John Wilkes from Google talks with Charles Anderson about managing large clusters of machines. The discussion starts with Borg, Google’s internal cluster management program. John discusses what Borg does and what it provides to programmers and system administrators. He also describes Kubernetes, an open-source cluster management system recently developed by Google using lessons learned from Borg, Mesos, and Omega

Edaena Salinas talks with Nicole Hubbard at KubeCon 2017. They discuss why WP engine is migrating from VMs to Kubernetes and how the migration is structured. Nicole explained the VM infrastructure at WP Engine and why there was a need to move...

Jeremy Jung talks with David Calavera about zero-downtime migrations and rollbacks with Kubernetes. In this episode we define migrations, rollbacks, and discuss how Netlify was able to migrate to Kubernetes and roll back off of it multiple times without impacting their users. David explains how developers can run old and new systems simultaneously, the importance of defining errors in your system, and when to apply fixes vs rolling back. We also discuss their decision to move to Kubernetes, and the benefits they received.

Nigel Poulton, author of The Kubernetes Book and Docker Deep Dive, discusses Kubernetes fundamentals, why Kubernetes is gaining so much momentum, deploying an example app, and why Kubernetes is considered "the" Cloud OS.

Andy Suderman, CTO of Fairwinds, joins host Robert Blumen to talk about standing up a kubernetes cluster. Their discussion covers build-your-own versus managed clusters provided by cloud services, and how to determine the number of kubernetes clusters an organization needs. Andy describes best practices for automating cluster provisioning, and offers recommendations about customizations and opinionation of cloud service providers, choice of container registry, and whether you should run complementary services such as CI and monitoring on the same cluster. The episode also examines the day 0/day 1/day 2 lifecycle, cluster auto-scaling at the cloud service level, integrating stateful services and other cloud services into your cluster, and kubernetes secrets and alternatives. Finally, they consider the container-network interface (CNI), ingress and load balancers, and provisioning external DNS and TLS certificates for cluster services.

Yeckezkel Rabinovich, CTO of Groundcover, speaks with host Philip Winston about observability and eBPF as it applies to Kubernetes. Rabinovich was previously the chief architect at the healthcare security company CyberMDX and spent eight years in the cyber security division of the Israeli Prime Minister’s Office. This episode explores the three pillars of observability, extending the Linux Kernel with eBPF, the basics of Kubernetes, and how Groundcover uses eBPF as the basis for its observability platform.

William Morgan, founder of the Linkerd service mesh and CEO of Bouyant, joins SE Radio’s Robert Blumen for a discussion of sidecars, service mesh, and a forthcoming enhancement to kubernetes to support sidecars natively. The conversation explores the origin of sidecars, sidecars and service mesh, and migrating service mesh to kubernetes. They take a deep dive into some aspects of running service mesh on kubernetes, the difficulties in running a sidecar container in a pod, and Kubernetes Enhancement Proposal (KEP) 753, which is intended to provide better native support for sidecar containers. William also gives some thoughts on the continuing relevance of service mesh.

Infrastructure engineer and Kubernetes ingress-Nginx maintainer James Strong joins host Robert Blumen to discuss the Kubernetes networking layer. The discussion draws on content from Strong’s book on the topic and covers a lot of ground, including: the Kubernetes network's use of different IP ranges than the host network; overlay network with its own IP ranges compared to using expanded portions of the host network ranges; adding routes with kernel extension points; programming kernel extension points with IP tables compared to eBPF; how routes are updated as the host network gains or loses nodes, the use of the Linux network namespace to isolate each pod; routing between pods on the same host; routing between pods across the host network; the container-network interface (CNI); the CNI ecosystem; differences between CNIs; choosing a CNI when running on a public cloud service; the Kubernetes service abstraction with a cluster-wide IP address; monitoring and telemetry of the Kubernetes network; and troubleshooting the Kubernetes network.

Brought to you by IEEE Software magazine and IEEE Computer Society.

Jim Bugwadia, CEO of Nirmata and a committer to the Kyverno projects, joins host Robert Blumen for a discussion of policy-as-code and the open source Kyverno project. The discussion covers the nature of policies; policies and security; policies and compliance to standards; security scans that generate reports compared to tools that allow or deny operations at run time; Kyverno as a kubernetes service; the Kyverno helm charts; the components of Kyverno; bootstrapping a kubernetes cluster with Kyverno; installing policies; implementing policies; customizing policies; packaging and installing policies; kubernetes dynamic admission controllers; the Kyverno admission controller; securing Kyverno itself; observability of Kyverno; types of reports and messages available to cluster users.

This episode is sponsored by QA Wolf.

Kelsey Hightower is a developer advocate, an open source aficionado, and a widely recognized expert on Kubernetes. He is the creator of the open source tutorial Kubernetes The Hard Way, available on Github, and he is a co-author of Kubernetes: Up and Running: Dive Into the Future of Infrastructure, the second edition of which is now available from O’Reilly Media. In this program his conversation with Oracle's Karthik Gaekwad encompasses Kubernetes, Open Source, cloud computing, developer advocacy and a lot more. Listen!

