Seu SlideShare está sendo baixado. ×

Voyage en terre du multi-cloud

•

24 de Nov de 2021

• •

Anúncio

Anúncio

Anúncio

Anúncio

Anúncio

Anúncio

Anúncio

Anúncio

Anúncio

Anúncio

Anúncio

Anúncio

A journey to
Multi-Cloud
Tips & Traps

Store and share valuable and confidential
documents on the decentralized Omnicloud™

Multi-Cloud
why / when / where / how ? and others questions ...

WHY would you go MC ?

● Really high availability
● CP and DRP at the same time
● Use the best of each cloud provider - no lockin
● A very cool s...

Omnicloud
Decentralized Safe
Data Storage
Collaboration

WHEN and WHERE would you go MC ?

● France: No “mature” french cloud provider
○ OVHCloud, Scaleway, Outscale
● AWS / Azure
○ Datacenters in France (Paris)
●...

vs
Locality / Nationality / Capability
2018

HOW would you go MC ?

STATELESS
STATEFUL

Should I need a LCD ?
or maybe and OLED...

Find the Lowest Common Denominator
● LCD = Lowest Common Denominator
● You can’t really find a 1:1 match between cloud pro...

LCD - Areas of interest
kubernetes Data Storage
Networking Services Mesh

Building Bricks
● S3 like storage must be available
● LoadBalancer as a Service must be available
● Storage class ReadWrit...

(Dev)Ops / Day to Day

Operations - Areas of interest
Backups Miscellaneous
Observability Deployments

Backlog
● Hashicorp Vault
● Storage solutions
● Backbone with key features
● Embedded SecOps (CurieFense)
● API Portal for...

Démo

COLLABORATION
MULTI-CLOUD
SECURITY /
COMPLIANCE
AVAILABILITY

Conclusion
● Building a multi-cloud native app is more difficult that you might
think at first
● Often the more portable w...

Questions

Merci !

Appendices

Networking
● How the nodes will reach each other ?
● What kind of CNI ?
● Load Balancers with private connectivity

Service Mesh
● Service Mesh is powerful but also complex
● Istio can be setup as multi-cluster / multi-network / multi-mes...

Service Mesh

kubernetes
● Managed ?
● Vanilla or Packaged ?

Data storage
● Handle different use cases
● You might need a DB that is replicating data cross-sites
● The key is network ...

Voyage en terre du multi-cloud

Voyage en terre du multi-cloud

Voyage en terre du multi-cloud

Voyage en terre du multi-cloud

Voyage en terre du multi-cloud

Próximo SlideShare

Próximos SlideShares

OpenNebulaConf2018 - Our Journey to OpenNebula - Germán Gutierrez - Booking.com

OpenNebulaConf2018 - Our Journey to OpenNebula - Germán Gutierrez - Booking.com

Carregando em…3

×

Confira estes a seguir

Hyperledger in AWS

Carsten Eckelmann

Automate your development and operation processes!

Nico Meisenzahl

OpenNebulaConf 2016 - OpenNebula, OpenNebulaConf, OpenNebulaConf 2016

OpenNebula Project

Replacing vCloud with OpenNebula

OpenNebula Project

Bootstrapping a virtual infrastructure using OpenNebula from scratch

OpenNebulaConf2018 - Private Cloud at King - Jonathan Grahl - King

OpenNebula Project

Bbva bank on Open Stack

Jose Maria San Jose Juarez

From big data to AI, power your data with OVHcloud solutions

Voyage en terre du multi-cloud

24 de Nov de 2021

• •

Baixar para ler offline

Retours d'expériences sur la conception et déploiement d'une architecture complétement multi-cloud pour la solution Omnicloud d'Astrachain (accompagnement par webofmars)

Slides présentées lors du devops DDAY du 18/11/2021

Founder/CTO at webofmars (⛅|⛱️|☕)

Retours d'expériences sur la conception et déploiement d'une architecture complétement multi-cloud pour la solution Omnicloud d'Astrachain (accompagnement par webofmars)

Slides présentées lors du devops DDAY du 18/11/2021

Mais Conteúdo rRelacionado

Hyperledger in AWS

Carsten Eckelmann

290 visualizações

Automate your development and operation processes!

