How application performance requirements impacted the (r)evolution of the Docker infrastructure at Pipedrive.

•

0 gostou•596 visualizações

This document summarizes the evolution of Docker infrastructure at Pipedrive to meet performance requirements. Key optimizations included reducing Docker build/deploy times to under 5 minutes by optimizing Dockerfiles and switching from Devicemapper to AUFS storage. Health checks and unique check paths were implemented to ensure only healthy services were accessed. The infrastructure was tuned through Linux kernel upgrades, memory limits, load spreading, and security measures to support 10,000 connections and constant high load.

Tecnologia

Docker Tallinn @Pipedrive
Renno Reinurm
2016

How application
performance
requirements impacted
the (r)evolution of the
Docker infrastructure at
Pipedrive.

Visibility
Management
Interface
http://www.slideshare.net/rreinurm/living-with-mi
croservices-at-pipedrive

Requirement 1
You shall not build/test/deploy
Docker container
over 5 minutes
Based on: xkcd.com

Optimized Dockerfiles
First iteration, 14 layers:
FROM node
ENV SERVICE_NAME=company-statistics
ENV SERVICE_DESC="Company statistics"
ENV SERVICE_TAGS=statistics
ENV NODE_ENV=live
ENV SERVICE_CHECK_HTTP=/health
ENV SERVICE_CHECK_INTERVAL=10s
ENV SERVICE_CHECK_TIMEOUT=5s
ENV DOCKER=1
EXPOSE 8000
WORKDIR /src
USER nobody
COPY . /src/
CMD ["node", "."]
Optimized, 8 layers and ordered:
FROM node:6-slim
ENV SERVICE_NAME=company-statistics
SERVICE_DESC="Company statistics"
SERVICE_TAGS=statistics
NODE_ENV=live
SERVICE_CHECK_HTTP=/v1/companyStatistics/health
SERVICE_CHECK_INTERVAL=10s
SERVICE_CHECK_TIMEOUT=5s
DOCKER=1
EXPOSE 8000
WORKDIR /src
USER nobody
CMD ["node", "."]
COPY libraries/ /src/
COPY src/ /src/

Deployment process optimizations
NB! https://docs.docker.com/engine/userguide/storagedriver/selectadriver/
Replacement of Devicemapper to AUFS reduced deployment process time 10x.
There are still improvements possible:
● Handle Linux signals
● Parallel rolling updates

Requirement 2
Consumers shall connect
only to healthy services

Beware the service discovery corruption
● Always enable health checks
● Use unique health checks
SERVICE_CHECK_HTTP=/health
vs
SERVICE_CHECK_HTTP=/v1/companyStatistics/health

Requirement 3
Container shall handle 10 000
connections and constant
high load.

Issues
● Linux kernel 3.13
● Fluentd logging agent
● Graylog logging driver
● Kernel sysctl parameters
● Swap usage
● PEBKAC
○ "net.ipv4.ip_forward" => 0
● WARNING: No memory limit support
● WARNING: No swap limit support
● WARNING: No kernel memory limit support
● WARNING: No oom kill disable support
● WARNING: No cpu cfs quota support
● WARNING: No cpu cfs period support

Docker hosts tuning
● Linux kernel 4.x
● Removed Swap
● Dropped fluentd driver
● Docker Engine upgrade/patches
● Kernel performance tuning
http://www.devconf.cz/files/slides2015/friday/Performance%20Tuning%20of%2
0Docker%20and%20RHEL%20Atomic.pdf

Service risk mitigation
● Number of nodes in cluster
○ If in doubt increase the number
● Spreading policies
● Multiple instances
● Memory limitations
● Healing policies
○ Autorestart
○ Reschedule

Security mitigation
● TLS authentication
● Minimal & official Docker images
● Signed Docker images
● User Namespace Remapping
● PID limits
● Capabilities
● Seccomp profiles
● AppArmor/SELinux profiles
https://github.com/riyazdf/dockercon-workshop

Recommendations for going
Live with Docker
● You still need to take care of OS
● Read Github issues
● Read from the source
● Keep it up to date
● (Performance) Test it

Thank you!
Give me your feedback @rreinurm

Mais conteúdo relacionado

Mais procurados

CI/CD with Docker on AWS

Hart Hoover

Docker and Windows: The State of the Union

Elton Stoneman

Presented by Laura Frank, Engineer, Codeship Testing software is necessary, no matter the size or status of your company. Introducing Docker to your development workflow can help you write and run your testing frameworks more efficiently, so that you can always deliver your best product to your customers and there are no excuses for not writing tests anymore. You’ll walk away from this talk with practical advice for using Docker to run your test frameworks more efficiently, as well as some solid knowledge of software testing principles.

