Room 2 - 6 - Đinh Tuấn Phong - Migrate opensource database to Kubernetes easier with Percona Kubernetes Operators

The document discusses using Senlin, an OpenStack clustering service, to provide autoscaling capabilities for multicloud platforms. Senlin allows for managing clusters of nodes across different cloud providers and includes features like load balancing, auto-healing, and scaling policies. It describes how Senlin was implemented at a company to provide a centralized autoscaling solution across OpenStack and VMware cloud environments. Some drawbacks of Senlin are also outlined, along with potential future work like multi-region clusters and global load balancing.

Nguyễn Văn Thắng & Dzung Nguyen - Ứng dụng openzfs làm lưu trữ tập trung

Trần Tuấn Anh - Defending Software Supply Chain Security in Banking or Any Highly Regulated Industry

Those are the slides that were used to give an introduction to Kubernetes at the Nardoz Berlin Meetup on the 2018-06-28.

This document discusses using CI/CD and OpenStack cloud to automate development and operations processes. It outlines building a CI/CD infrastructure with OpenStack, including using an OpenStack cloud plugin to autoscale Jenkins slaves on demand. It also describes automating the provisioning and destruction of staging environments in OpenStack using Heat and Ansible to integrate with GitLab for merge request testing. The results showed improvements like continuous delivery, isolated ephemeral staging environments, faster and more reliable releases, and automatic scaling of resources. Challenges mentioned include scaling times in OpenStack and supporting non-containerized builds.

Traditional virtualization technologies have been used by cloud infrastructure providers for many years in providing isolated environments for hosting applications. These technologies make use of full-blown operating system images for creating virtual machines (VMs). According to this architecture, each VM needs its own guest operating system to run application processes. More recently, with the introduction of the Docker project, the Linux Container (LXC) virtualization technology became popular and attracted the attention. Unlike VMs, containers do not need a dedicated guest operating system for providing OS-level isolation, rather they can provide the same level of isolation on top of a single operating system instance. An enterprise application may need to run a server cluster to handle high request volumes. Running an entire server cluster on Docker containers, on a single Docker host could introduce the risk of single point of failure. Google started a project called Kubernetes to solve this problem. Kubernetes provides a cluster of Docker hosts for managing Docker containers in a clustered environment. It provides an API on top of Docker API for managing docker containers on multiple Docker hosts with many more features.

Nguyễn Văn Thắng & Dzung Nguyen - Proxmox VE và ZFS over iscsi

This document provides an overview of Kubernetes including: 1) Kubernetes is an open-source platform for automating deployment, scaling, and operations of containerized applications. It provides container-centric infrastructure and allows for quickly deploying and scaling applications. 2) The main components of Kubernetes include Pods (groups of containers), Services (abstract access to pods), ReplicationControllers (maintain pod replicas), and a master node running key components like etcd, API server, scheduler, and controller manager. 3) The document demonstrates getting started with Kubernetes by enabling the master on one node and a worker on another node, then deploying and exposing a sample nginx application across the cluster.

Viettel Networks operates a large OpenStack cloud called Cloud Hotpot. They mix different compute and storage resources by using techniques like CPU pinning, host aggregates, and Ceph configuration. Sensitive points in OpenStack like RabbitMQ and HAProxy settings also require tuning to handle Viettel's large scale cloud.

If you’re working with just a few containers, managing them isn't too complicated. But what if you have hundreds or thousands? Think about having to handle multiple upgrades for each container, keeping track of container and node state, available resources, and more. That’s where Kubernetes comes in. Kubernetes is an open source container management platform that helps you run containers at scale. This talk will cover Kubernetes components and show how to run applications on it.