See the complete show notes.

Learn how to deploy an Apache Cassandra NoSQL database on a Kubernetes cluster that spans multiple data centers across many regions. The benefits of such a setup are automatic live backups to protect the cluster from node- and site-level disasters, and location-aware access to Cassandra nodes for better performance.

Docker and Kubernetes are the building blocks of the next generation of DevOps. In this tutorial, you'll see how to build Docker images, run them locally, and then push those images to your IBM Cloud account so you can deploy them to a Kubernetes cluster running in the IBM Cloud.

Robert Ross (a.k.a. Bobby Tables) will be the speaker at the next nycdevops meetup on Wed, une 19, 2019.

Full details and RSVP info: https://www.meetup.com/nycdevops/events/261842702/

NOTE: Different day and location!

• Title: Staying Informed with Kubernetes Informers
• Speaker: Robert Ross (Bobby Tables) from FireHydrant
• Date: Wed, June 19, 2019
• Location: Compass, 90 Fifth Ave, New York, NY 10011

Kubernetes state is changing all the time. Pods are being created. Deployments are adding more replicas. Load balancers are being created from services. All of these things can happen without anyone noticing. But sometimes we need to notice, however, for when we need to react to such events. What if we need to push the change to an audit log? When if we want to inform a Slack room about a new deployment? In Kubernetes, this is possible with the informers that are baked into the API and Go client. In this talk we'll learn how informers work, and how to receive updates when resources change using a simple Go application.

SPEAKER BIO:

Bobby is the founder of FireHydrant.io, and also previously worked as a staff software engineer at Namely, and also built things at DigitalOcean. He likes bleeding edge tech and making software that helps teams build better better systems. From deploying Spinnaker, Istio, and Kubernetes, he has cursed at a lack of docs and code spelunked through the code and loves telling the war stories about them.

Full details and RSVP info: https://www.meetup.com/nycdevops/events/261842702/

Basecamp’s newest product HEY has lived on Kubernetes since development first began. While our applications are majestic monoliths, a product like HEY has numerous supporting services that run along-side the main app like our mail pipeline (Postfix and friends), Resque (and Resque Scheduler), and nginx, making Kubernetes a great orchestration option for us. As you… keep reading

In the early 2000s, VMware introduced the world to virtual servers that allowed IT to make more efficient use of idle server capacity. Today, Run:AI is introducing that same concept to GPUs running containerized machine learning projects on Kubernetes. This should enable data science teams to have access to more resources than they would normally […]

[Berkeley, CA] : Apress, [2019]

Sponsors

• Triplebyte offers a $1000 signing bonus

• Sentry use the code “devchat” for $100 credit

• CacheFly

Panel

• Charles Max Wood

Joined by Special Guest: Jessica Deen

Episode Summary

Coming to you live from the podcast booth at Microsoft BUILD is Charles Max Wood with The Deen of DevOps aka Jessica Deen. Jessica is a Senior Cloud Advocate at Microsoft. As an advocate she acts a liaison between developer communities and Microsoft to help understand developer pain points and road blocks especially in areas such as Linux, open-source technologies, infrastructure, Kubernetes, containers and DevOps. Jessica explains how to go about setting up a containerized application, Kubernetes and how to use Dockerfiles. Charles and Jessica then talk about how to get started with a Kubernetes cluster and the resources available for developers that don't have any infrastructure. Jessica advises that developers start with Azure DevOps Services and then go to Microsoft Learn Resource.

Charles also encourages listeners to also check out the Views on Vue podcast Azure DevOps with Donovan Brown for further references. Jessica also recommends following people on Twitter and GitHub to find out about solutions and resources.

Links

• Dockerfile and Windows Containers

• Kubernetes

• Jessica’s GitHub

• Jessica’s Twitter

• Jessica’s LinkedIn

• Jessica’s Website

• Microsoft Build 2019

• Microsoft Learn Resource

• HTTP application routing

• Getting started with Kubernetes Ingress Controllers and TLS certificates

• Kubernetes Ingress Controllers and Certificates: The Walkthrough

• Azure DevOps Services

• VoV 053: Azure DevOps with Donovan Brown LIVE at Microsoft Ignite

• Jessica Deen Youtube

• Kubernetes in 5 mins – YouTube

Follow Adventures in Angular on tv, Facebook and Twitter.

Picks

Jessica Deen:

• Lachlan Evenson

• Cloud Native Computing Foundation

• Kubernetes Handles on Twitter

• Shoe Dog Memoir

• Air Jordan 4 Fire Red Gum Singles Day

Charles Max Wood:

• Real Talk /JavaScript Podcast

• The Legend of Zelda: Breath of the Wild