New in Docker Enterprise 3.1: Making Kubernetes on Windows, GPU Orchestration and Istio Ingress Easier

The post New in Docker Enterprise 3.1: Making Kubernetes on Windows, GPU Orchestration and Istio Ingress Easier appeared first on Mirantis | Pure Play Open Cloud.
To celebrate the release of the latest version of Docker Enterprise, Principal Solutions Engineer David Kramer talked to John Jainschigg about some of the new features. You can see the entire webinar here, but we also wanted to bring you the answers to your questions, including those we didn’t have time to cover live.
Can you please post the link for the github repo?
You can find the code for these demo projects here:

Folding@Home: https://github.com/mirantis-field/k8s-fah
Pac-Man: https://github.com/mirantis-field/pacman-nodejs/tree/launch
Retro Store: https://github.com/mirantis-field/retro-store

Is it possible to get a document that gives us an overview of infrastructure components in terms of setting up a production Docker Enterprise cluster?
You can find host requirements for each component, as well as reference architectures and best practices on docs.mirantis.com.
Are older nVidia GPUs such as Tesla k80 supported?
The platform supports most GPUs that support the NVIDIA CUDA drivers.
Can Swarm L7 Interlock work together with K8s ingress?
Yes, L7 and Kubernetes Ingress can run in the same cluster. 
Do you plan to support the full Istio service mesh?
In this release, we’ve just started with the ingress portion of Istio, as it’s the biggest ask from our customers, but in a subsequent release later this year, we plan to have full Istio service mesh support.
Do you support Istio Ingress on public cloud infra as well?
The Istio ingress gateway in this offering will be on all of our supported infrastructures. Any certified infrastructure that’s listed in our documentation will be fully supported.
Can you talk more about how to implement canary/blue/green deployment? How can we manage those in istio?
All of the canary and blue/green deployment strategies that are available in Istio are also available in Docker Enterprise 3.1. We are really just taking the upstream conformant Istio ingress gateway and making it available. So via your YAML you can specify various deployment approaches and strategies, such as the percentage of nodes you want to be healthy. You can even do A/B testing where you send some of your traffic to one version of your application and some to the other. We have some examples in our documentation, and we are continuing to build out examples and additional GitHub repos to really highlight this functionality. All of the demos we did in this presentation are available on public GitHub repos, and we’ll work on trying to clean that up and make those available so people can go and try out some of the demos that people saw here today.
In the future, will the Istio implementation in Docker Enterprise have the monitoring tools that are used in the open source version, such as Prometheus, Grafana, Kaila, or Jaeger?
Currently we don’t package those tools, but they can be installed and used on our platform. We’re currently working on a product within Mirantis that will bring a best-in-breed approach to monitoring that we’ll offer as either an additional side project or as part of our OpsCare and other componentry that will expose the Prometheus, Grafana, Elastic stack that will have all this available. We do run the Istio telemetry within our platform, so it is all available and it can be sent off to an existing Prometheus stack within your environment, or we’ll be providing that functionality at a future date.
How is your Kubernetes different from upstream Kubernetes?
Our Kubernetes distribution, which is rolled into our Docker Enterprise platform, is a fully conformant Kubernetes offering. We don’t deviate or heavily customize that. All we really do is wrap that into our Docker Enterprise platform and bootstrap it. We also apply a lot of configuration to the default Kubernetes cluster to make it more secure and more enterprise-ready.
Is Kubernetes an integral part of Docker Enterprise?
Kubernetes is installed and bootstrapped as part of the Docker Enterprise platform.
Can you talk a little more about the CLI tool to install and upgrade Docker Enterprise?
If you go to the https://docs.mirantis.com website and go through the instructions for installing UCP or DTR, it walks you through using a docker command. It’s a docker/ucp container that you pull down. It’s tagged with the version of UCP that you’re installing, and you pass a parameter. You can run in interactive mode. It supports a lot of different ways of running UCP, including install, update, and various setup commands as well. There’s also one available for DTR that does exactly the same thing. It provides the ability to join DTR replicas, update them, back them up and do all of those various things. While you can look at it as a CLI, it’s actually more of a container that you just run using Docker commands.
I want to give Launchpad a try. I remember it works only in Windows Professional. Any plans to release for Windows Home Edition?