** Kubernetes Certification Training: https://www.edureka.co/kubernetes-certification ** This Edureka tutorial on "Kubernetes Architecture" will give you an introduction to popular DevOps tool - Kubernetes, and will deep dive into Kubernetes Architecture and its working. The following topics are covered in this training session: 1. What is Kubernetes 2. Features of Kubernetes 3. Kubernetes Architecture and Its Components 4. Components of Master Node and Worker Node 5. ETCD 6. Network Setup Requirements ​DevOps Tutorial Blog Series: https://goo.gl/P0zAfF

This document discusses using Prometheus to monitor Kubernetes clusters. It provides background on Kubernetes and Prometheus architectures. It then describes challenges with the previous monitoring setup and proposes using the Prometheus operator to more easily monitor Kubernetes and application metrics. The Prometheus operator allows automatically generating target configurations based on Kubernetes labels and provides Custom Resource Definitions for Prometheus and Service Monitors.

Everyone heard about Kubernetes. Everyone wants to use this tool. However, sometimes we forget about security, which is essential throughout the container lifecycle. Therefore, our journey with Kubernetes security should begin in the build stage when writing the code becomes the container image. Kubernetes provides innate security advantages, and together with solid container protection, it will be invincible. During the sessions, we will review all those features and highlight which are mandatory to use. We will discuss the main vulnerabilities which may cause compromising your system. Contacts: LinkedIn - https://www.linkedin.com/in/vshynkar/ GitHub - https://github.com/sqerison ------------------------------------------------------------------------------------- Materials from the video: The policies and docker files examples: https://gist.github.com/sqerison/43365e30ee62298d9757deeab7643a90 The repo with the helm chart used in a demo: https://github.com/sqerison/argo-rollouts-demo Tools that showed in the last section: https://github.com/armosec/kubescape https://github.com/aquasecurity/kube-bench https://github.com/controlplaneio/kubectl-kubesec https://github.com/Shopify/kubeaudit#installation https://github.com/eldadru/ksniff Further learning. A book released by CISA (Cybersecurity and Infrastructure Security Agency): https://media.defense.gov/2021/Aug/03/2002820425/-1/-1/1/CTR_KUBERNETES%20HARDENING%20GUIDANCE.PDF O`REILLY Kubernetes Security: https://kubernetes-security.info/ O`REILLY Container Security: https://info.aquasec.com/container-security-book Thanks for watching!

This document discusses Kubernetes networking and security. It covers Docker networking and how all containers can communicate without NAT. It also discusses Kubernetes networking using Kubenet, Flannel, and Calico. Specifically, it explains how Kubenet provides networking between pods, how Flannel assigns each host a subnet and routes traffic between nodes, and how Calico uses IPIP encapsulation or routing to provide connectivity between pods.

In this session, we will discuss the architecture of a Kubernetes cluster. we will go through all the master and worker components of a kubernetes cluster. We will also discuss the basic terminology of Kubernetes cluster such as Pods, Deployments, Service etc. We will also cover networking inside Kuberneets. In the end, we will discuss options available for the setup of a Kubernetes cluster.

Use Helm to package and deploy a composed application to any Kubernetes cluster. Manage your releases easily over time and across multiple K8s clusters.

https://www.youtube.com/watch?v=YmIAatr3Who Presented at Cloud and AI DevFest GDG Montreal on September 27, 2019. Are you looking to get more flexibility out of your CICD platform? Interested how GitOps fits into the mix? Learn how Argo CD, Workflows, and Events can be combined to craft custom CICD flows. All while staying Kubernetes native, enabling you to leverage existing observability tooling.

Deploy, manage and scale Kubernetes with Rancher - a session given in ContainerConf 2017 (7th April) in Bangalore

We are on the cusp of a new era of application development software: instead of bolting on operations as an after-thought to the software development process, Kubernetes promises to bring development and operations together by design.

This document discusses several open source projects from the Cloud Native Computing Foundation (CNCF). The CNCF aims to accelerate adoption of containers, microservices, and cloud native applications. It hosts projects like Containerd, Kubernetes, CoreDNS, Linkerd, Prometheus, Fluentd, OpenTracing, and others. Containerd and rkt are container runtimes. Kubernetes is an orchestration system. CNCI, CoreDNS, and Linkerd provide container networking, DNS/service discovery, and service mesh capabilities. Prometheus, Fluentd, OpenTracing provide monitoring, logging, and distributed tracing.

A presentation about container technology for the enterprise held at Ekito's geek breakfast the 4th of November 2016.