KEMBAR78
Infrastructure as code using Kubernetes | PDF
Walter Liu, profile picture
Uploaded byWalter Liu
23 views

Infrastructure as code using Kubernetes

The document discusses the use of Google Cloud Platform (GCP) and Kubernetes (K8s) for infrastructure as code, emphasizing rapid cluster creation and automated deployment. Key components include container management, SQL databases, load balancing, monitoring, and logging. Various scripts and configurations are provided to simplify operations and enhance efficiency in development and production environments.

Download to read offline
Infrastructure as code using GCP K8S by Walter 2017/08/30
–Walter Liu “Based on a true story. Not best practice :P” 覺得quote slide很有趣拿來⽤ :P
Based on a true story
Overcrowded - Asia-east-c 服務要上線了,天啊!!!
Using GCP to create new cluster in 1 hour
Google Cloud Platform ❖ Container Engine ❖ Container Registry ❖ SQL ❖ Networking ❖ Load Balancer ❖ Firewall ❖ Monitoring (StackDriver) ❖ Logging ❖ Storage ❖ IAM & Service Account
Kubernetes ❖ Infrastructure as code ❖ Self-healing ❖ Horizontal scaling ❖ Automatized rollouts and rollback ❖ Service Discovery and Load Balancing ❖ Configuration ❖ ……
What’s the secret?
Be prepared
Write down notes or even script
Use K8S configs (apply -f) and Template them to reduce complexity
Write operation scripts to deal with daily jobs
TitanOPS script ❖ shell ❖ logs ❖ clogs ❖ deploy ❖ udeploy ❖ update ❖ images
GCP: Container Engine ❖ 3 * 2 CPU 7.5 GB memory VM ❖ get external IPs of Nodes for Google Cloud SQL (1st generation)
GCP: Container Registry ❖ For Container Engine ❖ Items ❖ main_game_web ❖ nimo_server ❖ twemproxy
GCP: SQL ❖ Dee (failover) ❖ Nimo (failover) ❖ Nimo-kpi (MyISAM, 1st generation, IP-based) ❖ Nimo-chat (MyISAM, 1st generation, IP-based) ❖ 2 types of connection ❖ CloudSQLProxy (2nd generation) ❖ IP (1st generation) ❖ How to check connection ❖ python manage.py dbshell (dee platform) ❖ mysql -u xxxx -p xxx -h xxx -P (nimo)
Networking: Load Balancer ❖ Google Load Balancer (Prod) ❖ client => CDN => Google Load Balancer => K8S ❖ Kubernetes Load Balancer (Dev/Stg) ❖ with Firewall settings (in K8S config)
GCP: Monitor and Logging ❖ click and see them ❖ Command line logging shows only today
Storage ❖ Container Registry repo ❖ static web sites ❖ Use ./titan_control.py udeploy to deploy them. ❖ dev-static ❖ stg-static ❖ prod-static ❖ stg-nimo-res ❖ prod-nimo-res ❖ prod-tl-static
Kubernetes component used ❖ POD ❖ Deployment ❖ Statefulset ❖ Service ❖ Ingress
Deployment & Statefulset ❖ xxx-web-api ❖ xxx-web-celery-beat ❖ xxx-web-celery-worker ❖ xxx-web-cache (statuefulset) ❖ xxx-redis-queue ❖ xxx-nimo-server ❖ xxx-nimo-celery-beat ❖ xxx-nimo-celery-worker ❖ xxx-nimo-tool ❖ xxx-nimo-payment ❖ xxx-nimo-kvs (statuefulset)
Service ❖ External ❖ Any service with external IP ❖ Internal ❖ xxx-internal-nimo-xxx-service ❖ nimo-xxx-db-master/slave (SQL 1st generation) ❖ xxx-redis-queue-service
❖ GCP Load Balancer ❖ sites ❖ g.deegroup.com ❖ a-g.deegroup.com ❖ app-tl.deegroup.com Ingress
CDN static site cache time ❖ 2 minutes client cache time ❖ 7 days CDN edge cache time ❖ Written in titan_control.py
K8S templating ❖ K8S doesn’t supports templating yet. ❖ ./titan_control.py deploy ❖ dev ❖ stg ❖ prod ❖ dev-nimo ❖ stg-nimo ❖ prod-nimo ❖ deploy/templates/* ❖ deploy/params/*
Deploy new code ❖ Update to git ❖ ./titan_control.py update ❖ modify image_tag: ?????? of “deploy/params/xxxx.yaml” ❖ ./titan_control.py deploy dev/stg/prod ….
Deploy new static content ❖ Update to git/update to nimo res ❖ ./titan_control.py update (For nimo res, skip this) ❖ ./titan_control.py udeploy prod/prod-nimo-res …
Other commands ❖ Tracking logs ❖ shell to container (always chose first, for dev) ❖ images
How to create in 1 hour ❖ In my notes ❖ Create secrets kubectl create secret generic cloudsql-credentials --from-file=credentials.json=secret/credentials.json ❖ Create config maps kubectl apply -f configs/telegraf.yaml gcloud compute http-health-checks list gcloud compute http-health-checks update k8s-be-31451--XXXXXXXXXXX --host xxx.com ❖