Launchpad is distributed as a cross-platform binary. While I have not personally tried Launchpad with the Windows 10 platform, I have tried it on Windows 10 Professional. I do not anticipate any specific platform SKU-related features inside Windows Home that may be an issue. I do know that historically the Docker runtime did have issues based on some of the Hyper-V components that are not in Windows 10 Home. However because we distribute Launchpad as a binary, not as a container, that should not be a problem. I also believe that Docker Inc with Docker Desktop Community has very recently increased support for the Docker Engine on Windows 10 Home, so if we did do it, it should work either way. So I have not tried it, but I don’t anticipate that there would be any issues with Windows 10 Home.
Where can I download the kubernetes IDE from?
Lens was mentioned at the beginning of the webinar, but VSCode was used during the demos.  You can download Lens from https://k8slens.dev/.
What Lens UI is Aaron referring to?
Lens is a Kubernetes IDE to which Mirantis is contributing.
Do different licensing models exist for non-production environments?
This is something you would typically work on with your account team to figure out what the best options are for you. We have quite a few different offerings, from basic support all the way to fully managed service support. The licensing model for the paid product is core-based licensing, and also based on the level of support that you want. So we do have an offering of ProdCare vs. LabCare vs. OpsCare. Those all are priced at a different point. 
Usually a non-production environment would be licensed under a LabCare model, which is slightly cheaper than a ProdCare model, but it doesn’t provide 24×7 support. So typically we work with our customers to really understand what that environment is being used for, then we can offer them the best options for licensing that. For example, some companies have clusters that they don’t deem production, that maybe their developers are using to build and test their applications, but if that cluster goes down, you’re basically out of service. While some people may not deem it a production cluster, you may want production support on that cluster. 
Can Docker Enterprise manage multiple K8s clusters?
David: In accordance to our product roadmap, we are now actually building out a multicluster UCP tooling. With 3.1, it is single cluster focused. As we move to the next release, it will be multicluster focused. We are actually going through quite a bit of customer conversations just to understand the various use cases out there. So if anyone is interested that we haven’t already talked to, and you would like to give some feedback, we would welcome that.
John: It strikes me that maybe some further clarification is called for. There’s no problem managing multiple clusters now with Docker Enterprise. You and I have certainly done it on numerous infrastructures simultaneously. Docker Enterprise and the various deployers that Mirantis puts in place bring information back from new cluster deployments to a deployer machine to your laptop. They make it very easy to download individual authentication bundles and other stuff from clusters under management. You can very quickly organize yourself to log into nodes, to access kubectl on 50 different clusters if you want to. The question is, can you do it within in web UI, and the answer for that is “soon,” but there’s a lot going in the platform that assumes that probably many more than one cluster is going to be operated on.
David: To further clarify, we previewed Lens, and that does have context to multiple Kubernetes clusters, and John just talked through and very much used Docker Enterprise to manage multiple clusters, essentially my control plane from the UCP standpoint in today’s release will be singular in focus. As we move forward, we’re going to add configuration management as well as multi cluster provisioning in a Unified Control Plane experience.
What are your plans for Swarm?
We will continue to support Swarm for the foreseeable future. Mirantis recently added Jobs functionality to Swarm, and we are working on adding support for using Kubernetes CSIs.
Are docs available on migration paths from Swarm to Kubernetes on the platform? What if we have Swarm services running today?
Our services team is working on several campaigns around Swarm to Kubernetes migrations, as well as tooling to be able to do that. Right now we’re not 100% sure how much of that will be publicly available or how much of that will be behind our subscription for the Docker Enterprise platform, but it’s definitely something that a lot of our customers are coming up against right now. We’re working to try to create webinars and white papers around that, as well as offer services to help our customers move from Swarm to Kubernetes if that’s what they want to do.
I saw you join the node into Docker Swarm. How do they become available in the Kubernetes cluster?
The whole Docker platform is built on top of a Swarm bootstrapper. When you add a node — this is one of it’s most powerful features — you can choose whether it is a Swarm or a Kubernetes node. Actually UCP will spin up a reconciler and a bootstrapper on that node and install the required Kubernetes or Swarm components on that node. So you join a node to the Swarm cluster, and you can designate Kubernetes and it will install the kubelet, KubeAPI, proxies and all the different componentry that is required automatically. You don’t need to go through and manually configure that host in any way, shape, or form. You install the Docker Engine. You do a Docker Swarm join to UCP. Everything can be configured and changed via UCP from that point on.
How do I upgrade from Docker Enterprise 3.0 to 3.1?
It’s a standard upgrade process similar to a patch release:

