SlideShare a Scribd company logo

Cloud-native is just part of the game

Sven Bernhardt
Sven Bernhardt

How to take distributed architectures to the next level with API gateways and service meshes. Anyone who thinks that the trend towards cloud-native applications is passing by like a hip fashion trend is overlooking something: Cloud-native is basically a puzzle piece in a larger game. This puzzle piece helps make solutions for a runtime environment, for example, as flexible as possible. Which is not unimportant. The goal of the big game is to build a software architecture that is capable of change on the one hand and robust at the same time. To do that, we need a lot of puzzle pieces, and move strategically through each level. Because while we realize cloud-native solutions as a microservices architecture, we get highly distributed architectures that present us with difficult tasks in areas such as deployment, security or connectivity. We have to solve these tasks before we enter the next level. The respective demo scenario is available in my personal Github account: https://github.com/svenbernhardt/api-mesh-demo

Technology
1 of 38
Download to read offline
© OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 1 Stuttgart, 11.05.2021 Sven Bernhardt CLOUD-NATIVE IS JUST PART OF THE GAME
© OPITZ CONSULTING 2021 / Öffentlich THAT‘S ME Cloud-native is just part of the game 2 Sven Bernhardt Cloud-Native enthusiast, API & integration geek. Always curious how new technologies and concepts can help to make things more valuable and efficient. ¢ Chief Architect / Integration Evangelist@OPITZ CONSULTING Deutschland GmbH ¢ Oracle ACE Director @sbernhardt https://svenbernhardt.wordpress.com/
© OPITZ CONSULTING 2021 / Öffentlich AGENDA Cloud-native is just part of the game 3 CLOUD-NATIVE 01 CHALLENGES 02 SERVICE MESH 04 API GATEWAY 03 API GATEWAY & SERVICE MESH 05 SUMMARY 06
© OPITZ CONSULTING 2021 / Öffentlich CLOUD-NATIVE : PARADIGM TO BUILT APPS FOR THE CLOUD! Cloud-native is just part of the game 4
© OPITZ CONSULTING 2021 / Öffentlich WHAT DOES CLOUD-NATIVE MEAN? Cloud-native is just part of the game 5 ¢ Apps follow the 12-factor app methodology for delivering software as a service (or product) ¢ Definition (published by Cloud Native Computing Foundation (CNCF)): ¢ Independent of deployment scenario: ¢ On-prem, hybrid or hybrid multi-cloud Source: https://pivotal.io/cloud-native Cloud native technologies empower organizations to build and run scalable applications in modern, dynamic environments such as public, private, and hybrid clouds. Containers, service meshes, microservices, immutable infrastructure, and declarative APIs exemplify this approach. These techniques enable loosely coupled systems that are resilient, manageable, and observable. Combined with robust automation, they allow engineers to make high-impact changes frequently and predictably with minimal toil.
© OPITZ CONSULTING 2021 / Öffentlich LOOSE COUPLING OFTEN MEANS MORE DISTRIBUTION Cloud-native is just part of the game 6 ¢ Single Deployment unit ¢ Single execution process ¢ Shared database ¢ Local, app-internal communication only ¢ Multiple Deployment units ¢ Exclusive execution process per service ¢ Database per Service (usually) ¢ Remote, inter-service communication UI Business Logic Persistence Monolithic app architecture Cloud-native app architecture
© OPITZ CONSULTING 2021 / Öffentlich SERVICE DISTRIBUTION COMES AT A PRICE Cloud-native is just part of the game 7 • Amount of traffic • Number of services • Teams autonomity Reliability ¢ Traffic connectivity & reliability ¢ Zero-trust security ¢ Observability ¢ Log aggregation ¢ Metrics management ¢ Service tracing Challenges
© OPITZ CONSULTING 2021 / Öffentlich INCREASED COMPLEXITY AND CHALLENGES WITH RESPECT TO DEVELOPMENT CONSISTENCY Cloud-native is just part of the game 8 Security Security Logging Logging Security Tracing Metrics Routing Metrics Tracing Application AuthN/Z Rate-Limiting Routing Caching Organization Application AuthN/Z Versioning Versioning Rate-Limiting
© OPITZ CONSULTING 2021 / Öffentlich RELIABLE CONNECTIVITY IS A MULTIDIMENSIONAL PROBLEM Cloud-native is just part of the game 9 App App App App Edge Cross-App In-App Monolith Services Microservices Serverless …
© OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 10 … BUT: WE’RE USUALLY NOT STARTING ON A GREENFIELD! https://opitzcloud.canto.global/b/GI7R1
© OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 11 API GATEWAY https://www.flickr.com/photos/matmatmat/20153807915/sizes/l/
© OPITZ CONSULTING 2021 / Öffentlich API GATEWAY CHARACTERISTICS Cloud-native is just part of the game 12 ¢ Single entry point for clients to access Services ¢ No matter the implementation technology ¢ No matter the architecture (Monolithic or µService) ¢ Provides a consistent governance model ¢ Decouples Client and Service implementation ¢ Is deployed separately in its own instance ¢ Deployment models: ¢ Bundled data and control plane ¢ Independent data and control plane Source: https://tinyurl.com/yxbds3cd
© OPITZ CONSULTING 2021 / Öffentlich ARCHITECTURE CONSIDERATIONS Cloud-native is just part of the game 13 ¢ Supports API Design-first ¢ Allows seamless DevOps (CI / CD) integration ¢ Runs on every infrastructure (Containers, VMs, etc.) ¢ Support for different types of APIs (SOAP, REST, GraphQL, gRPC) ¢ Hybrid architecture ¢ Centralized Control plane (Management) ¢ Distributed Data planes (Workers) Source: https://tinyurl.com/y67tlr77
© OPITZ CONSULTING 2021 / Öffentlich USE CASES Cloud-native is just part of the game 14 ¢ API as products ¢ API products needs to be accessible from outside and inside ¢ API Gateway as an abstraction layer ¢ Service Connectivity ¢ Enforce networking policies to connect, secure, encrypt, protect and observe communication ¢ Decoupling ¢ Client to API Gateway ¢ API Gateway to upstream service ¢ Capabilities to cover: Edge / Boundary Routing, Security, Versioning, API Monetization, API Analytics
© OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 15 API life cycle as proposed by Luis Weir (@luisw19) in his book „Enterprise API Management“ API products need proper governance!
© OPITZ CONSULTING 2021 / Öffentlich WHAT CAN API GATEWAY HELP YOU WITH? Cloud-native is just part of the game 16
© OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 17 SERVICE MESH https://www.flickr.com/photos/26020895@N04/15695786155/sizes/l/
© OPITZ CONSULTING 2021 / Öffentlich SERVICE MESH CHARACTERISTICS Cloud-native is just part of the game 18 ¢ Platform that makes service-to-service communication more reliable, secure and observable ¢ Helps to implement cross-cutting concerns with respect to service integration challenges more efficient ¢ Is deployed co-located with the corresponding service ¢ Deployment model: Distributed Data planes with central Control plane ¢ Can be applied on any ¢ Architecture (e.g. Monolithic or µService) ¢ Platform (e.g. VMs, Containers, Kubernetes) Service (Business logic) Sidecar (Supporting functionality like Logging, Configuration, etc.) Host / VM / Pod
