CRI Docker CLI cri-containerd containerd OCI runC Linux Kernel

  33. Kubernetes CRI Docker CLI cri-containerd containerd OCI runC Linux Kernel

  34. Kubernetes CRI Docker CLI cri-containerd CRI-O containerd OCI runC Linux Kernel

  35. Kubernetes Docker CRI Podman CLI cri-containerd CRI-O containerd OCI runC Linux Kernel

  36. 3. WORKLOAD ISOLATION

  37. THE DIRTY SECRET OF CONTAINERS

  38. THE DIRTY SECRET OF CONTAINERS ▪ Containers don’t contain

  39. THE DIRTY SECRET OF CONTAINERS ▪ Containers don’t contain ▪ Real-world containers run in VMs

  40. THE DIRTY SECRET OF CONTAINERS ▪ Containers don’t contain ▪ Real-world containers run in VMs ▪ In GCP, Azure, AWS or Alicloud

  41. Kubernetes Docker CRI Podman CLI cri-containerd CRI-O containerd OCI runC QEMU KVM Linux Kernel

  42. Kubernetes Docker CRI Podman CLI cri-containerd hyper CRI-O containerd OCI runV runC QEMU KVM Linux Kernel

  43. Kubernetes Docker CRI Podman CLI cri-containerd hyper CRI-O Frakti containerd OCI runV runC QEMU KVM Linux Kernel

  44. Kubernetes Docker CRI Podman CLI cri-containerd hyper CRI-O Frakti containerd OCI runV Clear Containers runC QEMU KVM Linux Kernel

  45. Kubernetes Docker CRI Podman CLI cri-containerd CRI-O Frakti containerd OCI Kata Containers runC QEMU KVM Linux Kernel

  46. Kubernetes Docker CRI Podman CLI cri-containerd CRI-O Frakti containerd OCI Kata Containers runC QEMU KVM Linux Kernel

  47. Kubernetes Docker CRI Podman CLI cri-containerd CRI-O Frakti containerd OCI Kata Containers gVisor runC (ptrace mode) QEMU KVM Linux Kernel

  48. Kubernetes Docker CRI Podman CLI cri-containerd CRI-O Frakti containerd OCI Kata Containers gVisor runC (ptrace mode) QEMU Firecracker KVM Linux Kernel

  49. Kubernetes Docker CRI Podman CLI cri-containerd CRI-O Frakti containerd OCI Kata Containers gVisor runC (ptrace mode) QEMU Firecracker KVM Linux Kernel

  50. Kubernetes Docker CRI Podman CLI cri-containerd CRI-O Frakti containerd OCI Kata Containers gVisor runC (ptrace mode) QEMU Firecracker KVM Linux Kernel

  51. Kubernetes Docker CRI Podman CLI cri-containerd CRI-O Frakti containerd OCI Kata Containers gVisor runC (ptrace mode) QEMU Firecracker KVM Linux Kernel CLI tools CRI runtimes OCI runtimes VMMs

  52. THANKS! Any questions? You can reach me at Credits Slides by slidescarnival.com, CC-BY-4.0 @tcarrez on Twitter thierry@openstack.org by email Photograph licensed under Unsplash license

Recommend

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes Overview 1 Airflows integration with Kubernetes 2 Deployment of Airflow on Kubernetes 3 Kubernetes Pod Operator and its benefits 4 DAG Development

2.79k views • 14 slides
Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like -

Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like -

Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like - Sec-ish - Ops-y Is this Kubernetes cluster secure? EPIC FAIL GIF How secure is Kubernetes? What this Kubernetes talk is about Common Pwns

1.18k views • 113 slides
Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source

Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source

Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source platform designed to automate deploying , scaling , and operating application containers . Kubernetes v1.0 was released in 2015. It utilizes

916 views • 52 slides
K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi @marcoceppi Ryan Beisner @ryanbeisner Why Kubernetes Computing in the modern age Virtual Process Machines Containers Traditional Container

516 views • 24 slides
From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang

From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang

From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang Developer Advocate Google Cloud Platform @saturnism | +RayTsang @saturnism @googlecloud #kubernetes Ray Tsang Developer Architect Traveler

1.29k views • 65 slides
Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes

Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes

Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes & Cloud Native Meetups in Jakarta and Bandung https://www.meetup.com/jakarta-kubernetes/ https://www.meetup.com/Microservice-JKT/ You can find

709 views • 47 slides
Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes?

Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes?

@MELANIECEBULA / MARCH 2019 / CON LONDON Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes? @MELANIECEBULA Who am I? A BRIEF HISTORY @MELANIECEBULA Why Microservices? 4000000 3000000 2000000 MONOLITH

1.74k views • 111 slides
Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes

Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes

Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes Enthusiast Speaker at Meetups Email: apurvbhandari@gmail.com LinkedIn: https://www.linkedin.com/in/apurvabhandari-linux GitHub:

2.17k views • 28 slides
Kubernetes APIs Under the Hood @pwittrock Who Am I? Phillip Wittrock (@pwittrock) Software

Kubernetes APIs Under the Hood @pwittrock Who Am I? Phillip Wittrock (@pwittrock) Software

Kubernetes APIs Under the Hood @pwittrock Who Am I? Phillip Wittrock (@pwittrock) Software Engineer at Google working on GKE and OSS Kubernetes My mission is to make using Kubernetes simple and enjoyable You might have come across me

1.12k views • 27 slides
Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes

Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes

Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes Ceph Storage Operation NVRAMOS 2019 10/28/2019 Cloud Service Model On Premises IaaS CaaS PaaS SaaS Applications Applications

660 views • 36 slides
Kubernetes Administration from Zero to (junior) Hero Lszl Budai Component Soft Ltd.

Kubernetes Administration from Zero to (junior) Hero Lszl Budai Component Soft Ltd.

Kubernetes Administration from Zero to (junior) Hero Lszl Budai Component Soft Ltd. Agenda 1.Introduction 2.Accessing the kubernetes API 3.Kubernetes workloads 4.Accessing applications 5.Volumes and persistent storage 2 (c) 2018

1.17k views • 57 slides
OpenStack on Kubernetes: Make OpenStack and Kubernetes Fail-Safe Seungkyu Ahn (ahnsk@sk.com)

OpenStack on Kubernetes: Make OpenStack and Kubernetes Fail-Safe Seungkyu Ahn (ahnsk@sk.com)

OpenStack on Kubernetes: Make OpenStack and Kubernetes Fail-Safe Seungkyu Ahn (ahnsk@sk.com) Jaesuk Ahn (jay.ahn@sk.com) Open System Lab Network IT Convergence R&D Center SK Telecom Wil Reichert (wil@solinea.com) Solinea What will

1.26k views • 46 slides
Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie

Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie

Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie and Joe Beda 2/3rds of a pod Connaissez-vous Kubernetes? Kubernetes is an open-source system for automating deployment, scaling, and

747 views • 63 slides
Kubernetes on ARM64 Kubernetes on ARM64 Raspberry PI 4 Kubernetes cloud for a Raspberry PI 4

Kubernetes on ARM64 Kubernetes on ARM64 Raspberry PI 4 Kubernetes cloud for a Raspberry PI 4

Kubernetes on ARM64 Kubernetes on ARM64 Raspberry PI 4 Kubernetes cloud for a Raspberry PI 4 Kubernetes cloud for a few Euros! few Euros! Jean-Frederic Clere Jean-Frederic Clere @jfclere @jfclere Fosdem 2020 Feb. 1-2, 2020 TM Who am I?

529 views • 26 slides
Lecture 3: Kubernetes AC295 AC295 Advanced Practical Data Science Pavlos Protopapas Outline

Lecture 3: Kubernetes AC295 AC295 Advanced Practical Data Science Pavlos Protopapas Outline

Lecture 3: Kubernetes AC295 AC295 Advanced Practical Data Science Pavlos Protopapas Outline 1: Communications 2: Recap 3: Introduction to Kubernetes 4: Creating and Running Containers | Review 5: Anatomy of a Kubernetes Cluster 6:

821 views • 38 slides
Data Management in Kubernetes Using Kanister T om Manville | April 25th, 2018 2 3 4 yes* 5

Data Management in Kubernetes Using Kanister T om Manville | April 25th, 2018 2 3 4 yes* 5

Data Management in Kubernetes Using Kanister T om Manville | April 25th, 2018 2 3 4 yes* 5 Database Operations in Kubernetes kanister.io 6 Agenda Background DB in a container DB in Kubernetes Kanister Use