DockerCon EU 2015: Stop Being Lazy and Test Your Software!

Docker, Inc.

PuppetConf 2016: Scaling Puppet on AWS ECS with Terraform and Docker – Maxime...

Puppet

Stop Being Lazy and Test Your Software

Laura Frank Tacho

Exploring Docker in CI/CD

Henry Huang

Continuous Integration (CI) is one of the most important tenets of agile practices. And Continuous Delivery (CD) is impossible without continuous integration. All practices are good and enhance productivity when other good practices and tools back them. For example CI & CD without proper automation test cases can be a killer. It kills the team productivity and puts deliver on risk. Via this session I will try to share my experiences of how CI and CD can be done in optimized fashion (specifically for feature branch based development approach) We will discuss the best practices and ways of ensuring proper CI and CD in feature branch based development approach. I will showcase an automated Jenkins based setup, which is geared to ensure that all feature branches and master remain in cohesive harmony. At the end we will conclude on what are the essential components for ensuring successful CI and CD. We will also discuss what are the associated must haves to make it a success. Take away for participants 1. Understanding of CI and CD and how CI can lead to CD. 2. How a devops engineer can leverage Jenkins and scripting to automate the CI and CD for feature branch based development. 3. Demo of CI setup devloped on Jenkins. 4. Generic understanding and Q&A related to CI and CD. 5. Learning of how docker can be used in such scenarios. Session at the IndicThreads.com Confence held in Pune India on 27-28 Feb 2015 http://www.indicthreads.com http://pune15.indicthreads.com

Continuous Integration (CI) and Continuous Delivery (CD) using Jenkins & Docker

IndicThreads

Java Day Kharkiv - Next-gen engineering with Docker and Kubernetes

Antons Kranga

Docker and DevOps --- new IT culture

Terry Chen

Developer South Coast 2018: Docker on Windows - The Beginner's Guide

Elton Stoneman

Kubernetes in Google Cloud

Abilash Rajasekaran

Developer South Coast 2018: Modernizing .NET Apps with Docker

Elton Stoneman

Jenkins & IaC

HungWei Chiu

OpenStack Preso: DevOps on Hybrid Infrastructure

rhirschfeld

Docker is awesome and there's been a lot of excitement over .NET Core running in Linux containers. But why do older apps have to miss out on the fun? With Windows Server 2016 and Windows Server containers, there's finally a way to dockerize .NET 4.6 apps using the same Docker tools and commands as we're used to on Linux. In this intermediate level talk, I'll give an overview of Docker and Windows Server containers. Then I'll demonstrate different ways to run existing ASP.NET Web API, MVC, and even WebForms applications inside Docker containers.

Docker All The Things - ASP.NET 4.x and Windows Server Containers

Anthony Chu

7 Habits of Highly Effective Jenkins Users

Jules Pierre-Louis

A talk given at Open Container Day at O'Reilly's OSCON convention in Austin, Texas on May 9th, 2017. This talk describes an open source project, bucketbench, which can be used to compare performance, stability, and throughput of various container engines. Bucketbench currently supports docker, containerd, and runc, but can be extended to support any container runtime. This work was done in response to performance investigations by the Apache OpenWhisk team in using containers as the execution vehicle for functions in their "Functions-as-a-Service" runtime. Find out more about bucketbench here: https://github.com/estesp/bucketbench