© OPITZ CONSULTING 2021 / Öffentlich USE CASES Cloud-native is just part of the game 19 ¢ Network management and reliable connectivity ¢ No longer Developer’s responsibility (Increased developer productivity) ¢ Consistent, declarative management at infrastructure level ¢ Zero-trust security ¢ Define traffic permissions (Who with whom?) ¢ Secure communication via mTLS ¢ Automated certificate management ¢ Capabilities to cover: Security (mTLS), Traffic routing, Observability, Resiliency
© OPITZ CONSULTING 2021 / Öffentlich ARCHITECTURE CONSIDERATIONS Cloud-native is just part of the game 20 ¢ Runs on every infrastructure (Containers, VMs, etc.) ¢ Everything is a service! ¢ Cloud-native apps deployed to Kubernetes ¢ Non Cloud-native workloads ¢ Allows for multi-zone, hybrid Mesh deployment ¢ Span multiple Kubernetes Clusters ¢ Span multiple Clouds ¢ Span on-prem workloads
© OPITZ CONSULTING 2021 / Öffentlich WHAT CAN SERVICE MESH HELP YOU WITH? Cloud-native is just part of the game 21
© OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 22 API GATEWAY AND SERVICE MESH https://opitzcloud.canto.global/b/Q93DV
© OPITZ CONSULTING 2021 / Öffentlich SIMILARITIES AND DIFFERENCES Cloud-native is just part of the game 23 API Gateway ¢ Handles external edge / boundary traffic ¢ Controls in and out data flow ¢ Bridges security trust domains (hybrid) ¢ Focus on exposing business functionality Service Mesh ¢ Handles internal traffic ¢ Controls service-2-service communication ¢ Ensures internal trust between services ¢ Operates at the infrastructure level Service Mesh Security Observability Traffic Routing Resilency API Gateway Security / Access Control API Contracts. & limits Developer portal & docs API Monetization Rate Limits
© OPITZ CONSULTING 2021 / Öffentlich CONSISTENCE FROM THE EDGE TO THE TARGET SERVICE Cloud-native is just part of the game 24 ¢ External Clients access an organization’s services through the API Gateway (Single Point of entry) ¢ API Gateways are integrated in the Mesh ¢ Just another service from the Mesh’s perspective ¢ Also get own Service Mesh Proxy (SMP) ¢ Internal traffic routing is handeled by the Mesh ¢ Benefits: ¢ Consistent security ¢ Proper insights / Observability ¢ Increased Developer’s productivity
© OPITZ CONSULTING 2021 / Öffentlich API GATEWAY AND SERVICE MESH IN ACTION Cloud-native is just part of the game 25 ¢ Demo shows the Kuma demo application ¢ Service Mesh: Kuma Mesh (originary invented by Kong, but now donated to CNCF) ¢ API Gateway: Kong OSS API Gateway Frontend App Kubernetes Cluster Backend App Backend App Backend App Client
© OPITZ CONSULTING 2021 / Öffentlich WHY KONG API GATEWAY? Cloud-native is just part of the game 26 ¢ Kong Microservice API Gateway ¢ Lightweight ¢ Scalable ¢ Modular ¢ Infrastructure-agnostic ¢ Deployed on top of reliable technologies ¢ Extensible using Plugins and other Open Source compnents (Lua, Go and JavaScript) ¢ API-driven: Fully configurable using a REST API ¢ Smooth integration in existing CI/CD Pipelines Flexible Deployment approach Classic deployment K8s Microgateway deployment K8s Ingress deployment Hybrid deployment
© OPITZ CONSULTING 2021 / Öffentlich WHY KUMA MESH? Cloud-native is just part of the game 27 ¢ Provides a modern distributed Control Plane and uses Envoy for depiciting the Data Plane ¢ Platform agnostic open-source control plane for Service Mesh ¢ Hence Kuma is ¢ Universal ¢ Simple ¢ Scalable ¢ Envoy-based ¢ Supports different deployment models ¢ Standalone deployment ¢ Multi-Zone deployment Source: https://tinyurl.com/rbp4t8m3
© OPITZ CONSULTING 2021 / Öffentlich KUMA DEPLOYMENT MODES Cloud-native is just part of the game 28 Standalone Multi-Zone Source: https://tinyurl.com/khradpjk Source: https://tinyurl.com/4jktvunk
© OPITZ CONSULTING 2021 / Öffentlich API GATEWAY ALTERNATIVES TO KONG Cloud-native is just part of the game 29 Source: Smartbear “State of API 2020” Source: Magic Quadrant for Full Life Cycle API Management, Sept. 2020 Source: CNCF Cloud Naitve Landscape (Category: API Gateway)
© OPITZ CONSULTING 2021 / Öffentlich SERVICE MESH ALTERNATIVES TO KUMA MESH Cloud-native is just part of the game 30 Source: CNCF Survey Report 2020 Source: CNCF Cloud Naitve Landscape (Category: Service Mesh) Source: https://servicemesh.es
© OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 31 SUMMARY https://opitzcloud.canto.global/b/RPPN0
© OPITZ CONSULTING 2021 / Öffentlich CLOUD-NATIVE BECOMES MORE AND MORE IMPORTANT Cloud-native is just part of the game 32 ¢ The future is Cloud-native ¢ Hybrid, Multi-Cloud architectures will be the norm Source: CNCF Survey Report 2020 Data center usage Cloud-native benefits
© OPITZ CONSULTING 2021 / Öffentlich RELEVANCY OF API GATEWAYS AND SERVICE MESH Cloud-native is just part of the game 33 Service Mesh usage Source: CNCF Survey Report 2020 Source: Smartbear “State of API 2020” Source: Smartbear “State of API 2020”
© OPITZ CONSULTING 2021 / Öffentlich KEY TAKEAWAYS Cloud-native is just part of the game 34 ¢ API Gateway and Service mesh can be combined (depending on the use case) ¢ Both Patterns help to increase developers efficiency ¢ Devs can focus on business code, while things like connectivity challenges are solved on an infrastructure level (by a mesh) ¢ Central management ¢ BUT: Could also be seen critical by developers, since it also decreases a team’s autonomy! ¢ Using either API Gateway or Serivce mesh does not depend on the direction, but on the use case (North-South vs. East-West)
© OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 35 Q & A https://opitzcloud.canto.global/b/H0EMG
© OPITZ CONSULTING 2021 / Öffentlich USEFUL LINKS / RESOURCES Cloud-native is just part of the game 36 ¢ Blog Christian Posta: Do I Need an API Gateway if I Use a Service Mesh? ¢ CNCF: Cloud-native Trail Map ¢ CNCF: CNCF Cloud-native landscape ¢ Smartbear: The State of API 2020 Report ¢ INNOQ: Service Mesh Comparison ¢ Github: Kuma Demo Application ¢ Kuma Mesh ¢ Kong OSS Gateway
© OPITZ CONSULTING 2021 / Öffentlich IN CASE OF ANY QUESTIONS… Cloud-native is just part of the game 37 Sven Bernhardt Chief Architect / Integration Evangelist | Oracle ACE Director OPITZ CONSULTING Deutschland GmbH Kirchstrasse 6, 51647 Gummersbach, Germany Phone: +49 172 2193529 Mail: sven.bernhardt@opitz-consulting.com Twitter: @sbernhardt Blog: https://svenbernhardt.wordpress.com
© OPITZ CONSULTING 2021 / Öffentlich VIRTUELLES FEIERABENDBIER Cloud-native is just part of the game Seite 38