More Related Content

PDF
Introduction to Kubernetes and GKE
byOpsta
 
PDF
Infrastructure Management in GCP
byDana Hoffman
 
PDF
Using Kubernetes to deploy Django in GCP
byWalter Liu
 
PDF
從Google cloud看kubernetes服務
byinwin stack
 
PPTX
GCP - Continuous Integration and Delivery into Kubernetes with GitHub, Travis...
byOleg Shalygin
 
PDF
Build Your Own CaaS (Container as a Service)
byHungWei Chiu
 
PPTX
Zero to Continuous Delivery on Google Cloud
byJames Heggs
 
PDF
Deploying NGINX in Cloud Native Kubernetes
byKangaroot
 
Introduction to Kubernetes and GKE
byOpsta
 
Infrastructure Management in GCP
byDana Hoffman
 
Using Kubernetes to deploy Django in GCP
byWalter Liu
 
從Google cloud看kubernetes服務
byinwin stack
 
GCP - Continuous Integration and Delivery into Kubernetes with GitHub, Travis...
byOleg Shalygin
 
Build Your Own CaaS (Container as a Service)
byHungWei Chiu
 
Zero to Continuous Delivery on Google Cloud
byJames Heggs
 
Deploying NGINX in Cloud Native Kubernetes
byKangaroot
 

Similar to Infrastructure as code using Kubernetes

PDF
Google Kubernetes Engine Deep Dive Meetup
byIftach Schonbaum
 
PPTX
It's not too late to learn about k8s
byCesar Tron-Lozai
 
PDF
Introduction to EKS (AWS User Group Slovakia)
byVladimir Simek
 
PDF
Container network security
byDaisuke Nakajima
 
ODP
Google Cloud Platform for DeVops, by Javier Ramirez @ teowaki
byjavier ramirez
 
PDF
Intro to Kubernetes
bymatthewbrahms
 
PPTX
Iac d.damyanov 4.pptx
byDimitar Damyanov
 
PDF
Kubernetes Basis: Pods, Deployments, and Services
byJian-Kai Wang
 
PDF
Deploy 22 microservices from scratch in 30 mins with GitOps
byOpsta
 
PPTX
Introduction to GCCP - 2022.pptx
byRamSamarthBB
 
PDF
k8s from kube-proxy and iptables-by Martynas.pdf
byssuserff7364
 
PDF
Docker, Kubernetes, and Google Cloud
bySamuel Chow
 
PPTX
Kubernetes - Why It's Cool & Why It Maaters
byBob Reselman
 
PDF
GCP - GCE, Cloud SQL, Cloud Storage, BigQuery Basic Training
bySimon Su
 
PDF
Meetup 2023 - Gateway API.pdf
byRed Hat
 
PDF
GCP-DevOps-projectintroduxtionfir devopsproject.pdf
byMasar10
 
PDF
Kubernetes and Cloud Native Meetup - March, 2019
byCloudOps2005
 
PDF
Infrastructure setup on Google Cloud using terraform and Ansible
byKnoldus Inc.
 