Nico Meisenzahl

338 visualizações

OpenNebulaConf 2016 - OpenNebula, OpenNebulaConf, OpenNebulaConf 2016

OpenNebula Project

176 visualizações

Replacing vCloud with OpenNebula

OpenNebula Project

676 visualizações

Bootstrapping a virtual infrastructure using OpenNebula from scratch

587 visualizações

OpenNebulaConf2018 - Private Cloud at King - Jonathan Grahl - King

OpenNebula Project

184 visualizações

Bbva bank on Open Stack

Jose Maria San Jose Juarez

5.9k visualizações

From big data to AI, power your data with OVHcloud solutions

82 visualizações

Hybrid Clouds: Dancing with virtual machines

CSUC - Consorci de Serveis Universitaris de Catalunya

184 visualizações

Industrialise your deployment: Infrastructure as Code on OVHcloud Public Cloud

124 visualizações

OpenNebula TechDay Waterloo 2015 - Private cloud at black berry

OpenNebula Project

781 visualizações

NTS: What We Do With OpenNebula - and Why We Do It

OpenNebula Project

641 visualizações

NSX with OpenNebula - upcoming 5.10

OpenNebula Project

218 visualizações

OpenNebulaconf2017US: Hybrid clouds dancing with virtual machines by Jordi Gu...

OpenNebula Project

220 visualizações

Cassandra in Docker at Yelp: Opportunities and Challenges

Raghavendra Prabhu

172 visualizações

OpenNebulaConf2017US: Welcome and project update by Ignacio M. Llorente and R...

OpenNebula Project

264 visualizações

The OpenNebula Approach to Bring Open-Source to the Enterprise

OpenNebula Project

358 visualizações

Scaling and Orchestrating Microservices with OSGi - N Bartlett

2.8k visualizações

OpenNebula at virtion

OpenNebula Project

466 visualizações

Asynchronous Services – A promising future for OSGi - T Ward

1.3k visualizações

Hyperledger in AWS

Carsten Eckelmann

290 visualizações

Automate your development and operation processes!

Nico Meisenzahl

338 visualizações

OpenNebulaConf 2016 - OpenNebula, OpenNebulaConf, OpenNebulaConf 2016

OpenNebula Project

176 visualizações

Replacing vCloud with OpenNebula

OpenNebula Project

676 visualizações

Bootstrapping a virtual infrastructure using OpenNebula from scratch

587 visualizações

OpenNebulaConf2018 - Private Cloud at King - Jonathan Grahl - King

OpenNebula Project

184 visualizações

DevOpsDays Tel Aviv DEC 2022 | Building A Cloud-Native Platform Brick by Bric...

Haggai Philip Zagury

7 visualizações

Evolvable architecture for hybrid multicloud with sdn

482 visualizações

Cloud computing

126 visualizações

Cloud-Native Drupal: a survival guide

105 visualizações

Docker in Production at the Aurora Team

Haufe-Lexware GmbH & Co KG

2.9k visualizações

Introduction to OpenStack Storage

350 visualizações

Kubernetes, Toolbox to fail or succeed for beginners - Demi Ben-Ari, VP R&D @...

403 visualizações

Building a Pluggable, Cloud-native Event-driven Serverless Architecture - Rea...

7 visualizações

APIdays Paris 2018 - Cloud computing - we went through every steps of the Gar...