Recommended

Serverless architectures with Fn Project
Serverless architectures with Fn ProjectServerless architectures with Fn Project
Serverless architectures with Fn Project
Sven Bernhardt
 
Containers in the Enterprise
Containers in the EnterpriseContainers in the Enterprise
Containers in the Enterprise
Ken Thompson
 
8.cncf en
8.cncf en8.cncf en
8.cncf en
Juraj Hantak
 
Flexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with KongFlexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with Kong
Sven Bernhardt
 
[DevConf.US 2019]Quarkus Brings Serverless to Java Developers
[DevConf.US 2019]Quarkus Brings Serverless to Java Developers[DevConf.US 2019]Quarkus Brings Serverless to Java Developers
[DevConf.US 2019]Quarkus Brings Serverless to Java Developers
Daniel Oh
 
WebSockets and Equinox OSGi in a Servlet Container
WebSockets and Equinox OSGi in a Servlet ContainerWebSockets and Equinox OSGi in a Servlet Container
WebSockets and Equinox OSGi in a Servlet Container
Nedelcho Delchev
 
Spring Cloud Into Production
Spring Cloud Into ProductionSpring Cloud Into Production
Spring Cloud Into Production
Todd Miller
 
Lean Microservices with OSGi - Christian Schneider
Lean Microservices with OSGi - Christian SchneiderLean Microservices with OSGi - Christian Schneider
Lean Microservices with OSGi - Christian Schneider
mfrancis
 

Recommended

Serverless architectures with Fn Project
Serverless architectures with Fn ProjectServerless architectures with Fn Project
Serverless architectures with Fn Project
Sven Bernhardt
 
Containers in the Enterprise
Containers in the EnterpriseContainers in the Enterprise
Containers in the Enterprise
Ken Thompson
 
8.cncf en
8.cncf en8.cncf en
8.cncf en
Juraj Hantak
 
Flexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with KongFlexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with Kong
Sven Bernhardt
 
[DevConf.US 2019]Quarkus Brings Serverless to Java Developers
[DevConf.US 2019]Quarkus Brings Serverless to Java Developers[DevConf.US 2019]Quarkus Brings Serverless to Java Developers
[DevConf.US 2019]Quarkus Brings Serverless to Java Developers
Daniel Oh
 
WebSockets and Equinox OSGi in a Servlet Container
WebSockets and Equinox OSGi in a Servlet ContainerWebSockets and Equinox OSGi in a Servlet Container
WebSockets and Equinox OSGi in a Servlet Container
Nedelcho Delchev
 
Spring Cloud Into Production
Spring Cloud Into ProductionSpring Cloud Into Production
Spring Cloud Into Production
Todd Miller
 
Lean Microservices with OSGi - Christian Schneider
Lean Microservices with OSGi - Christian SchneiderLean Microservices with OSGi - Christian Schneider
Lean Microservices with OSGi - Christian Schneider
mfrancis
 
NetDevOps Development Environments
NetDevOps Development EnvironmentsNetDevOps Development Environments
NetDevOps Development Environments
Joel W. King
 
Cloud Native with Kyma
Cloud Native with KymaCloud Native with Kyma
Cloud Native with Kyma
Piotr Kopczynski
 