PDF
prodops.io k8s presentation
byProdops.io
 
PDF
Kubernetes Workshop
byWalter Liu
 
Google Kubernetes Engine Deep Dive Meetup
byIftach Schonbaum
 
It's not too late to learn about k8s
byCesar Tron-Lozai
 
Introduction to EKS (AWS User Group Slovakia)
byVladimir Simek
 
Container network security
byDaisuke Nakajima
 
Google Cloud Platform for DeVops, by Javier Ramirez @ teowaki
byjavier ramirez
 
Intro to Kubernetes
bymatthewbrahms
 
Iac d.damyanov 4.pptx
byDimitar Damyanov
 
Kubernetes Basis: Pods, Deployments, and Services
byJian-Kai Wang
 
Deploy 22 microservices from scratch in 30 mins with GitOps
byOpsta
 
Introduction to GCCP - 2022.pptx
byRamSamarthBB
 
k8s from kube-proxy and iptables-by Martynas.pdf
byssuserff7364
 
Docker, Kubernetes, and Google Cloud
bySamuel Chow
 
Kubernetes - Why It's Cool & Why It Maaters
byBob Reselman
 
GCP - GCE, Cloud SQL, Cloud Storage, BigQuery Basic Training
bySimon Su
 
Meetup 2023 - Gateway API.pdf
byRed Hat
 
GCP-DevOps-projectintroduxtionfir devopsproject.pdf
byMasar10
 
Kubernetes and Cloud Native Meetup - March, 2019
byCloudOps2005
 
Infrastructure setup on Google Cloud using terraform and Ansible
byKnoldus Inc.
 
prodops.io k8s presentation
byProdops.io
 
Kubernetes Workshop
byWalter Liu
 

More from Walter Liu

PDF
Generative AI 在手機遊戲發行上的應用介紹.pdf
byWalter Liu
 
PDF
手機遊戲數位行銷工具淺談
byWalter Liu
 
PDF
關於第三方追蹤廣告再行銷的那些事兒
byWalter Liu
 
PDF
Game DDOS Prevention
byWalter Liu
 
PPTX
Airflow - a data flow engine
byWalter Liu
 
PPT
Super Fast Gevent Introduction
byWalter Liu
 
PPTX
HTTP/2 to web dev
byWalter Liu
 
PPTX
HTTP/2 Introduction
byWalter Liu
 
PDF
Consul - service discovery and others
byWalter Liu
 
PPTX
Docker introduction
byWalter Liu
 
PPTX
WRS GIT Branching Model - draft
byWalter Liu
 
PPTX
Salty OPS – Saltstack Introduction
byWalter Liu
 
PDF
Django deployment and rpm+yum
byWalter Liu
 
PDF
Game Localization in Python
byWalter Liu
 
PPTX
Service production from d3 pitfall viewpoint
byWalter Liu
 
PPTX
Celery in the Django
byWalter Liu
 
Generative AI 在手機遊戲發行上的應用介紹.pdf
byWalter Liu
 
手機遊戲數位行銷工具淺談
byWalter Liu
 
關於第三方追蹤廣告再行銷的那些事兒
byWalter Liu
 
Game DDOS Prevention
byWalter Liu
 
Airflow - a data flow engine
byWalter Liu
 
Super Fast Gevent Introduction
byWalter Liu
 
HTTP/2 to web dev
byWalter Liu
 
HTTP/2 Introduction
byWalter Liu
 
Consul - service discovery and others
byWalter Liu
 
Docker introduction
byWalter Liu
 
WRS GIT Branching Model - draft
byWalter Liu
 
Salty OPS – Saltstack Introduction
byWalter Liu
 
Django deployment and rpm+yum
byWalter Liu
 
Game Localization in Python
byWalter Liu
 
Service production from d3 pitfall viewpoint
byWalter Liu
 
Celery in the Django
byWalter Liu
 

Recently uploaded

DOCX
What Is the Best BI Software Other Than Tableau.docx
byVarsha Nayak
 
PPTX
Cyber-Security-Essentials (21AK1A0217).pptx
byGaganGagan44
 
PDF
The Rise of AI Agents: Powering the Next Industrial Era
byMaxim Salnikov
 
PPTX
Validation testing in software engineering
bytanzeelamohsin01
 
PDF
Practical Performance Tuning for Serverless Java on AWS- InfoQ Dev Summit
byVadym Kazulkin
 
PDF
The new Volto Form Block, Plone Conference 2025
byRob Gietema
 
PDF
Metrics, logs, traces, and mayhem_ introducing an observability adventure gam...
byImma Valls Bernaus
 