Quantifying Container Runtime Performance: OSCON 2017 Open Container Day

Phil Estes

We know how complicated it is to have a stable grid, and how hard it is to maintain over time with enough capabilities to cover most browsers and platforms. Internally, we found that ~75% of our tests were executed in Firefox/Chrome, and the remaining were executed in Safari/IE. We decided to develop a tool where docker-selenium nodes are created, used and disposed on demand. For Safari/IE, we just forward the tests to Sauce Labs/BrowserStack. Zalenium is an OSS extension to scale up and down your local grid dynamically with Docker containers. It uses Docker-Selenium to run tests in Firefox/Chrome, and when a different browser is needed, tests get redirected to a cloud testing service. Result: our tests suites run faster since most of the tests run on local Firefox/Chrome nodes, and we use in a smarter way the cloud testing service we pay for. Diego Molina – Software Engineer in Test, Zalando SE Leo Gallucci – Software Engineer, Tools and Infrastructure, Zalando SE

Zalenium - SeleniumConf Austin 2017

Selenium Conference Austin 2017

Porting Docker for Windows is no small feat. The technology behind Docker today takes advantage of Linux capabilities like namespaces and cgroups. For native containers to exist on Windows and to have a Docker Engine for Windows, first similar primitives needed to be developed into the Windows operating system. In this session we will explain these Windows primitives in relation to similar primitives in Linux and other architectural changes on the OS and Engine side to make containerization possible. The process of porting includes not only the technology but also open source community interactions and cultural changes to enable this development. And of course there will be a cool demo…

Windows Server Containers- How we hot here and architecture deep dive

Docker, Inc.

Making kubernetes simple for developers

Suraj Deshmukh

Mais procurados (20)

CI/CD with Docker on AWS

Docker and Windows: The State of the Union

DockerCon EU 2015: Stop Being Lazy and Test Your Software!

PuppetConf 2016: Scaling Puppet on AWS ECS with Terraform and Docker – Maxime...

Stop Being Lazy and Test Your Software

Exploring Docker in CI/CD

Continuous Integration (CI) and Continuous Delivery (CD) using Jenkins & Docker

Java Day Kharkiv - Next-gen engineering with Docker and Kubernetes

Docker and DevOps --- new IT culture

Developer South Coast 2018: Docker on Windows - The Beginner's Guide

Kubernetes in Google Cloud

Developer South Coast 2018: Modernizing .NET Apps with Docker

Jenkins & IaC

OpenStack Preso: DevOps on Hybrid Infrastructure

Docker All The Things - ASP.NET 4.x and Windows Server Containers

7 Habits of Highly Effective Jenkins Users

Quantifying Container Runtime Performance: OSCON 2017 Open Container Day

Zalenium - SeleniumConf Austin 2017

Windows Server Containers- How we hot here and architecture deep dive

Making kubernetes simple for developers

Destaque

Pipedrive API Integration

Data2CRM.API

pipedrivepresentation

Danyelle Perry

Data science for everyone

André Karpištšenko

Social sales influencemktg_samfiorella_april2014

Sam Fiorella

Machine learning in action at Pipedrive

André Karpištšenko

Pipedrive - NOAH15 London

NOAH Advisors

Vibe for PipeDrive

Jofin Joseph

CRM Support Desk Presentation

Prasanna Yogesh

Pipedrive - NOAH16 Berlin

NOAH Advisors

How Pipedrive helped capytech

GetApp

Pipedrive DW on AWS

Pipedrive

Fundraising Workshop

Shai Goldman

11 sales tools to improve your business

Amure Pinho

Authored by John Hamilton, this presentation focuses on how to move through the sales pipeline. Issues covered include where to source sales lead, how to engage your audience, and how to manage your pipeline. John Hamilton is an accomplished executive with over 25+ years experience managing early stage startups to acquisitions and IPOs. John has vast sales and marketing expertise that has spanned several well known Boston based companies from Stratus Computer, EMC, FTP Software, Concord Communications, Phase Forward, Softricity (sold to Microsoft for $265M), XKoto and Viewfinity. His ability to scale companies has yielded significant returns for shareholders across the board.

Sales Pipeline & Process Management

Venture Development Center, UMass Boston

The Good, Bad and Ugly of Serverless

Pipedrive

SELL FIRST, BUILD AFTER. A great way to test if you have a product-market fit is to start selling before building. That is the sales equivalent to "Fake it until you make it". The startups that succeed in doing so usually excel at selling and scaling aggressively. In this workshop, Clement Cousin, Head of Sales @TheFamily will share some of his experience on how to activate your first sales with effective cold emailing campaigns.