Connect Your Functions with RSocket
Connect Your Functions with RSocketConnect Your Functions with RSocket
Connect Your Functions with RSocket
VMware Tanzu
 
Crafting a New Enterprise App Platform with Cloud Foundry, Kubernetes, Istio,...
Crafting a New Enterprise App Platform with Cloud Foundry, Kubernetes, Istio,...Crafting a New Enterprise App Platform with Cloud Foundry, Kubernetes, Istio,...
Crafting a New Enterprise App Platform with Cloud Foundry, Kubernetes, Istio,...
VMware Tanzu
 
DevSecOps with Confidence
DevSecOps with ConfidenceDevSecOps with Confidence
DevSecOps with Confidence
VMware Tanzu
 
NGINX Unit at Scale: Use Cases and the Future of Unit
NGINX Unit at Scale: Use Cases and the Future of UnitNGINX Unit at Scale: Use Cases and the Future of Unit
NGINX Unit at Scale: Use Cases and the Future of Unit
NGINX, Inc.
 
NGINX Controller: faster deployments, fewer headaches
NGINX Controller: faster deployments, fewer headachesNGINX Controller: faster deployments, fewer headaches
NGINX Controller: faster deployments, fewer headaches
Kangaroot
 
PKS Networking with NSX-T: You Focus on your App, We'll Take Care of the Rest!
PKS Networking with NSX-T: You Focus on your App, We'll Take Care of the Rest!PKS Networking with NSX-T: You Focus on your App, We'll Take Care of the Rest!
PKS Networking with NSX-T: You Focus on your App, We'll Take Care of the Rest!
VMware Tanzu
 
New and cool in OSGi R7 - David Bosschaert & Carsten Ziegeler
New and cool in OSGi R7 - David Bosschaert & Carsten ZiegelerNew and cool in OSGi R7 - David Bosschaert & Carsten Ziegeler
New and cool in OSGi R7 - David Bosschaert & Carsten Ziegeler
mfrancis
 
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAPSecuring Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
Olivia LaMar
 
Making Microservices Smarter with Istio, Envoy and Pivotal Ingress Router
Making Microservices Smarter with Istio, Envoy and Pivotal Ingress RouterMaking Microservices Smarter with Istio, Envoy and Pivotal Ingress Router
Making Microservices Smarter with Istio, Envoy and Pivotal Ingress Router
VMware Tanzu
 
Fabio rapposelli pks-vmug
Fabio rapposelli pks-vmugFabio rapposelli pks-vmug
Fabio rapposelli pks-vmug
VMUG IT
 
Kubernetes für Workstations Edge und IoT Devices
Kubernetes für Workstations Edge und IoT DevicesKubernetes für Workstations Edge und IoT Devices
Kubernetes für Workstations Edge und IoT Devices
QAware GmbH
 
Migrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKS
Migrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKSMigrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKS
Migrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKS
Weaveworks
 
Introduction to KubeSphere and its open source ecosystem
Introduction to KubeSphere and its open source ecosystemIntroduction to KubeSphere and its open source ecosystem
Introduction to KubeSphere and its open source ecosystem
KubeSphere
 
PKS: The What and How of Enterprise-Grade Kubernetes
PKS: The What and How of Enterprise-Grade KubernetesPKS: The What and How of Enterprise-Grade Kubernetes
PKS: The What and How of Enterprise-Grade Kubernetes
VMware Tanzu
 
Driving Success In The Cloud With NGINX
Driving Success In The Cloud With NGINXDriving Success In The Cloud With NGINX
Driving Success In The Cloud With NGINX
NGINX, Inc.
 
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
DevOps.com
 
클라우드 관리와 오픈스택, 그리고 컨테이너 기술
클라우드 관리와 오픈스택, 그리고 컨테이너 기술클라우드 관리와 오픈스택, 그리고 컨테이너 기술
클라우드 관리와 오픈스택, 그리고 컨테이너 기술
OpenStack Korea Community
 
GitLab Commit: Enhance your Compliance with Policy-Based CI/CD
GitLab Commit: Enhance your Compliance with Policy-Based CI/CDGitLab Commit: Enhance your Compliance with Policy-Based CI/CD
GitLab Commit: Enhance your Compliance with Policy-Based CI/CD
Nico Meisenzahl
 
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
OPITZ CONSULTING Deutschland
 
API Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding conceptsAPI Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding concepts
Sven Bernhardt
 

More Related Content

What's hot

Making Microservices Smarter with Istio, Envoy and Pivotal Ingress Router
Making Microservices Smarter with Istio, Envoy and Pivotal Ingress RouterMaking Microservices Smarter with Istio, Envoy and Pivotal Ingress Router
Making Microservices Smarter with Istio, Envoy and Pivotal Ingress Router
VMware Tanzu
 
Kubernetes für Workstations Edge und IoT Devices
Kubernetes für Workstations Edge und IoT DevicesKubernetes für Workstations Edge und IoT Devices
Kubernetes für Workstations Edge und IoT Devices
QAware GmbH
 
Migrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKS
Migrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKSMigrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKS
Migrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKS
Weaveworks
 
PKS: The What and How of Enterprise-Grade Kubernetes
PKS: The What and How of Enterprise-Grade KubernetesPKS: The What and How of Enterprise-Grade Kubernetes
PKS: The What and How of Enterprise-Grade Kubernetes
VMware Tanzu
 
Driving Success In The Cloud With NGINX
Driving Success In The Cloud With NGINXDriving Success In The Cloud With NGINX
Driving Success In The Cloud With NGINX
NGINX, Inc.
 
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
DevOps.com
 

What's hot (20)

NetDevOps Development Environments
NetDevOps Development EnvironmentsNetDevOps Development Environments
NetDevOps Development Environments
 
Cloud Native with Kyma
Cloud Native with KymaCloud Native with Kyma
Cloud Native with Kyma
 
Connect Your Functions with RSocket
Connect Your Functions with RSocketConnect Your Functions with RSocket
Connect Your Functions with RSocket
 
Crafting a New Enterprise App Platform with Cloud Foundry, Kubernetes, Istio,...
Crafting a New Enterprise App Platform with Cloud Foundry, Kubernetes, Istio,...Crafting a New Enterprise App Platform with Cloud Foundry, Kubernetes, Istio,...
Crafting a New Enterprise App Platform with Cloud Foundry, Kubernetes, Istio,...
 
