Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
SlideShare a Scribd company logo

Kubernetes on OpenStack @eBay

Download as PPTX, PDF

This document summarizes how Kubernetes can be used on OpenStack. It discusses integrating Kubernetes with OpenStack services for networking (Neutron), identity and access management (Keystone), storage (Cinder and Swift), cluster setup/management, and container registry. For each area, it provides an overview of the current integration and potential future enhancements.

1 of 19

1

Kubernetes on Openstack @ Ashwin Raveendran eBay Cloud Engineering

2

What is Kubernetes A lean, portable, extensible platform for managing cloud native applications - container packaged - dynamically scheduled - declarative state - microservices oriented

3

Kubernetes on OpenStack @eBay

4

neutron keystone cinder nova swift

5

work streams Networking IAM Storage Cluster setup and Management Container Registry

6

Networking • Leverage cloud native networking solution Pods needs cluster wide routable IPs Each node requires a CIDR block Performance and Manageability • Neutron private networks within cluster • Assign one neutron network/subnet per node

7

Kubernetes on OpenStack @eBay

8

Networking: future • Pure Layer 3 networking with BGP • Policy based distributed firewall • IPV6

9

Kube APIs requires identity and access management • Leverage keystone as the IAM service • map keystone projects == kube namespaces • use keystone authentication and RBAC IAM

10

Kubernetes on OpenStack @eBay

11

ABAC policy based plugin Integrate keystone into kubectl cli flow for tokens Offer a native IAM service for cloud native applications IAM: future

12

Storage Stateful workload needs high performance persistent storage • leverage openstack cinder • Storage plugin manages pod volume lifecycle automatically

13

Kubernetes on OpenStack @eBay

14

Storage: future • Native distributed storage • Swift based storage sidecars

15

Cluster Setup and Management • openstack apis, custom scripts, cloud-init, salt stack • disk-image-builder based pipeline for building compute images for minions • swift for storing non-dockerized build artifacts

16

Cluster Setup and Mgmt: future • multi cloud-provider cluster setup and management using declarative state • federated cluster management for hybrid clouds patterns (cluster federation)

17

Container Registry Container registry needs access control • Keystone for ACLs Container registry needs dependable storage • Swift as backing storage

18

Container Registry: future • Notary support • Scale

19

thank you

More Related Content

Kubernetes on OpenStack @eBay

Editor's Notes

  1. Intro on name
  2. Container cluster platform, Abstracts infrastructure, scheduled , application failure and node failures are handled Containers Flexible Consistency Division of labor between dev and ops predictable performance
  3. Loadbalancer integration challenges
  4. Loadbalancer integration challenges
  5. Loadbalancer integration challenges