Upload File

nats meetup oct 2016 docker 112

39
Docker 1.12.3+ and Getting Started with Docker Clustering Nirmal Mehta / @normalfaults Adapted from presentation by Mike Goelzer / [email protected] / @mikegoelzer

Upload: nirmal-mehta

Post on 15-Apr-2017

399 views

Category:

Technology


1 download

Report

TRANSCRIPT

Page 1: Nats meetup oct 2016 docker 112

Docker 1.12.3+ and Getting Started with Docker Clustering

Nirmal Mehta / @normalfaults Adapted from presentation by Mike Goelzer / [email protected] / @mikegoelzer

mailto:[email protected]
Page 2: Nats meetup oct 2016 docker 112

The evolution of Docker orchestration

docker run nginx

Swarm mode clustering + Docker Services in EngineON-TRACK

2013-14

2014-present

2016

(Backed by docker/swarmkit)

Page 3: Nats meetup oct 2016 docker 112

Docker 1.12• Orchestration

• Swarm Mode• Docker Services• Security• Routing Mesh

• Docker for X• Mac/Windows• AWS• Azure

• Container Healthcheck• Docker Application Bundle

Page 4: Nats meetup oct 2016 docker 112

Swarm mode & Docker Services

Page 5: Nats meetup oct 2016 docker 112

Engine

Swarm Mode

$ docker swarm init

Page 6: Nats meetup oct 2016 docker 112

Engine

Swarm Mode

$ docker swarm init

$ docker swarm join <IP of manager>:2377

Engine

Page 7: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine Engine

Swarm Mode

$ docker swarm init

$ docker swarm join <IP of manager>:2377

Page 8: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine Engine

Services

$ docker service create --replicas 3 --name frontend --network mynet  -p 8080:80 frontend:latest

mynet

Page 9: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine Engine

Services

$ docker service create --replicas 3 --name frontend --network mynet  -p 8080:80 frontend:latest

$ docker service create --name redis --network mynet redis:latest

mynet

Page 10: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine Engine

Node Failure & Reconciliation

$ docker service create --replicas 3 --name frontend --network mynet  -p 8080:80 frontend:latest

$ docker service create --name redis --network mynet redis:latest

mynet

Page 11: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine Engine

Node Failure & Reconciliation

$ docker service create --replicas 3 --name frontend --network mynet  -p 8080:80 frontend:latest

$ docker service create --name redis --network mynet redis:latest

mynet

Page 12: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine

Desired State ≠ Actual State

$ docker service create --replicas 3 --name frontend --network mynet  -p 8080:80 frontend:latest

$ docker service create --name redis --network mynet redis:latest

mynet

Page 13: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine

Converge Back to Desired State

$ docker service create --replicas 3 --name frontend --network mynet  -p 8080:80 frontend:latest

$ docker service create --name redis --network mynet redis:latest

mynet

Page 14: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine

Scaling

$ docker service update --replicas 6 frontend

mynet

Page 15: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine

Scaling

$ docker service update --replicas 10 frontend

mynet

Page 16: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine

Global Services

$ docker service create --mode=global --name prometheus prom/prometheus

mynet

Page 17: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine

Constraints

Engine

docker daemon --label com.example.storage="ssd"

docker daemon --label com.example.storage="ssd"

Page 18: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine

Constraints

$ docker service create --replicas 3 --name frontend --network mynet  -p 8080:80 --constraint engine.labels.com.example.storage==ssd frontend:latest

Engine

docker daemon --label com.example.storage="ssd"

docker daemon --label com.example.storage="ssd"

Page 19: Nats meetup oct 2016 docker 112

EngineEngine

Engine

EngineEngine

Constraints

$ docker service create --replicas 3 --name frontend --network mynet  -p 8080:80 --constraint engine.labels.com.example.storage==ssd frontend:latest$ docker service update --replicas 10 frontend

Engine

docker daemon --label com.example.storage="ssd"

docker daemon --label com.example.storage="ssd"

Page 20: Nats meetup oct 2016 docker 112

Routing Mesh

:8080 :8080 :8080

frontend frontend

$ docker service create --replicas 3 --name frontend --network mynet  -p 8080:80 frontend:latest

frontend

External Load Balancer

:8080

User browses to http://myapp.com

Node 1 Node 2 Node 3 Node 4

http://myapp.com:8080/
http://myapp.com:8080/
Page 21: Nats meetup oct 2016 docker 112

Routing Mesh

:8080

User browses to http://myapp.com

:8080 :8080

frontend frontend

$ docker service create --replicas 3 --name frontend --network mynet  -p 8080:80 frontend:latest

frontend

External Load Balancer

:8080

Node 1 Node 2 Node 3 Node 4

http://myapp.com:8080/
http://myapp.com:8080/
Page 22: Nats meetup oct 2016 docker 112

Secure by default• Out-of-the-box TLS

encryption and mutual auth

• Automatic cert rotation• External or self-signed

root CA• Cryptographic node

identity

CertificateAuthority

TLS

CertificateAuthority

TLS

CertificateAuthority

TLS

TLS TLSTLS

Page 23: Nats meetup oct 2016 docker 112

Scale: 2,000 Nodes and Counting● For now: community testing, crowd-sourced nodes, not funded by

Docker● Credit to: Chanwit Kaewkasi, Suranaree University of

Technology (SUT), Thailand● Results:

• 2,384 nodes• 96,287 containers• Manager CPU/memory 15%≲• Test stopped because 3rd-party monitoring failed