DevSecOps with Confidence
DevSecOps with ConfidenceDevSecOps with Confidence
DevSecOps with Confidence
 
NGINX Unit at Scale: Use Cases and the Future of Unit
NGINX Unit at Scale: Use Cases and the Future of UnitNGINX Unit at Scale: Use Cases and the Future of Unit
NGINX Unit at Scale: Use Cases and the Future of Unit
 
NGINX Controller: faster deployments, fewer headaches
NGINX Controller: faster deployments, fewer headachesNGINX Controller: faster deployments, fewer headaches
NGINX Controller: faster deployments, fewer headaches
 
PKS Networking with NSX-T: You Focus on your App, We'll Take Care of the Rest!
PKS Networking with NSX-T: You Focus on your App, We'll Take Care of the Rest!PKS Networking with NSX-T: You Focus on your App, We'll Take Care of the Rest!
PKS Networking with NSX-T: You Focus on your App, We'll Take Care of the Rest!
 
New and cool in OSGi R7 - David Bosschaert & Carsten Ziegeler
New and cool in OSGi R7 - David Bosschaert & Carsten ZiegelerNew and cool in OSGi R7 - David Bosschaert & Carsten Ziegeler
New and cool in OSGi R7 - David Bosschaert & Carsten Ziegeler
 
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAPSecuring Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
Securing Kubernetes Clusters with NGINX Plus Ingress Controller & NAP
 
Making Microservices Smarter with Istio, Envoy and Pivotal Ingress Router
Making Microservices Smarter with Istio, Envoy and Pivotal Ingress RouterMaking Microservices Smarter with Istio, Envoy and Pivotal Ingress Router
Making Microservices Smarter with Istio, Envoy and Pivotal Ingress Router
 
Fabio rapposelli pks-vmug
Fabio rapposelli pks-vmugFabio rapposelli pks-vmug
Fabio rapposelli pks-vmug
 
Kubernetes für Workstations Edge und IoT Devices
Kubernetes für Workstations Edge und IoT DevicesKubernetes für Workstations Edge und IoT Devices
Kubernetes für Workstations Edge und IoT Devices
 
Migrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKS
Migrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKSMigrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKS
Migrating from Self-Managed Kubernetes on EC2 to a GitOps Enabled EKS
 
Introduction to KubeSphere and its open source ecosystem
Introduction to KubeSphere and its open source ecosystemIntroduction to KubeSphere and its open source ecosystem
Introduction to KubeSphere and its open source ecosystem
 
PKS: The What and How of Enterprise-Grade Kubernetes
PKS: The What and How of Enterprise-Grade KubernetesPKS: The What and How of Enterprise-Grade Kubernetes
PKS: The What and How of Enterprise-Grade Kubernetes
 
Driving Success In The Cloud With NGINX
Driving Success In The Cloud With NGINXDriving Success In The Cloud With NGINX
Driving Success In The Cloud With NGINX
 
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
 
클라우드 관리와 오픈스택, 그리고 컨테이너 기술
클라우드 관리와 오픈스택, 그리고 컨테이너 기술클라우드 관리와 오픈스택, 그리고 컨테이너 기술
클라우드 관리와 오픈스택, 그리고 컨테이너 기술
 
GitLab Commit: Enhance your Compliance with Policy-Based CI/CD
GitLab Commit: Enhance your Compliance with Policy-Based CI/CDGitLab Commit: Enhance your Compliance with Policy-Based CI/CD
GitLab Commit: Enhance your Compliance with Policy-Based CI/CD
 

Similar to Cloud-native is just part of the game

API Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding conceptsAPI Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding concepts
Sven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
Sven Bernhardt
 
Service Mesh Advanced Use Cases
Service Mesh Advanced Use CasesService Mesh Advanced Use Cases
Service Mesh Advanced Use Cases
Fabian Hardt
 
Service Mesh Advanced Use Cases
Service Mesh Advanced Use CasesService Mesh Advanced Use Cases
Service Mesh Advanced Use Cases
Sven Bernhardt
 
Service integration made easy with Open Source Kuma
Service integration made easy with Open Source KumaService integration made easy with Open Source Kuma
Service integration made easy with Open Source Kuma
Sven Bernhardt
 
Cloud-native Application Development - The new normal
Cloud-native Application Development - The new normalCloud-native Application Development - The new normal
Cloud-native Application Development - The new normal
Sven Bernhardt
 
API Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding conceptsAPI Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding concepts
Sven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
Sven Bernhardt
 
Kong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIsKong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIs
Sven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
Sven Bernhardt
 
Rumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with KongRumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with Kong
Sven Bernhardt
 
Declarative observability management for Microservice architectures
Declarative observability management for Microservice architecturesDeclarative observability management for Microservice architectures
Declarative observability management for Microservice architectures
Sven Bernhardt
 
Modern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native ServicesModern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native Services
Sven Bernhardt
 
One Gateway to Rule them All: Building a Federated API Management Platform
One Gateway to Rule them All: Building a Federated API Management PlatformOne Gateway to Rule them All: Building a Federated API Management Platform
One Gateway to Rule them All: Building a Federated API Management Platform
Sven Bernhardt
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle Cloud
Sven Bernhardt
 

Similar to Cloud-native is just part of the game (20)

Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
 
API Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding conceptsAPI Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding concepts
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
 
Service Mesh Advanced Use Cases
Service Mesh Advanced Use CasesService Mesh Advanced Use Cases
Service Mesh Advanced Use Cases
 
Service Mesh Advanced Use Cases
Service Mesh Advanced Use CasesService Mesh Advanced Use Cases
Service Mesh Advanced Use Cases
 