How to boost your sales with cold emailing

TheFamily

Teaching Students with Emojis, Emoticons, & Textspeak

Shelly Sanchez Terrell

We asked LinkedIn members worldwide about their levels of interest in the latest wave of technology: whether they’re using wearables, and whether they intend to buy self-driving cars and VR headsets as they become available. We asked them too about their attitudes to technology and to the growing role of Artificial Intelligence (AI) in the devices that they use. The answers were fascinating – and in many cases, surprising. This SlideShare explores the full results of this study, including detailed market-by-market breakdowns of intention levels for each technology – and how attitudes change with age, location and seniority level. If you’re marketing a tech brand – or planning to use VR and wearables to reach a professional audience – then these are insights you won’t want to miss.

Study: The Future of VR, AR and Self-Driving Cars

The technologies and people we are designing experiences for are constantly changing, in most cases they are changing at a rate that is difficult keep up with. When we think about how our teams are structured and the design processes we use in light of this challenge, a new design problem (or problem space) emerges, one that requires us to focus inward. How do we structure our teams and processes to be resilient? What would happen if we looked at our teams and design process as IA’s, Designers, Researchers? What strategies would we put in place to help them be successful? This talk will look at challenges we face leading, supporting, or simply being a part of design teams creating experiences for user groups with changing technological needs.

Designing Teams for Emerging Challenges

Aaron Irizarry

Destaque (19)

Pipedrive API Integration

pipedrivepresentation

Data science for everyone

Social sales influencemktg_samfiorella_april2014

Machine learning in action at Pipedrive

Pipedrive - NOAH15 London

Vibe for PipeDrive

CRM Support Desk Presentation

Pipedrive - NOAH16 Berlin

How Pipedrive helped capytech

Pipedrive DW on AWS

Fundraising Workshop

11 sales tools to improve your business

Sales Pipeline & Process Management

The Good, Bad and Ugly of Serverless

How to boost your sales with cold emailing

Teaching Students with Emojis, Emoticons, & Textspeak

Study: The Future of VR, AR and Self-Driving Cars

Designing Teams for Emerging Challenges

Semelhante a How application performance requirements impacted the (r)evolution of the Docker infrastructure at Pipedrive.

CA Application Performance Management (CA APM) now has the ability to monitor Node.js applications. See how to use the new CA APM Node.js agent to capture performance metrics on your Node.js applications and what these tell you about the performance of your Node.js applications as monitored with CA APM. In this hands-on lab, you will learn how to install the Node.js agent, view metrics and transaction traces in a Node app and see your Node.js application in the context of your larger enterprise application in CA APM Team Center. For more information, please visit http://cainc.to/Nv2VOe

Hands-On Lab: Managing and Monitoring Node.js Made Easy with CA Application P...

CA Technologies

GE Predix 新手入门赵锴物联网_IoT

Kai Zhao

CA Performance Management is a big data collection, warehousing and analytics solution that helps communications service providers and enterprises maximize return on their network infrastructure investments and lower the cost of network operations. In this presentation, you'll learn about some of CA Performance Management's foundational features (e.g. predefined dashboards and reports, creating and deploying discovery and monitoring profiles and eventing) and advanced features (e.g, automating custom groups creation and device population). See for yourself how this modern tool, a generation beyond CA eHealth and CA NetVoyant, can help you handle your network as it grows in size, complexity and payload. For more information on DevOps solutions from CA Technologies, please visit: http://bit.ly/1wbjjqX

Hands-On Lab: Improve large network visibility and operational efficiency wit...

CA Technologies

Camel on Cloud by Christina Lin

Tadayoshi Sato

JohnConnollyResumePerformance2017

John Connolly

EMC with Mirantis Openstack

EMC

VMworld 2013: Practicing What We Preach: VMware IT on vCenter Operations Mana...