PDF
ASTC Conference 2025 - Bridging the Gap!
byGareth Oakes
 
PPT
preliminaries, concepts of programming languages
bymjmansoori54
 
DOCX
Best Tableau Alternatives for Data Analytics and Reporting.docx
byVarsha Nayak
 
PDF
VADY GenAI – Enterprise AI Solutions with Complete Data Control and Smart Dec...
byNewFangledVision
 
DOCX
Comprehensive Guide to SharePoint Consulting Services – Benefits, Process, an...
bySharepoint Designs
 
PDF
The 50+ First-Timer: My OpenTelemetry Contribution and How Your CNCF Journey...
byImma Valls Bernaus
 
PDF
Driving Stress Detection Using Multimodal CNN with Nonlinear Representation o...
byPranjal Kumar
 
PDF
SAP & CTRM Testing Like Never Before
byZoe Gilbert
 
PPTX
Standardization of open-source software ISO/IEC 5230:2020 and ISO/IEC 18974:2...
byShane Coughlan
 
PDF
Dreamforce 2025: Welcome to the Agentic Enterprise
byDele Amefo
 
PPTX
AI-Powered Intelligent Agents for Fraud Detection
byleolucus1995
 
PDF
VADY Smart Data Flow – Automated Data Insights for Scalable Enterprise Decisions
byNewFangledVision
 
PDF
Security Architecture Views the FDA Expects — And How to Get Them Right
byICS
 
What Is the Best BI Software Other Than Tableau.docx
byVarsha Nayak
 
Cyber-Security-Essentials (21AK1A0217).pptx
byGaganGagan44
 
The Rise of AI Agents: Powering the Next Industrial Era
byMaxim Salnikov
 
Validation testing in software engineering
bytanzeelamohsin01
 
Practical Performance Tuning for Serverless Java on AWS- InfoQ Dev Summit
byVadym Kazulkin
 
The new Volto Form Block, Plone Conference 2025
byRob Gietema
 
Metrics, logs, traces, and mayhem_ introducing an observability adventure gam...
byImma Valls Bernaus
 
ASTC Conference 2025 - Bridging the Gap!
byGareth Oakes
 
preliminaries, concepts of programming languages
bymjmansoori54
 
Best Tableau Alternatives for Data Analytics and Reporting.docx
byVarsha Nayak
 
VADY GenAI – Enterprise AI Solutions with Complete Data Control and Smart Dec...
byNewFangledVision
 
Comprehensive Guide to SharePoint Consulting Services – Benefits, Process, an...
bySharepoint Designs
 
The 50+ First-Timer: My OpenTelemetry Contribution and How Your CNCF Journey...
byImma Valls Bernaus
 
Driving Stress Detection Using Multimodal CNN with Nonlinear Representation o...
byPranjal Kumar
 
SAP & CTRM Testing Like Never Before
byZoe Gilbert
 
Standardization of open-source software ISO/IEC 5230:2020 and ISO/IEC 18974:2...
byShane Coughlan
 
Dreamforce 2025: Welcome to the Agentic Enterprise
byDele Amefo
 
AI-Powered Intelligent Agents for Fraud Detection
byleolucus1995
 
VADY Smart Data Flow – Automated Data Insights for Scalable Enterprise Decisions
byNewFangledVision
 