Service integration made easy with Open Source Kuma
Service integration made easy with Open Source KumaService integration made easy with Open Source Kuma
Service integration made easy with Open Source Kuma
 
Cloud-native Application Development - The new normal
Cloud-native Application Development - The new normalCloud-native Application Development - The new normal
Cloud-native Application Development - The new normal
 
API Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding conceptsAPI Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding concepts
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
 
Cloud-native Application Development on OCI
Cloud-native Application Development on OCICloud-native Application Development on OCI
Cloud-native Application Development on OCI
 
Kong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIsKong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIs
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
 
Efficient API delivery with APIOps
Efficient API delivery with APIOpsEfficient API delivery with APIOps
Efficient API delivery with APIOps
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle Cloud
 
Rumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with KongRumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with Kong
 
Efficient API delivery with APIOps
Efficient API delivery with APIOpsEfficient API delivery with APIOps
Efficient API delivery with APIOps
 
Declarative observability management for Microservice architectures
Declarative observability management for Microservice architecturesDeclarative observability management for Microservice architectures
Declarative observability management for Microservice architectures
 
Modern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native ServicesModern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native Services
 
One Gateway to Rule them All: Building a Federated API Management Platform
One Gateway to Rule them All: Building a Federated API Management PlatformOne Gateway to Rule them All: Building a Federated API Management Platform
One Gateway to Rule them All: Building a Federated API Management Platform
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle Cloud
 

More from Sven Bernhardt

Effective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and QuarkusEffective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and Quarkus
Sven Bernhardt
 
Modernization options for Oracle Forms applications
Modernization options for Oracle Forms applicationsModernization options for Oracle Forms applications
Modernization options for Oracle Forms applications
Sven Bernhardt
 
Elevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer ProductivityElevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer Productivity
Sven Bernhardt
 
Build and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaBuild and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using Kuma
Sven Bernhardt
 
Torch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice ArchitecturesTorch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice Architectures
Sven Bernhardt
 
Next Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und KubernetesNext Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Sven Bernhardt
 
Cloud-Native Microservices using Helidon
Cloud-Native Microservices using HelidonCloud-Native Microservices using Helidon
Cloud-Native Microservices using Helidon
Sven Bernhardt
 

More from Sven Bernhardt (11)

Effective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and QuarkusEffective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and Quarkus
 
Modernization options for Oracle Forms applications
Modernization options for Oracle Forms applicationsModernization options for Oracle Forms applications
Modernization options for Oracle Forms applications
 
Elevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer ProductivityElevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer Productivity
 
Integration architectures based on Microservices, APIs and events
Integration architectures based on Microservices, APIs and eventsIntegration architectures based on Microservices, APIs and events
Integration architectures based on Microservices, APIs and events
 
Build and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaBuild and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using Kuma
 
Build and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaBuild and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using Kuma
 
Torch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice ArchitecturesTorch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice Architectures
 
Analytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIsAnalytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIs
 
Implementing Cloud-native apps on OCI
Implementing Cloud-native apps on OCIImplementing Cloud-native apps on OCI
Implementing Cloud-native apps on OCI
 
Next Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und KubernetesNext Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
 
Cloud-Native Microservices using Helidon
Cloud-Native Microservices using HelidonCloud-Native Microservices using Helidon
Cloud-Native Microservices using Helidon
 

Recently uploaded

08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
Delhi Call girls
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Safe Software
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
Enterprise Knowledge
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
Delhi Call girls
 

Recently uploaded (20)

08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdf
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdf
 

