deployment strategies on kubernetes
play

Deployment Strategies on Kubernetes By Etienne Tremel Software - PowerPoint PPT Presentation

Mar 22, 2024 •206 likes •822 views

Deployment Strategies on Kubernetes By Etienne Tremel Software engineer at Container Solutions @etiennetremel February 13th, 2017 Agenda Kubernetes in brief Look at 6 different strategies Recreate Ramped Blue/Green

  1. Deployment Strategies on Kubernetes By Etienne Tremel Software engineer at Container Solutions @etiennetremel February 13th, 2017

  2. Agenda Kubernetes in brief • Look at 6 different strategies • Recreate • Ramped • Blue/Green • Canary • A/B Testing • Shadow • Sum-up • Next • 2

  3. Kubernetes in brief Deployments, replica-sets, pods and services 3

  4. Kubernetes in brief Advanced routing using Ingress Ingress controllers: - Nginx - HA Proxy - Traefik - Istio - Linkerd - GKE - etc. 4

  5. Kubernetes in brief Configuration Deployment configuration: Service configuration: Ingress configuration: apiVersion: apps/v1 kind: Service apiVersion: extensions/v1beta1 kind: Deployment apiVersion: v1 kind: Ingress metadata: metadata: metadata: name: nginx-deployment name: my-service name: my-ingress Deployment labels: spec: annotations: app: nginx selector: kubernetes.io/ingress.class: nginx spec: app: nginx spec: replicas: 3 ports: rules: selector: - protocol: TCP - host: foo.bar.com matchLabels: port: 80 http: ReplicaSet app: nginx targetPort: 9376 paths: template: - path: /foo metadata: backend: labels: serviceName: my-service app: nginx servicePort: 80 spec: - path: /bar containers: backend: Pod - name: nginx serviceName: my-other-service image: nginx:1.7.9 servicePort: 80 ports: - containerPort: 80 5

  6. Deployment strategies Recreate native • Ramped native • Blue/Green extra step needed • Canary extra step needed • A/B Testing require additional component • Shadow require additional component • Get your hands on: https://github.com/ContainerSolutions/k8s-deployment-strategies 6

  7. Recreate 7

  8. Recreate In this case [LB] is a Kubernetes Service 8

  9. Recreate In this case [LB] is a Kubernetes Service 9

  10. Recreate In this case [LB] is a Kubernetes Service 10

  11. Recreate In this case [LB] is a Kubernetes Service 11

  12. Recreate [...] kind: Deployment spec: replicas: 3 $ kubectl apply -f ./manifest.yaml strategy: type: Recreate [...] 12

  13. Recreate Pattern of the traffic during a release Service unavailable 13

  14. Recreate Pros: • easy to setup Cons: • high impact on the user, expect downtime that depends on both shutdown and boot duration of the application 14

  15. Ramped aka incremental, rolling update 15

  16. Ramped - aka Incremental, Rolling In this case [LB] is a Kubernetes Service 16

  17. Ramped - aka Incremental, Rolling In this case [LB] is a Kubernetes Service 17

  18. Ramped - aka Incremental, Rolling In this case [LB] is a Kubernetes Service 18

  19. Ramped - aka Incremental, Rolling In this case [LB] is a Kubernetes Service 19

  20. Ramped - aka Incremental, Rolling In this case [LB] is a Kubernetes Service 20

  21. Ramped - aka Incremental, Rolling [...] kind: Deployment spec: replicas: 3 strategy: type: RollingUpdate rollingUpdate: maxSurge: 2 # how many pods we can add at a time maxUnavailable: 0 # maxUnavailable define how many pods can be # unavailable during the rolling update [...] $ kubectl apply -f ./manifest.yaml 21

  22. Ramped - aka Incremental, Rolling Pattern of the traffic during a release 22

  23. Ramped - aka Incremental, Rolling Pros: • easy to use • version is slowly released across instances • convenient for stateful applications that can handle ongoing rebalancing of the data Cons: • rollout/rollback can take time • no control over traffic 23

  24. Blue/Green aka red/black 24

  25. Blue/Green - aka Red/Black 25

  26. Blue/Green - aka Red/Black 26

  27. Blue/Green - aka Red/Black 27

  28. Blue/Green - aka Red/Black 28

  29. Blue/Green - aka Red/Black Single service deployment [...] kind: Service spec: # Note here that we match both the app and the version. # When switching traffic, update the label “version” with # the appropriate value, ie: v2.0.0 selector: app: my-app version: v1.0.0 [...] $ kubectl apply -f ./manifest-v2.yaml $ kubectl patch service my-app -p \ '{"spec":{"selector":{"version":"v2.0.0"}}}' $ kubectl delete -f ./manifest-v1.yaml 29