Upgrade the engine
Upgrade UCP – https://docs.mirantis.com/docker-enterprise/v3.1/dockeree-products/ucp/install-ucp.html#upgrade-ucp
Upgrade DTR – https://docs.mirantis.com/docker-enterprise/v3.1/dockeree-products/dtr/install-dtr.html#upgrading-dtr

There are some caveats around Calico and IPinIP vs VXLAN.
The upgrade from Docker Enterprise 3.0 to 3.1 is very similar to a patch update if you’ve used the Docker Enterprise platform before. Once you have the system installed, it’s a matter of updating the engine on all of your machines and then running through the interactive UCP installer, which is a containerized installer that you just run from the command line. It walks you through updating your entire system. It even gives you the ability to do a blue/green update, so if you wanted to add additional nodes, and only update specific worker nodes at a time, it provides that ability, as well as updating the DTR component of the platform to the latest and greatest version. Even though it is a major version upgrade, the update process is very similar to patch releases.
The post New in Docker Enterprise 3.1: Making Kubernetes on Windows, GPU Orchestration and Istio Ingress Easier appeared first on Mirantis | Pure Play Open Cloud.
Quelle: Mirantis

Including everyone at Google Cloud Next ’20: OnAir

This year, amidst the ongoing global pandemic, we are reimagining our Google Cloud Next ‘20 event to connect our cloud community digitally. We’re continuing  to make our physical events diverse and inclusive, and are infusing these values to our digital events too—critically important to ensuring everyone feels welcome and included as we build together. Our Diversity, Equity, and Inclusion (DEI) track shares knowledge and creates space within our broader cloud community about the role we can all play in making sure we are building for everyone. You’ll hear about how we’re learning and advancing belonging at Google, which includes our work on equity engineering and product inclusion. We hope this helps you get started or adds to your allyship journey. We all  continue to make progress by having these conversations, and we encourage you to check out the sessions below. You can add any to your playlist by viewing our program track,  and watch for their weekly release, starting on July 14. In addition to these sessions, you can join us for our interactive I am Remarkable workshops, which empower women and other underrepresented groups to celebrate their achievements in the workplace and beyond.Sessions include: Google’s Diversity Strategy and How It WorksJoin Google’s Chief Diversity Officer Melonie Parker to see how Google is continuing to build a workforce that reflects all communities, and how the Diversity Annual Report reflects that. You’ll hear about efforts to better understand our global workforce, build a sense of belonging, and tackle challenges to advancing DEI.G Suite Accessibility Features To Empower InclusionWhen we’re talking about connecting digitally, we need to make sure that everyone can connect. Emails, calendar invites, video conferences, presentations, documents, and spreadsheets are all important digital connection options. G Suite’s accessibility features are designed so that anyone can use the tools to get more done, inclusive of those who have audio, visual, or motor impairment. Check out this session to get an overview of those features and how to use them on mobile or web.Equity Engineering—Impact and OpportunityThe lack of diversity in tech is a complex and pervasive challenge. Equity Engineering offers an opportunity to identify greater systemic organizational issues with both people and product development. This session explores what Equity Engineering is, how to build and develop it, and the impact it can have to increase equity and systemic transformation. Head of Equity Engineering Demma Rosa Rodriguez will take you through how this engineering initiative evaluates how systems can support equitable HR processes and build the best products for a diverse workforce and world, and what parts research, infrastructure, process change, and centers of excellence play.How Certification Impacted My CareerBecoming Google Cloud-certified has the power to boost careers, and the experience is unique for each person. Solution Engineer Jewel Langevine, who has three certification badges, will share her path to certification and how it plays a role in her career. During this session, Jewel will share insights from her journey from an upbringing in Guyana to her present position as a Solution Engineer at Google Cloud. Along the way, she’ll discuss how she was introduced to cloud computing, her experiences in mentorship, how she maximized networking opportunities, and how she continues to give back to underrepresented communities.The Case for Product Inclusion 2.0Historically, diversity, equity and inclusion has been focused internally, but over the past three years, Googlers have been expanding their DEI practices throughout the product design process to create better products for all users. Paying attention to the connection between people, process, and product has led to better user outcomes and more business opportunities. In a world where demographics are shifting rapidly and consumers have a myriad of choices, how do companies keep up with diverse users and truly build for all? Annie Jean-Baptiste, Google’s Head of Product Inclusion, will share details about Google’s product inclusion journey and the end-to-end system.Empowering Inclusion with Employee Resource Groups (ERGs)The unprecedented shift in our workplaces due to the COVID-19 pandemic has a lot of us searching for connections amongst the new work-from-home culture of our companies. Sherice Torres, Google’s Director of Inclusion, shares how to foster community and belonging through Employee Resource Groups (ERGs). Learn how ERGs uplevel inclusion beyond their own members and how they influence Google’s DEI strategy and accountability.This session will also profile and share learnings from Women@GoogleCloud. Find out how an underrepresented group of women created a global network with allies passionate about cultivating a culture for women to thrive and bring their whole selves to work.Encoding Gender into Technical Artifacts Such as EmojiSometimes at engineering-driven companies, there can be a preconceived notion there is a right or wrong way of designing. This talk will explore how the emoji program operates in the spectrum between this false binary. After all, if race is not a skin color and gender is not a haircut, how do you communicate the idea of “woman” at emoji sizes? You’ll hear how Google’s emoji team uses a blend of academic research and quantitative data to inform design practices and product decisions, and see how we build technology in an inclusive way that reflects a variety of communication needs.Thanks for building a more inclusive cloud with us. We look forward to continuing our allyship and advocacy journey with all of you at Next OnAir, starting July 14.
Quelle: Google Cloud Platform