VMworld

Intuit_payment_system_Craft_Demo_slide.pdf

Haeyoon Jo

OpenShift/Kubernetes to Splunk log integration

Michiel Kalkman

8 - OpenShift - A look at a container platform: what's in the box

Kangaroot

Rajeshkanna_Resume

Rajeshkanna Venugopal

Webinar Oracle adf12c EN

atSistemas

This presentation was prepared for a Webcast where John Yerhot, Engine Yard US Support Lead, and Chris Kelly, Technical Evangelist at New Relic discussed how you can scale and improve the performance of your Ruby web apps. They shared detailed guidance on issues like: Caching strategies Slow database queries Background processing Profiling Ruby applications Picking the right Ruby web server Sharding data Attendees will learn how to: Gain visibility on site performance Improve scalability and uptime Find and fix key bottlenecks See the on-demand replay: http://pages.engineyard.com/6TipsforImprovingRubyApplicationPerformance.html

6 tips for improving ruby performance

Engine Yard

VMworld 2013: Moving Enterprise Application Dev/Test to VMware’s Internal Pri...

VMworld

VMworld 2013: Moving Enterprise Application Dev/Test to VMware’s Internal Pri...

VMworld

Containerised Testing at Demonware : PyCon Ireland 2016

Thomas Shaw

EMC Documentum - xCP 2.x Troubleshooting

Haytham Ghandour

The new CA Application Performance Management (CA APM) plug-in for Jenkins helps organizations leverage CA APM in the pre-production environment by integrating with Jenkins, a popular continuous integration tools. With this plug-in, the critical pre-production test data can now be seamlessly brought into Jenkins and presented in a unified cross-build or per-build dashboard. It enables the app developers to configure build pass or fail conditions automating the decision making process without any manual intervention. For more information, please visit http://cainc.to/Nv2VOe

Technology Primer: Closing the DevOps Loop by Integrating CA Application Perf...

CA Technologies

Transform Software Testing and Quality with the Neotys-Inflectra Platform

Inflectra

VMworld 2013: vCloud Powered HPC is Better and Outperforming Physical

VMworld

Semelhante a How application performance requirements impacted the (r)evolution of the Docker infrastructure at Pipedrive. (20)

Hands-On Lab: Managing and Monitoring Node.js Made Easy with CA Application P...

GE Predix 新手入门赵锴物联网_IoT

Hands-On Lab: Improve large network visibility and operational efficiency wit...

Camel on Cloud by Christina Lin

JohnConnollyResumePerformance2017

EMC with Mirantis Openstack

VMworld 2013: Practicing What We Preach: VMware IT on vCenter Operations Mana...

Intuit_payment_system_Craft_Demo_slide.pdf

OpenShift/Kubernetes to Splunk log integration

8 - OpenShift - A look at a container platform: what's in the box

Rajeshkanna_Resume

Webinar Oracle adf12c EN

6 tips for improving ruby performance

VMworld 2013: Moving Enterprise Application Dev/Test to VMware’s Internal Pri...

Containerised Testing at Demonware : PyCon Ireland 2016

EMC Documentum - xCP 2.x Troubleshooting

Technology Primer: Closing the DevOps Loop by Integrating CA Application Perf...

Transform Software Testing and Quality with the Neotys-Inflectra Platform

VMworld 2013: vCloud Powered HPC is Better and Outperforming Physical

Último

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Neo4j

GenCyber Cyber Security Day Presentation

Michael W. Hawkins

A Domino Admins Adventures (Engage 2024)

Gabriella Davis

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

Data Cloud, More than a CDP by Matt Robison

Anna Loughnan Colquhoun

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Rafal Los

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

[2024]Digital Global Overview Report 2024 Meltwater.pdf

hans926745

presentation ICT roal in 21st century education

jfdjdjcjdnsjd

Tech Trends Report 2024 Future Today Institute.pdf

hans926745

AWS Community Day CPH - Three problems of Terraform

Andrey Devyatkin

🐬 The future of MySQL is Postgres 🐘

RTylerCroy

Finology Group – Insurtech Innovation Award 2024

The Digital Insurer

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Safe Software

In this session, we will delve into strategic approaches for optimizing knowledge management within Microsoft 365, amidst the evolving landscape of Copilot. From leveraging automatic metadata classification and permission governance with SharePoint Premium, to unlocking Viva Engage for the cultivation of knowledge and communities, you will gain actionable insights to bolster your organization's knowledge-sharing initiatives. In this session, we will also explore how to facilitate solutions to enable your employees to find answers and expertise within Microsoft 365. You will leave equipped with practical techniques and a deeper understanding of how there is more to effective knowledge management than just enabling Copilot, but building actual solutions to prepare the knowledge that Copilot and your employees can use.