  30. Blue/Green - aka Red/Black To rollout multiple services at once, use Ingress [...] [...] [...] kind: Service kind: Service kind: Ingress metadata: metadata: spec: name: login-v2 name: cart-v2 rules: spec: spec: - host: login.domain.com selector: selector: http: app: login app: cart paths: version: v2.0.0 version: v2.0.0 - backend: [...] [...] serviceName: login-v2 servicePort: 80 - host: cart.domain.com http: paths: - backend: $ kubectl apply -f ./manifest-v2.yaml serviceName: cart-v2 $ kubectl apply -f ./ingress.yaml servicePort: 80 $ kubectl delete -f ./manifest-v1.yaml [...] 30

  31. Blue/Green - aka Red/Black Pattern of the traffic during a release 31

  32. Blue/Green - aka Red/Black Pros: • instant rollout/rollback good fit for front-end that load versioned assets from the same server • dirty way to fix application dependency hell • Cons: • expensive as it requires double the resources • proper test of the entire platform should be done before releasing to production 32

  33. Canary 33

  34. Canary 34

  35. Canary 35

  36. Canary 36

  37. Canary 37

  38. Canary [...] [...] [...] kind: Service kind: Deployment kind: Deployment metadata: metadata: metadata: name: my-app name: my-app-v1 name: my-app-v2 spec: spec: spec: selector: replicas: 9 replicas: 1 app: my-app template: template: [...] labels: labels: app: my-app app: my-app version: v1.0.0 version: v2.0.0 [...] [...] $ kubectl apply -f ./manifest-v2.yaml $ kubectl scale deploy/my-app-v2 --replicas=10 $ kubectl delete -f ./manifest-v1.yaml 38

  39. Canary Example of shifting traffic based on weight (percentage) using Istio [...] kind: RouteRule metadata: name: my-app spec: destination: $ kubectl apply -f ./manifest-v2.yaml name: my-app $ kubectl apply -f ./routerule.yaml route: - labels: version: v1.0.0 weight: 90 # 90% traffic - labels: version: v2.0.0 weight: 10 # 10% traffic [...] 39

  40. Canary Pattern of the traffic during a release 40

  41. Canary Pros: • version released for a subset of users • convenient for error rate and performance monitoring • fast rollback Cons: • slow rollout • sticky sessions might be required • precise traffic shifting would require additional tool like Istio or Linkerd 41

  42. A/B Testing 42

  43. A/B Testing 43

  44. A/B Testing 44

  45. A/B Testing 45

  46. A/B Testing Possible conditions: - Geolocalisation - Language - Cookie - User Agent (device, OS, etc.) - Custom Header - Query parameters 46

  47. A/B Testing Example of shifting traffic based on request Headers using Istio [...] [...] kind: RouteRule kind: RouteRule metadata: metadata: name: my-app-v1 name: my-app-v2 spec: spec: destination: destination: $ kubectl apply -f ./manifest-v2.yaml name: my-app name: my-app $ kubectl apply -f ./routerule.yaml route: route: - labels: - labels: version: v1.0.0 version: v2.0.0 match: match: request: request: headers: headers: x-api-version: x-api-version: exact: "v1.0.0" exact: "v2.0.0" [...] [...] 47

  48. A/B Testing Pattern of the traffic during a release 48

  49. A/B Testing Pros: • several versions run in parallel • full control over the traffic distribution • great tool that can be used for business purpose to improve conversion Cons: • requires intelligent load balancer (Istio, Linkerd, etc.) • hard to troubleshoot errors for a given session, distributed tracing becomes mandatory 49

  50. Shadow aka Mirrored, Dark 50

  51. Shadow - aka Mirrored, Dark 51

  52. Shadow - aka Mirrored, Dark 52

  53. Shadow - aka Mirrored, Dark 53

  54. Shadow - aka Mirrored, Dark 54

  55. Shadow - aka Mirrored, Dark Example of mirroring traffic using Istio [...] kind: RouteRule spec: destination: name: my-app route: - labels: $ kubectl apply -f ./manifest-v2.yaml version: v1.0.0 $ kubectl apply -f ./routerule.yaml weight: 100 - labels: version: v2.0.0 weight: 0 mirror: name: my-app-v2 labels: version: v2.0.0 [...] 55

  56. Shadow - aka Mirrored, Dark Pattern of the traffic during a release 56

  57. Shadow - aka Mirrored, Dark Pros: • performance testing of the application with production traffic • no impact on the user • no rollout until the stability and performance of the application meet the requirements Cons: • complex to setup • expensive as it requires double the resources • not a true user test and can be misleading • requires mocking/stubbing service for certain cases 57