Security Architecture Views the FDA Expects — And How to Get Them Right
byICS
 

Infrastructure as code using Kubernetes

  • 1.
    Infrastructure as code usingGCP K8S by Walter 2017/08/30
  • 2.
    –Walter Liu “Based ona true story. Not best practice :P” 覺得quote slide很有趣拿來⽤ :P
  • 3.
    Based on atrue story
  • 4.
  • 5.
    Using GCP tocreate new cluster in 1 hour
  • 6.
    Google Cloud Platform ❖Container Engine ❖ Container Registry ❖ SQL ❖ Networking ❖ Load Balancer ❖ Firewall ❖ Monitoring (StackDriver) ❖ Logging ❖ Storage ❖ IAM & Service Account
  • 7.
    Kubernetes ❖ Infrastructure ascode ❖ Self-healing ❖ Horizontal scaling ❖ Automatized rollouts and rollback ❖ Service Discovery and Load Balancing ❖ Configuration ❖ ……
  • 8.
  • 9.
  • 10.
    Write down notesor even script
  • 11.
    Use K8S configs(apply -f) and Template them to reduce complexity
  • 12.
    Write operation scriptsto deal with daily jobs
  • 13.
    TitanOPS script ❖ shell ❖logs ❖ clogs ❖ deploy ❖ udeploy ❖ update ❖ images
  • 14.
    GCP: Container Engine ❖3 * 2 CPU 7.5 GB memory VM ❖ get external IPs of Nodes for Google Cloud SQL (1st generation)
  • 15.
    GCP: Container Registry ❖For Container Engine ❖ Items ❖ main_game_web ❖ nimo_server ❖ twemproxy
  • 16.
    GCP: SQL ❖ Dee(failover) ❖ Nimo (failover) ❖ Nimo-kpi (MyISAM, 1st generation, IP-based) ❖ Nimo-chat (MyISAM, 1st generation, IP-based) ❖ 2 types of connection ❖ CloudSQLProxy (2nd generation) ❖ IP (1st generation) ❖ How to check connection ❖ python manage.py dbshell (dee platform) ❖ mysql -u xxxx -p xxx -h xxx -P (nimo)
  • 17.
    Networking: Load Balancer ❖Google Load Balancer (Prod) ❖ client => CDN => Google Load Balancer => K8S ❖ Kubernetes Load Balancer (Dev/Stg) ❖ with Firewall settings (in K8S config)
  • 18.
    GCP: Monitor andLogging ❖ click and see them ❖ Command line logging shows only today
  • 19.
    Storage ❖ Container Registryrepo ❖ static web sites ❖ Use ./titan_control.py udeploy to deploy them. ❖ dev-static ❖ stg-static ❖ prod-static ❖ stg-nimo-res ❖ prod-nimo-res ❖ prod-tl-static
  • 20.
    Kubernetes component used ❖POD ❖ Deployment ❖ Statefulset ❖ Service ❖ Ingress
  • 21.
    Deployment & Statefulset ❖xxx-web-api ❖ xxx-web-celery-beat ❖ xxx-web-celery-worker ❖ xxx-web-cache (statuefulset) ❖ xxx-redis-queue ❖ xxx-nimo-server ❖ xxx-nimo-celery-beat ❖ xxx-nimo-celery-worker ❖ xxx-nimo-tool ❖ xxx-nimo-payment ❖ xxx-nimo-kvs (statuefulset)
  • 22.
    Service ❖ External ❖ Anyservice with external IP ❖ Internal ❖ xxx-internal-nimo-xxx-service ❖ nimo-xxx-db-master/slave (SQL 1st generation) ❖ xxx-redis-queue-service
  • 23.
    ❖ GCP LoadBalancer ❖ sites ❖ g.deegroup.com ❖ a-g.deegroup.com ❖ app-tl.deegroup.com Ingress
  • 24.
    CDN static sitecache time ❖ 2 minutes client cache time ❖ 7 days CDN edge cache time ❖ Written in titan_control.py
  • 25.
    K8S templating ❖ K8Sdoesn’t supports templating yet. ❖ ./titan_control.py deploy ❖ dev ❖ stg ❖ prod ❖ dev-nimo ❖ stg-nimo ❖ prod-nimo ❖ deploy/templates/* ❖ deploy/params/*
  • 26.
    Deploy new code ❖Update to git ❖ ./titan_control.py update ❖ modify image_tag: ?????? of “deploy/params/xxxx.yaml” ❖ ./titan_control.py deploy dev/stg/prod ….
  • 27.
    Deploy new staticcontent ❖ Update to git/update to nimo res ❖ ./titan_control.py update (For nimo res, skip this) ❖ ./titan_control.py udeploy prod/prod-nimo-res …
  • 28.
    Other commands ❖ Trackinglogs ❖ shell to container (always chose first, for dev) ❖ images
  • 29.
    How to createin 1 hour ❖ In my notes ❖ Create secrets kubectl create secret generic cloudsql-credentials --from-file=credentials.json=secret/credentials.json ❖ Create config maps kubectl apply -f configs/telegraf.yaml gcloud compute http-health-checks list gcloud compute http-health-checks update k8s-be-31451--XXXXXXXXXXX --host xxx.com ❖