224 visualizações

Instant developer onboarding with self contained repositories

147 visualizações

Conversations in the Cloud

357 visualizações

Introduction to GCP

66 visualizações

Getting more into GCP.pdf

19 visualizações

AWS Serverless Community Day Keynote and Vendia Launch 6-26-2020

1.8k visualizações

Multi Cloud Challanges Review

387 visualizações

Modern VoIP in Modern Infrastructures

641 visualizações

introduction to micro services

Spyros Lambrinidis

1.1k visualizações

Apache Drill (ver. 0.1, check ver. 0.2)

Camuel Gilyadov

5k visualizações

Idi2018 - Serverless does not mean Opsless

1.7k visualizações

Meetup HybridCloud successful 14.12.2016 #hybridcloudsuccessful

Sebastian Straube

227 visualizações

DevOpsDays Tel Aviv DEC 2022 | Building A Cloud-Native Platform Brick by Bric...

Haggai Philip Zagury

7 visualizações

Evolvable architecture for hybrid multicloud with sdn

482 visualizações

Cloud computing

126 visualizações

Cloud-Native Drupal: a survival guide

105 visualizações

Docker in Production at the Aurora Team

Haufe-Lexware GmbH & Co KG

2.9k visualizações

Introduction to OpenStack Storage

350 visualizações

2023-02-02 - Marvelous March

64 visualizações

2023-01-24 - dry january.pptx

58 visualizações

2022-11-22 - November Rain

7 visualizações

meetup devops aix-marseille 27/10/2022

35 visualizações

Maltacademy: securing your k8s cluster with CNCF falco

74 visualizações

Meetup vault - ScaaS Secrets as a Service

61 visualizações

Aws beanstalk - Pastis Tech 21/11/2019

171 visualizações

Des jeux et des devops

134 visualizações

Lightning talk: Les Load Balancers HTTP modernes

446 visualizações

Meetup DevOps Aix-Marseille - théorie du chaos et architectures résilientes

110 visualizações

meetup - Workflow complet de CI/CD pour les geeks avec gitlab et kubernetes

648 visualizações

2023-02-02 - Marvelous March

64 visualizações

2023-01-24 - dry january.pptx

58 visualizações

2022-11-22 - November Rain

7 visualizações

meetup devops aix-marseille 27/10/2022

35 visualizações

Maltacademy: securing your k8s cluster with CNCF falco

74 visualizações

Meetup vault - ScaaS Secrets as a Service

61 visualizações

NavigationSystems_Enroute.pdf

0 visualizações

Synthetic Food.pdf

0 visualizações

Migration scenarios RISE with SAP S4HANA Cloud, Private Edition - Version #1....

0 visualizações

Paul_Hastings_Pantheon_ESG-Diversity_case_study.pptx

0 visualizações

Welcome to SoftMaker Office for Android.potx

GeovaneReisdeMoura

0 visualizações

Borel Swiss Fixed Crucible Melting Furnace 1200°C

0 visualizações

MIL DLL June 5- 9, 2017 Grade 12.docx

0 visualizações

Polygon vs Ethereum- Why are Web3 Developers Choosing Polygon To Build Effici...

0 visualizações

The Five Phases of Agile Maturity (Part 2): Phase 3 and 4

0 visualizações

MIL DLL August 28- Sept 1, 2017 Grade 12.docx

0 visualizações

0 visualizações

Unsung heroes Validator & Infra provider.pdf

0 visualizações

0 visualizações

dclc-r134a-968 detail.pdf

0 visualizações

MIL DLL September 18-22, 2017 Grade 12.docx

0 visualizações

Getting Started with SQL Language.pptx

Cecilia Brusatori

0 visualizações

UnrealCommunityCDMX-KickOff

0 visualizações

MIL DLL August 14- 18, 2017 Grade 12.docx

0 visualizações

ajeep_04a_energy_eficient_chiller - Mitsu.pdf

0 visualizações

0 visualizações

NavigationSystems_Enroute.pdf

0 visualizações

Synthetic Food.pdf

0 visualizações

Migration scenarios RISE with SAP S4HANA Cloud, Private Edition - Version #1....