Cloud-native is just part of the game

  • 1. © OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 1 Stuttgart, 11.05.2021 Sven Bernhardt CLOUD-NATIVE IS JUST PART OF THE GAME
  • 2. © OPITZ CONSULTING 2021 / Öffentlich THAT‘S ME Cloud-native is just part of the game 2 Sven Bernhardt Cloud-Native enthusiast, API & integration geek. Always curious how new technologies and concepts can help to make things more valuable and efficient. ¢ Chief Architect / Integration Evangelist@OPITZ CONSULTING Deutschland GmbH ¢ Oracle ACE Director @sbernhardt https://svenbernhardt.wordpress.com/
  • 3. © OPITZ CONSULTING 2021 / Öffentlich AGENDA Cloud-native is just part of the game 3 CLOUD-NATIVE 01 CHALLENGES 02 SERVICE MESH 04 API GATEWAY 03 API GATEWAY & SERVICE MESH 05 SUMMARY 06
  • 4. © OPITZ CONSULTING 2021 / Öffentlich CLOUD-NATIVE : PARADIGM TO BUILT APPS FOR THE CLOUD! Cloud-native is just part of the game 4
  • 5. © OPITZ CONSULTING 2021 / Öffentlich WHAT DOES CLOUD-NATIVE MEAN? Cloud-native is just part of the game 5 ¢ Apps follow the 12-factor app methodology for delivering software as a service (or product) ¢ Definition (published by Cloud Native Computing Foundation (CNCF)): ¢ Independent of deployment scenario: ¢ On-prem, hybrid or hybrid multi-cloud Source: https://pivotal.io/cloud-native Cloud native technologies empower organizations to build and run scalable applications in modern, dynamic environments such as public, private, and hybrid clouds. Containers, service meshes, microservices, immutable infrastructure, and declarative APIs exemplify this approach. These techniques enable loosely coupled systems that are resilient, manageable, and observable. Combined with robust automation, they allow engineers to make high-impact changes frequently and predictably with minimal toil.
  • 6. © OPITZ CONSULTING 2021 / Öffentlich LOOSE COUPLING OFTEN MEANS MORE DISTRIBUTION Cloud-native is just part of the game 6 ¢ Single Deployment unit ¢ Single execution process ¢ Shared database ¢ Local, app-internal communication only ¢ Multiple Deployment units ¢ Exclusive execution process per service ¢ Database per Service (usually) ¢ Remote, inter-service communication UI Business Logic Persistence Monolithic app architecture Cloud-native app architecture
  • 7. © OPITZ CONSULTING 2021 / Öffentlich SERVICE DISTRIBUTION COMES AT A PRICE Cloud-native is just part of the game 7 • Amount of traffic • Number of services • Teams autonomity Reliability ¢ Traffic connectivity & reliability ¢ Zero-trust security ¢ Observability ¢ Log aggregation ¢ Metrics management ¢ Service tracing Challenges
  • 8. © OPITZ CONSULTING 2021 / Öffentlich INCREASED COMPLEXITY AND CHALLENGES WITH RESPECT TO DEVELOPMENT CONSISTENCY Cloud-native is just part of the game 8 Security Security Logging Logging Security Tracing Metrics Routing Metrics Tracing Application AuthN/Z Rate-Limiting Routing Caching Organization Application AuthN/Z Versioning Versioning Rate-Limiting
  • 9. © OPITZ CONSULTING 2021 / Öffentlich RELIABLE CONNECTIVITY IS A MULTIDIMENSIONAL PROBLEM Cloud-native is just part of the game 9 App App App App Edge Cross-App In-App Monolith Services Microservices Serverless …
  • 10. © OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 10 … BUT: WE’RE USUALLY NOT STARTING ON A GREENFIELD! https://opitzcloud.canto.global/b/GI7R1
  • 11. © OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 11 API GATEWAY https://www.flickr.com/photos/matmatmat/20153807915/sizes/l/
  • 12. © OPITZ CONSULTING 2021 / Öffentlich API GATEWAY CHARACTERISTICS Cloud-native is just part of the game 12 ¢ Single entry point for clients to access Services ¢ No matter the implementation technology ¢ No matter the architecture (Monolithic or µService) ¢ Provides a consistent governance model ¢ Decouples Client and Service implementation ¢ Is deployed separately in its own instance ¢ Deployment models: ¢ Bundled data and control plane ¢ Independent data and control plane Source: https://tinyurl.com/yxbds3cd
  • 13. © OPITZ CONSULTING 2021 / Öffentlich ARCHITECTURE CONSIDERATIONS Cloud-native is just part of the game 13 ¢ Supports API Design-first ¢ Allows seamless DevOps (CI / CD) integration ¢ Runs on every infrastructure (Containers, VMs, etc.) ¢ Support for different types of APIs (SOAP, REST, GraphQL, gRPC) ¢ Hybrid architecture ¢ Centralized Control plane (Management) ¢ Distributed Data planes (Workers) Source: https://tinyurl.com/y67tlr77
  • 14. © OPITZ CONSULTING 2021 / Öffentlich USE CASES Cloud-native is just part of the game 14 ¢ API as products ¢ API products needs to be accessible from outside and inside ¢ API Gateway as an abstraction layer ¢ Service Connectivity ¢ Enforce networking policies to connect, secure, encrypt, protect and observe communication ¢ Decoupling ¢ Client to API Gateway ¢ API Gateway to upstream service ¢ Capabilities to cover: Edge / Boundary Routing, Security, Versioning, API Monetization, API Analytics
  • 15. © OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 15 API life cycle as proposed by Luis Weir (@luisw19) in his book „Enterprise API Management“ API products need proper governance!
  • 16. © OPITZ CONSULTING 2021 / Öffentlich WHAT CAN API GATEWAY HELP YOU WITH? Cloud-native is just part of the game 16
  • 17. © OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 17 SERVICE MESH https://www.flickr.com/photos/26020895@N04/15695786155/sizes/l/
  • 18. © OPITZ CONSULTING 2021 / Öffentlich SERVICE MESH CHARACTERISTICS Cloud-native is just part of the game 18 ¢ Platform that makes service-to-service communication more reliable, secure and observable ¢ Helps to implement cross-cutting concerns with respect to service integration challenges more efficient ¢ Is deployed co-located with the corresponding service ¢ Deployment model: Distributed Data planes with central Control plane ¢ Can be applied on any ¢ Architecture (e.g. Monolithic or µService) ¢ Platform (e.g. VMs, Containers, Kubernetes) Service (Business logic) Sidecar (Supporting functionality like Logging, Configuration, etc.) Host / VM / Pod
  • 19. © OPITZ CONSULTING 2021 / Öffentlich USE CASES Cloud-native is just part of the game 19 ¢ Network management and reliable connectivity ¢ No longer Developer’s responsibility (Increased developer productivity) ¢ Consistent, declarative management at infrastructure level ¢ Zero-trust security ¢ Define traffic permissions (Who with whom?) ¢ Secure communication via mTLS ¢ Automated certificate management ¢ Capabilities to cover: Security (mTLS), Traffic routing, Observability, Resiliency