  58. Sum-up recreate if downtime is not a problem • recreate and ramped doesn’t require any extra step (kubectl apply is enough) • ramped and blue/green deployment are usually a good fit and easy to use • blue/green is a good fit for front-end that load versioned assets from the same server • blue/green and shadow can be expensive • canary and a/b testing should be used if little confidence on the quality of the release • canary , a/b testing and shadow might require additional cluster component • 58

  59. Sum-up 59

Recommend

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes

Airflow on Kubernetes: Containerizing your Workflows By Michael Hewitt Agenda Kubernetes Overview 1 Airflows integration with Kubernetes 2 Deployment of Airflow on Kubernetes 3 Kubernetes Pod Operator and its benefits 4 DAG Development

2.79k views • 14 slides
Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie

Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie

Lessons learnt building Kubernetes controllers David Cheney - Heptio gday Craig McLuckie and Joe Beda 2/3rds of a pod Connaissez-vous Kubernetes? Kubernetes is an open-source system for automating deployment, scaling, and

747 views • 63 slides
Tales Of The Kubernetes Ingress Networking: Deployment Patterns For External Load Balancers 1

Tales Of The Kubernetes Ingress Networking: Deployment Patterns For External Load Balancers 1

Tales Of The Kubernetes Ingress Networking: Deployment Patterns For External Load Balancers 1 How To Access The Slides? Slides (HTML): https://containous.github.io/slides/webinar-cncf-jan-2020 Slides (PDF):

1.02k views • 49 slides
JUG Bern Real World Kubernetes Agenda - Introduction Agenturclient - Architecture

JUG Bern Real World Kubernetes Agenda - Introduction Agenturclient - Architecture

JUG Bern Real World Kubernetes Agenda - Introduction Agenturclient - Architecture Agenturclient - Kubernetes Deployment - HA-Setup - Demo - Istio Introduction Florian Lscher Software Engineer and Co-Founder Skills CV Solution

1.48k views • 70 slides
JUG Real World Kubernetes Agenda - Introduction Agenturclient - Architecture Agenturclient

JUG Real World Kubernetes Agenda - Introduction Agenturclient - Architecture Agenturclient

JUG Real World Kubernetes Agenda - Introduction Agenturclient - Architecture Agenturclient - Kubernetes Deployment - HA-Setup - Demo - Istio Introduction Florian Lscher Solution Architect and Co-Founder Skills CV Solution

845 views • 70 slides
Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like -

Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like -

Continuous Kubernetes Security @sublimino and @controlplaneio Im: - Andy - Dev-like - Sec-ish - Ops-y Is this Kubernetes cluster secure? EPIC FAIL GIF How secure is Kubernetes? What this Kubernetes talk is about Common Pwns

1.18k views • 113 slides
Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source

Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source

Kubernetes Matthias Haeussler Mirna Alaisami Overview Overview Kubernetes is an open-source platform designed to automate deploying , scaling , and operating application containers . Kubernetes v1.0 was released in 2015. It utilizes

916 views • 52 slides
K8s Intermediate Kubernetes a clustered container orchestration Software an open-source system

K8s Intermediate Kubernetes a clustered container orchestration Software an open-source system

K8s Intermediate Kubernetes a clustered container orchestration Software an open-source system for automating deployment, scaling, and management of containerized applications. It groups containers that make up an application into logical units

566 views • 45 slides
K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi

K8s or Die! You must do Kubernetes. Or should you? If so when, where, why? How?! Marco Ceppi @marcoceppi Ryan Beisner @ryanbeisner Why Kubernetes Computing in the modern age Virtual Process Machines Containers Traditional Container

516 views • 24 slides
From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang

From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang

From Laptop to the World With Kubernetes @saturnism @googlecloud #kubernetes Ray Tsang Developer Advocate Google Cloud Platform @saturnism | +RayTsang @saturnism @googlecloud #kubernetes Ray Tsang Developer Architect Traveler

1.29k views • 65 slides
Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes

Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes

Contributing to kubernetes Who am I? Senior Software Engineer at Gojek Organizer at Kubernetes & Cloud Native Meetups in Jakarta and Bandung https://www.meetup.com/jakarta-kubernetes/ https://www.meetup.com/Microservice-JKT/ You can find

709 views • 47 slides
Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes?

Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes?