0 visualizações

Paul_Hastings_Pantheon_ESG-Diversity_case_study.pptx

0 visualizações

Welcome to SoftMaker Office for Android.potx

GeovaneReisdeMoura

0 visualizações

Borel Swiss Fixed Crucible Melting Furnace 1200°C

0 visualizações

Voyage en terre du multi-cloud

1. A journey to Multi-Cloud Tips & Traps
2. Store and share valuable and confidential documents on the decentralized Omnicloud™
3. Multi-Cloud why / when / where / how ? and others questions ...
4. WHY would you go MC ?
5. ● Really high availability ● CP and DRP at the same time ● Use the best of each cloud provider - no lockin ● A very cool score meter 😎
6. Omnicloud Decentralized Safe Data Storage Collaboration
7. WHEN and WHERE would you go MC ?
8. ● France: No “mature” french cloud provider ○ OVHCloud, Scaleway, Outscale ● AWS / Azure ○ Datacenters in France (Paris) ● GCP ○ Belgium or Germany ● AWS / GCP / AZ ○ Foreign countries data transfer (Privacy Shield)
9. vs Locality / Nationality / Capability 2018
10. HOW would you go MC ?
11. STATELESS STATEFUL
12. Should I need a LCD ? or maybe and OLED...
13. Find the Lowest Common Denominator ● LCD = Lowest Common Denominator ● You can’t really find a 1:1 match between cloud providers ● What will it be on-premise ? 5 6 2f 3 9b 8 a0 4
14. LCD - Areas of interest kubernetes Data Storage Networking Services Mesh
15. Building Bricks ● S3 like storage must be available ● LoadBalancer as a Service must be available ● Storage class ReadWriteOnce ● Instances types are hard to compare
16. (Dev)Ops / Day to Day
17. Operations - Areas of interest Backups Miscellaneous Observability Deployments
18. Backlog ● Hashicorp Vault ● Storage solutions ● Backbone with key features ● Embedded SecOps (CurieFense) ● API Portal for developers
19. Démo
20. COLLABORATION MULTI-CLOUD SECURITY / COMPLIANCE AVAILABILITY
21. Conclusion ● Building a multi-cloud native app is more difficult that you might think at first ● Often the more portable way is the best one ● Architecture and preparation is key ● A few techs are multi-cloud ready and will pass a “in vivo” test ● But once you found it, value it …
22. Questions
23. Merci !
24. Appendices
25. Networking ● How the nodes will reach each other ? ● What kind of CNI ? ● Load Balancers with private connectivity
26. Service Mesh ● Service Mesh is powerful but also complex ● Istio can be setup as multi-cluster / multi-network / multi-mesh ● Provides internal split horizon DNS at zero cost ○ whoami.eu1 / whoami.eu2 / whoami.eu3 / whoami.global ● Unexpected bonus: Security and Observability
27. Service Mesh
28. kubernetes ● Managed ? ● Vanilla or Packaged ?
29. Data storage ● Handle different use cases ● You might need a DB that is replicating data cross-sites ● The key is network latency and disconnect handling

