Life as a SRE at Instana

Conﬁdential and Proprietary Information for Instana, Inc.
SRE:
A day in the life …
by Marcel Birkner

Bio
Marcel Birkner works as a Staﬀ Reliability
Engineer at Instana, an Application
Performance Monitoring (APM) solution. He
has long experience in software
engineering and software automation.
Currently he focuses on migrating the
existing stack to Kubernetes and reducing
overall system complexity.

Abstract
What does a typical day as an SRE look like? In this presentation I will discuss
the challenges we face while running a SaaS platform that is used 24 / 7 / 365
around the globe. In doing so, we have embraced the core principles
described in the Google SRE handbook. While we are not Google by any
means, most of the principles apply to our daily work one way or another.
Having a fully distributed team running a distributed system can be quite
challenging. In this talk I’ll be covering:
● Core SRE principles
● How Instana has applied them to our daily work
● Lessons learned along the way

Who We Are

Conﬁdential and Proprietary Information for Instana, Inc.Conﬁdential and Proprietary Information for Instana, Inc.
SRE Team
1 Team
3 Time zones
24 / 7 / 365 support
On-call rotation
Members have
operations and
software
engineering
background
Team US
Team EU
Team AU

What We Do

Application
Tracing EUM
Mobile App
ServiceInfrastructure
https://play-with.instana.io

Stats
280 TB / Month
Ingress
8 PB / Month
Cross AZ Traﬃc
30K+ ECU
8 diﬀerent datastore
clusters / region
4K+ Containers
Running in SaaS

SaaS Regions
Multi Cloud Strategy
2 x AWS regions
2 x GCP regions
HashiCorp
Nomad/Consul
Kubernetes

How We Do It

SRE by the book
OnCall
Post Mortems
SLI / SLO / SLA
RCA
Error Budgets
Database Ops
Dev Support
Software
Development
Cost Planning
Automation
Platform
Eng / Ops
...
Maintenance
Network Ops
Capacity Planning

Planned Day
● 30 min Handoﬀ Team AU
● 50% Tickets/QoS
● 50% Project work
● 30 min Handoﬀ Team US

Actual Day
● Handoﬀ Team AU
● Alerts
● Ping by Engineering
● Ping by SE / PM
● Ping by CS
● Less project work than planned
● Handoﬀ Team US
Learn to say “No”

Communication is vital
"Something is broken"
Engineering:
"Okay, will have a look"
Sales / CS:
"OMG" => Escalation to CEO => Escalates to VP Eng.
Private Slack Channels
tech-*
Avoid Panic

SRE Team Priorities
● Quality of Service of SaaS platform
● Platform Security
● regularly security scans
● Project Work
● Multi Cloud (AWS & GCP)
● Cost Management
● Migrate platform to Kubernetes
● Upgrade Elasticsearch clusters
● Integrating new datastore (BeeInstant)
● Support On-Premises
● Developer Support
● Packaging and Delivery

Google SRE Book
Part II: Principles
Embracing Risk
Service Level Objectives
Eliminating Toil
Monitoring Distributed Systems
Release Engineering
Simplicity

Embracing Risk
● Redundancy / HA / failover
● Datastore clusters across AZ
● Horizontal scaleout of components
● Costs
● Cost per monitored host
● K8s / Nomad Orchestration bin-packing
● Managing TU resources
● Beta Phase for new features
● Test using internal units
● Beta customers
● Coming soon: Error Budgets

Service Level Indicators / Objectives
● Custom SLOs for all components in SaaS platform
● SLO conﬁguration stored and versioned with backend code
● Updated via REST API after each release
● Identical across all regions
● Managed by Engineering and SRE

Eliminating Toil
"The moment you have to do something twice, think about automating it"
Spin up new VM Jenkins + Terraform
Setup / Expand datastore cluster Chef recipes
Deploy / Update components Jenkins + instanactl
Run migrations Jenkins + instanactl
Configure Jenkins Job Jenkins Job DSL (all jobs are generated)
Configure DNS instanactl / external-dns (a few DNS entries are manually
configured)
Setup GKE cluster gcloud
Setup EKS cluster eksctl

Monitoring Distributed Systems
We use Instana to monitor Instana
● Datastores (Cassandra, ClickHouse, CockroachDB, Elasticsearch, Kafka,
ZooKeeper, ...)
● Infrastructure Monitoring
● Java DropWizard
● NodeJS
● Automatic Distributed tracing
● Automatic End-User-Monitoring
● Built-in alerting
Feedback Loop with PM & Engineering

Release Engineering
● Bi-Weekly Major Releases (Consistency)
● Continuous Release of Beta Features & Improvements & Hotﬁxes (24 / 7)
● Rotating Release Engineer
● Knowledge Sharing / Release Engineer Playbook
● Rollut for new K8s environments fully automated
● instanactl <environment> upgrade
■ check preconditions
■ run migrations
■ upgrade shared and tenant unit containers
■ check postconditions
● Post Mortem after each release / incident
● Improve / automate / refactor processes

Simplicity, Simplicity,
Simplicity, ...

Automatic Complexity - Infrastructure
New Regions
Multi Cloud
Infrastructure
automatically becomes
more complex over time
due to growth and other
external factors.

System architecture
automatically becomes
more complex when new
features are added over
time.
Automatic Complexity - Product
New Features
New Datastores
New Components

Work Towards Simplicity
Infrastructure Design
Network Design
Plan your infrastructure and network design for
growth and simplicity. Keep the overall system
as simple possible and only as complex as really
needed. This will make your life a lot easier
during your typical work day. In times of crisis
(i.e. outages) a simple system is easier to
understand for all engineers involved to resolve
the issue at hand.
First 5 years
Next 5 years

Common Codebase (SaaS / On-Premises)
up to 2019
Each datastore its migration tool
● Cassandra (cassandra-migrator)
● ClickHouse (golang-migrate)
● Elasticsearch (http-client)
● Kafka (kafka-cli)
● MongoDB (mongo migrator)
○ replaced by CockroachDB
● PostgreSQL (ﬂyway db)
○ replaced by CockroachDB
Runtimes: Ruby/Python/Java
2020
instanactl
● GoLang CLI
○ cobra library
○ golang-migrate library
● used by SaaS and On-Premises
● single place for migration scripts
Runtimes: Single GoLang Binary

Common Codebase (SaaS / On-Premises)
up to 2019
● separate conﬁguration
● separate packaging (Docker / Packages)
○ SaaS: Docker
○ OnPrem: RPM / DEB
● separate delivery (Ansible / Chef)
Runtimes: Python / Ruby
2020
● same conﬁguration
● same Docker images
● same migration tool
○ instanactl
Runtimes: GoLang Binary & Docker
Supported Operating Systems
Ubuntu 16.04, 18.04 Debian 8.x, 9.x, 10.x RedHat 7.2+ CentOS 7.x Amazon Linux 2.x

Lessons Learned

Learn to say “No” Reduce Complexity
Know Your Tools
Focus and Prioritize
Work
Keep Tooling to a
Bare Minimum
Communicate
Across Teams
Share Knowledge
(SRE runbook, screen recordings, blogs)

Q&A

w w w . i n s t a n a . c o m

Life as a SRE at Instana

More Related Content

Life as a SRE at Instana