@MELANIECEBULA / MARCH 2019 / CON LONDON Developing Kubernetes Services at Airbnb Scale @MELANIECEBULA What is kubernetes? @MELANIECEBULA Who am I? A BRIEF HISTORY @MELANIECEBULA Why Microservices? 4000000 3000000 2000000 MONOLITH

1.74k views • 111 slides
StarlingX Hardened Managed Kubernetes Platform for the Edge BRENT ROWSELL STARLINGX TSC

StarlingX Hardened Managed Kubernetes Platform for the Edge BRENT ROWSELL STARLINGX TSC

StarlingX Hardened Managed Kubernetes Platform for the Edge BRENT ROWSELL STARLINGX TSC MEMBER GREG WAINES STARLINGX CORE BART WENSLEY STARLINGX CORE STARLINGX.IO Agenda Architecture Overview Deployment Models Day 1/Day

225 views • 19 slides
Automated Canaries with Prometheus, Kubernetes and Service Mesh Bryan Boreham

Automated Canaries with Prometheus, Kubernetes and Service Mesh Bryan Boreham

Automated Canaries with Prometheus, Kubernetes and Service Mesh Bryan Boreham @bboreham https://weave.works @weaveworks 1 Canary Deployment Stages https://github.com/weaveworks/flagger Thank You! Weaveworks

301 views • 5 slides
Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop R U Ready? This is my vest this is my CORE. These are all of the things I need as a Marine to be successful during this deployment: Who

453 views • 34 slides
Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop R U Ready? This is my vest this is my CORE. These are all of the things I need as a Marine to be successful during this deployment: Who

426 views • 25 slides
Compute and data management strategies for grid deployment of high throughput protein structure

Compute and data management strategies for grid deployment of high throughput protein structure

Compute and data management strategies for grid deployment of high throughput protein structure studies Ian Stokes-Rees, Piotr Sliz Harvard Medical School Many Task Computing on Grids and Supercomputers 2010 Overview Context: Structural

441 views • 33 slides
Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes

Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes

Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes Enthusiast Speaker at Meetups Email: apurvbhandari@gmail.com LinkedIn: https://www.linkedin.com/in/apurvabhandari-linux GitHub:

2.17k views • 28 slides
Kubernetes APIs Under the Hood @pwittrock Who Am I? Phillip Wittrock (@pwittrock) Software

Kubernetes APIs Under the Hood @pwittrock Who Am I? Phillip Wittrock (@pwittrock) Software

Kubernetes APIs Under the Hood @pwittrock Who Am I? Phillip Wittrock (@pwittrock) Software Engineer at Google working on GKE and OSS Kubernetes My mission is to make using Kubernetes simple and enjoyable You might have come across me

1.12k views • 27 slides
Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes

Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes

Stateful workloads on kubernetes with ceph Agenda CaaS Kubernetes Ceph Storage Operation NVRAMOS 2019 10/28/2019 Cloud Service Model On Premises IaaS CaaS PaaS SaaS Applications Applications

660 views • 36 slides
Kubernetes Administration from Zero to (junior) Hero Lszl Budai Component Soft Ltd.

Kubernetes Administration from Zero to (junior) Hero Lszl Budai Component Soft Ltd.

Kubernetes Administration from Zero to (junior) Hero Lszl Budai Component Soft Ltd. Agenda 1.Introduction 2.Accessing the kubernetes API 3.Kubernetes workloads 4.Accessing applications 5.Volumes and persistent storage 2 (c) 2018

1.17k views • 57 slides
OpenStack on Kubernetes: Make OpenStack and Kubernetes Fail-Safe Seungkyu Ahn (ahnsk@sk.com)

OpenStack on Kubernetes: Make OpenStack and Kubernetes Fail-Safe Seungkyu Ahn (ahnsk@sk.com)

OpenStack on Kubernetes: Make OpenStack and Kubernetes Fail-Safe Seungkyu Ahn (ahnsk@sk.com) Jaesuk Ahn (jay.ahn@sk.com) Open System Lab Network IT Convergence R&D Center SK Telecom Wil Reichert (wil@solinea.com) Solinea What will

1.26k views • 46 slides
Strategies to finance large-scale deployment of renewable energy projects (FINANCE-RE) Hans

Strategies to finance large-scale deployment of renewable energy projects (FINANCE-RE) Hans

Strategies to finance large-scale deployment of renewable energy projects (FINANCE-RE) Hans Jrgen Koch Chair IEA-RETD and Deputy State Secretary, The Energy Agency, Ministry of Climate, Energy and Building Forging International Finance

551 views • 13 slides
Kubernetes on ARM64 Kubernetes on ARM64 Raspberry PI 4 Kubernetes cloud for a Raspberry PI 4

Kubernetes on ARM64 Kubernetes on ARM64 Raspberry PI 4 Kubernetes cloud for a Raspberry PI 4

Kubernetes on ARM64 Kubernetes on ARM64 Raspberry PI 4 Kubernetes cloud for a Raspberry PI 4 Kubernetes cloud for a few Euros! few Euros! Jean-Frederic Clere Jean-Frederic Clere @jfclere @jfclere Fosdem 2020 Feb. 1-2, 2020 TM Who am I?

529 views • 26 slides

More recommend