Notas do Editor

cf https://www.astrachain.com/
cf www.webofmars.com
@Fred

ASK: who in the audience has a MC project ? What kind ?
Very trendy topic | kubecon US 21
Let’s dive in and see why / when / where and how you should go for MC !
and so many other questions about it …
It’s just a REX not a truth / YMMV …
Le bouclier de protection des données UE-États-Unis (en anglais : EU-US Privacy Shield) est un accord dans le domaine du droit de la protection des données personnelles, qui a été négocié entre 2015 et 2016 entre l'Union européenne et les États-Unis d'Amérique. Il n'est plus reconnu comme offrant une protection adéquate depuis le 16 juillet 2020, et ne peut donc plus servir de fondement à un transfert de données personnelles de l'Espace économique européen vers les États-Unis d'Amérique
Multi-cloud could be as simple as this picture. A big LB 3 CPs and go !
But works mainly for stateless apps
But Astrachain is not stateless ...
LCD = Lowest Common Denominator
The equation is complex
The needs:
Networking: build a trans cloud network thais transparent / efficient / secure / reliable
Services mesh: how does the services reach each others ?
Kubernetes: how we orchestrate all the infrastructure with the same methods (cloud & on-prem) ?
Data Storage: how do we store data for forgetable data (GDPR) and persistent data ?
The proposals / ideas:
Networking: VPN-backbone / CNIs / LBs
Services mesh: istio is a standard / can be setup in a different ways / split horizon dns at zero cost
Kubernetes: use KaaS ? do we need all the cloud drivers in-tree ? k3s or k0s can be a good choice
Data Storage: when traditional replications fails / multi-cloud DBs / latency is key here ...
The need
Have a list of requirements that allow to select or pass on a given cloud-provider or setup
our bricks
S3 like storage available
LoadBalancer as a Service
At least one storage class RWO on each cloud provider
Don’t really need a RWM class
Bonus: cloud-controller available as external project
Bonus: CSI compatible block storage
Instances types need to be “kinda” equivalents
Day 2 operations have to be addressed as well
@Gilles & Fred

The needs:
Observability: Need a homogeneous way to observe / debug | cross clouds and not dependent of legislations and sites
Deployments: Need to deploy new versions in multiple clusters as a breeze / source of truth
Backups: Need a portable way to do backups
Misc: Need a bunch of tooling ;-)
The solutions:
Observability
Prometheus is now a standard
Can use Thanos / Cortex to federate if needed
Loki is a light solution vs ELK/EFK
Can federate also if you use a common storage backend
Deployments
The solution is ArgoCD !
App of the apps pattern
A main repo is pulled automatically
The main repo contains all the argocd apps definition
Cascading deploys
Backups
Velero for portable backups / Coupled with minio on-prem
Misc
Infra as Code with terraform (hard !)
Rancher 2 for managing cluster
Gitlab CI/CD, OCI registry and helm registry
Password Store
Locust for load testing in CI/CD
Only accessible with direct link https://youtu.be/wkj3j9cTt2I
@Gilles
@Gilles et Fred

the need
nodes should be able to speak together
security is a major concern

How the nodes will reach each other ?
No need
VPN
As a service
BYO
Backbone (Equinix / ...)

What kind of CNI ?
Encrypted ?
Native IPs ?

Load Balancers
Scaleway LBs can’t be really connected to private VPC
@Fred

We selected Istio
well known
kind of standard

We implemented multi-cluster / multi-network / single mesh

More on bonus at demo time ...
@Fred
@Gilles & Fred
The need
build a predictable platform in the cloud or on premise
containers seems (almost) a must go
then k8s is the way
Managed ?
a few of good offers (eks / gke / kapsule / etc …)
Different versions / addons / way of configuring
Still need a on premise version
Vanilla or Packaged ?
Do you need all in-tree cloudy code ?
k3s or k0s might be the right option ...
@Gilles & Fred
The need
Store data in a different ways
forgetable / non repudiable
encrypted / clear text
fragments / replicated
Options:
Simple scenarios like multi-master MySQL or PostgreSQL
Galera and xtradb likes cluster
We selected cockroachDB !
OSS with community edition and paid features
Multi-Cloud databases with placement constraints and replication strategies (RANGES)
Some issues so far but at the end do the job
Used only for configuration and “forgettable data” (blockchain is here for the “real” data)
@Gilles
@Gilles & Fred

The need
Need to deploy new versions in multiple clusters as a breeze
Need a source of truth
The solution is ArgoCD !
App of the apps pattern
A main repo is pulled automatically
The main repo contains all the argocd apps definition
Cascading deploys
@Fred

terraform: that was so hard to standardize and there is challenges to maintain