● https://github.com/swarm2k/swarm2k

@chanwit

https://github.com/swarm2k/swarm2k
Page 24: Nats meetup oct 2016 docker 112

Deep Dive: Swarm Topology

Page 25: Nats meetup oct 2016 docker 112

Node

Node

Node

NodeNode

Node

Topology

Node

NodeNode

Node

Node

Node

Page 26: Nats meetup oct 2016 docker 112

Node

Node

Node

NodeNode

Node

Topology: roles

Node

NodeNode

Node

Node

Node

Manager

Worker

Page 27: Nats meetup oct 2016 docker 112

Node

Node

Node

NodeNode

Node

Topology: roles

Node

NodeNode

Node

Node

Node

Manager

Worker

● Each Node has a role● Roles are dynamic● Programmable Topology

Page 28: Nats meetup oct 2016 docker 112

Flat Topology

Manager Manager Manager

Worker Worker Worker Worker Worker Worker

Page 29: Nats meetup oct 2016 docker 112

Topology: Scaling model

Manager Manager Manager

Worker Worker Worker Worker Worker Worker

Page 30: Nats meetup oct 2016 docker 112

Topology: High Availability

Manager Manager Manager

Worker Worker Worker Worker Worker Worker

Leader FollowerFollower

Loss of Leader

Page 31: Nats meetup oct 2016 docker 112

Topology: High Availability

Manager Manager Manager

Worker Worker Worker Worker Worker Worker

Leader FollowerFollower

Loss of Leader

Page 32: Nats meetup oct 2016 docker 112

Topology: High Availability

Manager Manager Manager

Worker Worker Worker Worker Worker Worker

Follower FollowerLeader

Page 33: Nats meetup oct 2016 docker 112

Topology: High Availability

Manager Manager Manager

Worker Worker Worker Worker Worker Worker

Follower FollowerLeader

Page 34: Nats meetup oct 2016 docker 112
Page 35: Nats meetup oct 2016 docker 112

HEALTHCHECK --interval=5m --timeout=3s --retries 3 CMD curl -f http://localhost/ || exit 1

Check web server every 5 minutes, require < 3 sec latency.>= 3 consecutive failures sets unhealthy state

Coming soon: health checks in official images

Container Health Check in Dockerfile

http://localhost/
Page 36: Nats meetup oct 2016 docker 112

Docker Stack and Distributed Application Bundle (experimental)docker.com/dab• Docker Stacks and Distributed Application Bundles are experimental

features introduced in Docker 1.12 and Docker Compose 1.8• A Dockerfile can be built into an image, and containers can be

created from that image. • Similarly, a docker-compose.yml can be built into a distributed

application bundle, and stacks can be created from that bundle. In that sense, the bundle is a multi-services distributable image format.

Page 37: Nats meetup oct 2016 docker 112

Example Bundle File Format.DBS file

Page 38: Nats meetup oct 2016 docker 112

Docker 1.13• Secrets Management• New “docker system” commands• Allows a new client to talk to an old engine• Improved new plugins system (Work from 1.12 experimental)

Page 39: Nats meetup oct 2016 docker 112

Thanks!Join Docker Raleigh Meetup GroupUpcoming events:• Docker Mentor Week Nov 14-20, 2016

• Handson online Labs and Mentoring• Place and Date TBD but join group to get update

• Docker Swarm 3k Event Tomorrow!• https://github.com/swarmzilla/swarm3k

https://blog.docker.com/2016/10/docker-global-mentor-week-2016/

You can find me at:Nirmal Mehta@normalfaults (Twitter, Github)


Docker Meetup at Docker HQ: Docker Cloud

Docker Meetup: Docker Networking 1.11, by Madhu Venugopal

Docker Online Meetup #3: Docker in Production

Docker Online Meetup #22: Docker Networking

[NYC Meetup] Docker at Nuxeo

Antonis Kalipetis - @akalipetis Docker Athens Meetupfiles.meetup.com/13858262/Docker Athens Meetup 01... · Docker Athens Meetup. Contents • Introduction to Docker, Containers,

O poder do Docker (7º meetup de Docker SP)

Docker Tours Meetup #1 - Introduction à Docker

NYC Docker Meetup: Contiv networking on Docker

Docker at SourceLair | Paris Kasidiaris | 1st Docker Crete Meetup

Docker Online Meetup #30: Docker Trusted Registry 1.4.1

Docker Meetup: Docker Networking 1.11 with Madhu Venugopal

Docker 1.12 & Swarm Mode [Montreal Docker Meetup Sept. 2016]

Docker In Production Now: Seattle Docker Meetup March 2015

Selenium meetup docker

Docker presentation | Paris Docker Meetup

Docker meetup - PaaS interoperability

Docker-hanoi meetup #1: introduction about Docker

Presentación Docker MeetUp (8.6.2016)

Docker Tips And Tricks at the Docker Beijing Meetup

Docker Usage Patterns - Meetup Docker Paris - November, 10th 2015

Docker Performance - Docker April Meetup

Docker at flux7 - Docker meetup kickoff

Docker HK Meetup - 201707

NATS Connector Framework - Boulder Meetup

Docker @ Novacoast - Docker Santa Barbara Meetup #1

NATS + Docker meetup talk Oct - 2016

Docker @ Data Science Meetup

presentation @ docker meetup

9th docker meetup 2016.07.13

Clusterizando Docker - I Meetup Docker Córdoba - QuaiP

What's new in Docker - InfraKit - Docker Meetup Berlin 2016

Docker 1.13 - Docker meetup février 2017

Federated Graphite in Docker - Denver Docker Meetup

Docker 1.11 @ Docker SF Meetup