767 views • 42 slides
OPENSTACK + KUBERNETES + HYPERCONTAINER The Container Platform for NFV ABOUT ME Harry Zhang

OPENSTACK + KUBERNETES + HYPERCONTAINER The Container Platform for NFV ABOUT ME Harry Zhang

OPENSTACK + KUBERNETES + HYPERCONTAINER The Container Platform for NFV ABOUT ME Harry Zhang ID: @resouer Coder, Author, Speaker Member of Hyper Feature Maintainer & Project Manager of Kubernetes sig-scheduling,

3.57k views • 46 slides
Rootless Kubernetes Running Kubernetes and CRI/OCI Runtimes as an unprivileged user Akihiro Suda

Rootless Kubernetes Running Kubernetes and CRI/OCI Runtimes as an unprivileged user Akihiro Suda

FOSDEM (Feb 3, 2019) Rootless Kubernetes Running Kubernetes and CRI/OCI Runtimes as an unprivileged user Akihiro Suda / NTT (@_AkihiroSuda_) Giuseppe Scrivano / Red Hat (@gscrivano) 1 Who are we? Akihiro Suda Giuseppe Scrivano Software

552 views • 23 slides
Bringing Security and Multi- tenancy to Kubernetes Lei (Harry) Zhang About Me Lei (Harry)

Bringing Security and Multi- tenancy to Kubernetes Lei (Harry) Zhang About Me Lei (Harry)

Bringing Security and Multi- tenancy to Kubernetes Lei (Harry) Zhang About Me Lei (Harry) Zhang @resouer #CNCF member, #Microsoft MVP Previous: VMware, Baidu Feature Maintainer of Kubernetes HyperCrew: https://hyper.sh/

609 views • 40 slides
Where does CoreOS fit in? Automating Monitoring infrastructure Prometheus + Kubernetes

Where does CoreOS fit in? Automating Monitoring infrastructure Prometheus + Kubernetes

Alertmanager and high availability Frederic Branczyk Software Engineer at CoreOS Prometheus/Alertmanager/Kubernetes @brancz Where does CoreOS fit in? Automating Monitoring infrastructure Prometheus + Kubernetes What will I be talking

488 views • 29 slides
JUG Bern Real World Kubernetes Agenda - Introduction Agenturclient - Architecture

JUG Bern Real World Kubernetes Agenda - Introduction Agenturclient - Architecture

JUG Bern Real World Kubernetes Agenda - Introduction Agenturclient - Architecture Agenturclient - Kubernetes Deployment - HA-Setup - Demo - Istio Introduction Florian Lscher Software Engineer and Co-Founder Skills CV Solution

1.48k views • 70 slides
Python, Docker, Kubernetes, Python, Docker, Kubernetes, and beyond? and beyond? Peter Bbics

Python, Docker, Kubernetes, Python, Docker, Kubernetes, and beyond? and beyond? Peter Bbics

Python, Docker, Kubernetes, Python, Docker, Kubernetes, and beyond? and beyond? Peter Bbics Peter Bbics | EuroPython 2018 EuroPython 2018 July 25, 2018 July 25, 2018 Based in Prague Small team of developers Developing a trading

361 views • 20 slides
SIMPLY COMPLEX TASK OF KUBERNETES INGRESS Richard Li 1 WHAT IS INGRESS? Pod Pod Pod Pod

SIMPLY COMPLEX TASK OF KUBERNETES INGRESS Richard Li 1 WHAT IS INGRESS? Pod Pod Pod Pod

SIMPLY COMPLEX TASK OF KUBERNETES INGRESS Richard Li 1 WHAT IS INGRESS? Pod Pod Pod Pod Kubernetes External Load routing Static IP Balancer service Pod address Get traffic Route traffic into cluster inside your cluster Pod Pod

539 views • 41 slides
Matthias Sohn Adel Zaalouk SAP From Containers to Kubernetes From Containers to Kubernetes

Matthias Sohn Adel Zaalouk SAP From Containers to Kubernetes From Containers to Kubernetes

Matthias Sohn Adel Zaalouk SAP From Containers to Kubernetes From Containers to Kubernetes Container Container Runtime Host OS VM From Containers to Kubernetes Container Container Runtime Host OS VM From Containers to Kubernetes

1.72k views • 135 slides

More recommend