  • 20. © OPITZ CONSULTING 2021 / Öffentlich ARCHITECTURE CONSIDERATIONS Cloud-native is just part of the game 20 ¢ Runs on every infrastructure (Containers, VMs, etc.) ¢ Everything is a service! ¢ Cloud-native apps deployed to Kubernetes ¢ Non Cloud-native workloads ¢ Allows for multi-zone, hybrid Mesh deployment ¢ Span multiple Kubernetes Clusters ¢ Span multiple Clouds ¢ Span on-prem workloads
  • 21. © OPITZ CONSULTING 2021 / Öffentlich WHAT CAN SERVICE MESH HELP YOU WITH? Cloud-native is just part of the game 21
  • 22. © OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 22 API GATEWAY AND SERVICE MESH https://opitzcloud.canto.global/b/Q93DV
  • 23. © OPITZ CONSULTING 2021 / Öffentlich SIMILARITIES AND DIFFERENCES Cloud-native is just part of the game 23 API Gateway ¢ Handles external edge / boundary traffic ¢ Controls in and out data flow ¢ Bridges security trust domains (hybrid) ¢ Focus on exposing business functionality Service Mesh ¢ Handles internal traffic ¢ Controls service-2-service communication ¢ Ensures internal trust between services ¢ Operates at the infrastructure level Service Mesh Security Observability Traffic Routing Resilency API Gateway Security / Access Control API Contracts. & limits Developer portal & docs API Monetization Rate Limits
  • 24. © OPITZ CONSULTING 2021 / Öffentlich CONSISTENCE FROM THE EDGE TO THE TARGET SERVICE Cloud-native is just part of the game 24 ¢ External Clients access an organization’s services through the API Gateway (Single Point of entry) ¢ API Gateways are integrated in the Mesh ¢ Just another service from the Mesh’s perspective ¢ Also get own Service Mesh Proxy (SMP) ¢ Internal traffic routing is handeled by the Mesh ¢ Benefits: ¢ Consistent security ¢ Proper insights / Observability ¢ Increased Developer’s productivity
  • 25. © OPITZ CONSULTING 2021 / Öffentlich API GATEWAY AND SERVICE MESH IN ACTION Cloud-native is just part of the game 25 ¢ Demo shows the Kuma demo application ¢ Service Mesh: Kuma Mesh (originary invented by Kong, but now donated to CNCF) ¢ API Gateway: Kong OSS API Gateway Frontend App Kubernetes Cluster Backend App Backend App Backend App Client
  • 26. © OPITZ CONSULTING 2021 / Öffentlich WHY KONG API GATEWAY? Cloud-native is just part of the game 26 ¢ Kong Microservice API Gateway ¢ Lightweight ¢ Scalable ¢ Modular ¢ Infrastructure-agnostic ¢ Deployed on top of reliable technologies ¢ Extensible using Plugins and other Open Source compnents (Lua, Go and JavaScript) ¢ API-driven: Fully configurable using a REST API ¢ Smooth integration in existing CI/CD Pipelines Flexible Deployment approach Classic deployment K8s Microgateway deployment K8s Ingress deployment Hybrid deployment
  • 27. © OPITZ CONSULTING 2021 / Öffentlich WHY KUMA MESH? Cloud-native is just part of the game 27 ¢ Provides a modern distributed Control Plane and uses Envoy for depiciting the Data Plane ¢ Platform agnostic open-source control plane for Service Mesh ¢ Hence Kuma is ¢ Universal ¢ Simple ¢ Scalable ¢ Envoy-based ¢ Supports different deployment models ¢ Standalone deployment ¢ Multi-Zone deployment Source: https://tinyurl.com/rbp4t8m3
  • 28. © OPITZ CONSULTING 2021 / Öffentlich KUMA DEPLOYMENT MODES Cloud-native is just part of the game 28 Standalone Multi-Zone Source: https://tinyurl.com/khradpjk Source: https://tinyurl.com/4jktvunk
  • 29. © OPITZ CONSULTING 2021 / Öffentlich API GATEWAY ALTERNATIVES TO KONG Cloud-native is just part of the game 29 Source: Smartbear “State of API 2020” Source: Magic Quadrant for Full Life Cycle API Management, Sept. 2020 Source: CNCF Cloud Naitve Landscape (Category: API Gateway)
  • 30. © OPITZ CONSULTING 2021 / Öffentlich SERVICE MESH ALTERNATIVES TO KUMA MESH Cloud-native is just part of the game 30 Source: CNCF Survey Report 2020 Source: CNCF Cloud Naitve Landscape (Category: Service Mesh) Source: https://servicemesh.es
  • 31. © OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 31 SUMMARY https://opitzcloud.canto.global/b/RPPN0
  • 32. © OPITZ CONSULTING 2021 / Öffentlich CLOUD-NATIVE BECOMES MORE AND MORE IMPORTANT Cloud-native is just part of the game 32 ¢ The future is Cloud-native ¢ Hybrid, Multi-Cloud architectures will be the norm Source: CNCF Survey Report 2020 Data center usage Cloud-native benefits
  • 33. © OPITZ CONSULTING 2021 / Öffentlich RELEVANCY OF API GATEWAYS AND SERVICE MESH Cloud-native is just part of the game 33 Service Mesh usage Source: CNCF Survey Report 2020 Source: Smartbear “State of API 2020” Source: Smartbear “State of API 2020”
  • 34. © OPITZ CONSULTING 2021 / Öffentlich KEY TAKEAWAYS Cloud-native is just part of the game 34 ¢ API Gateway and Service mesh can be combined (depending on the use case) ¢ Both Patterns help to increase developers efficiency ¢ Devs can focus on business code, while things like connectivity challenges are solved on an infrastructure level (by a mesh) ¢ Central management ¢ BUT: Could also be seen critical by developers, since it also decreases a team’s autonomy! ¢ Using either API Gateway or Serivce mesh does not depend on the direction, but on the use case (North-South vs. East-West)
  • 35. © OPITZ CONSULTING 2021 / Öffentlich Cloud-native is just part of the game 35 Q & A https://opitzcloud.canto.global/b/H0EMG
  • 36. © OPITZ CONSULTING 2021 / Öffentlich USEFUL LINKS / RESOURCES Cloud-native is just part of the game 36 ¢ Blog Christian Posta: Do I Need an API Gateway if I Use a Service Mesh? ¢ CNCF: Cloud-native Trail Map ¢ CNCF: CNCF Cloud-native landscape ¢ Smartbear: The State of API 2020 Report ¢ INNOQ: Service Mesh Comparison ¢ Github: Kuma Demo Application ¢ Kuma Mesh ¢ Kong OSS Gateway
  • 37. © OPITZ CONSULTING 2021 / Öffentlich IN CASE OF ANY QUESTIONS… Cloud-native is just part of the game 37 Sven Bernhardt Chief Architect / Integration Evangelist | Oracle ACE Director OPITZ CONSULTING Deutschland GmbH Kirchstrasse 6, 51647 Gummersbach, Germany Phone: +49 172 2193529 Mail: sven.bernhardt@opitz-consulting.com Twitter: @sbernhardt Blog: https://svenbernhardt.wordpress.com
  • 38. © OPITZ CONSULTING 2021 / Öffentlich VIRTUELLES FEIERABENDBIER Cloud-native is just part of the game Seite 38