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

Drew Madelung

Enterprise Knowledge’s Urmi Majumder, Principal Data Architecture Consultant, and Fernando Aguilar Islas, Senior Data Science Consultant, presented "Driving Behavioral Change for Information Management through Data-Driven Green Strategy" on March 27, 2024 at Enterprise Data World (EDW) in Orlando, Florida. In this presentation, Urmi and Fernando discussed a case study describing how the information management division in a large supply chain organization drove user behavior change through awareness of the carbon footprint of their duplicated and near-duplicated content, identified via advanced data analytics. Check out their presentation to gain valuable perspectives on utilizing data-driven strategies to influence positive behavioral shifts and support sustainability initiatives within your organization. In this session, participants gained answers to the following questions: - What is a Green Information Management (IM) Strategy, and why should you have one? - How can Artificial Intelligence (AI) and Machine Learning (ML) support your Green IM Strategy through content deduplication? - How can an organization use insights into their data to influence employee behavior for IM? - How can you reap additional benefits from content reduction that go beyond Green IM?

Driving Behavioral Change for Information Management through Data-Driven Gree...

Enterprise Knowledge

How application performance requirements impacted the (r)evolution of the Docker infrastructure at Pipedrive.

1. Docker Tallinn @Pipedrive Renno Reinurm 2016

2. How application performance requirements impacted the (r)evolution of the Docker infrastructure at Pipedrive.

3. Visibility Management Interface http://www.slideshare.net/rreinurm/living-with-mi croservices-at-pipedrive

4. Requirement 1 You shall not build/test/deploy Docker container over 5 minutes Based on: xkcd.com

5. Optimized Dockerfiles First iteration, 14 layers: FROM node ENV SERVICE_NAME=company-statistics ENV SERVICE_DESC="Company statistics" ENV SERVICE_TAGS=statistics ENV NODE_ENV=live ENV SERVICE_CHECK_HTTP=/health ENV SERVICE_CHECK_INTERVAL=10s ENV SERVICE_CHECK_TIMEOUT=5s ENV DOCKER=1 EXPOSE 8000 WORKDIR /src USER nobody COPY . /src/ CMD ["node", "."] Optimized, 8 layers and ordered: FROM node:6-slim ENV SERVICE_NAME=company-statistics SERVICE_DESC="Company statistics" SERVICE_TAGS=statistics NODE_ENV=live SERVICE_CHECK_HTTP=/v1/companyStatistics/health SERVICE_CHECK_INTERVAL=10s SERVICE_CHECK_TIMEOUT=5s DOCKER=1 EXPOSE 8000 WORKDIR /src USER nobody CMD ["node", "."] COPY libraries/ /src/ COPY src/ /src/

6. https://youtu.be/X_q2l8hotAc?t=365

7. Deployment process optimizations NB! https://docs.docker.com/engine/userguide/storagedriver/selectadriver/ Replacement of Devicemapper to AUFS reduced deployment process time 10x. There are still improvements possible: ● Handle Linux signals ● Parallel rolling updates

8. Requirement 2 Consumers shall connect only to healthy services

9. Beware the service discovery corruption ● Always enable health checks ● Use unique health checks SERVICE_CHECK_HTTP=/health vs SERVICE_CHECK_HTTP=/v1/companyStatistics/health

10. Requirement 3 Container shall handle 10 000 connections and constant high load.

11. https://youtu.be/PivpCKEiQOQ

12.

13. Issues ● Linux kernel 3.13 ● Fluentd logging agent ● Graylog logging driver ● Kernel sysctl parameters ● Swap usage ● PEBKAC ○ "net.ipv4.ip_forward" => 0 ● WARNING: No memory limit support ● WARNING: No swap limit support ● WARNING: No kernel memory limit support ● WARNING: No oom kill disable support ● WARNING: No cpu cfs quota support ● WARNING: No cpu cfs period support

14. Docker hosts tuning ● Linux kernel 4.x ● Removed Swap ● Dropped fluentd driver ● Docker Engine upgrade/patches ● Kernel performance tuning http://www.devconf.cz/files/slides2015/friday/Performance%20Tuning%20of%2 0Docker%20and%20RHEL%20Atomic.pdf

15. Service risk mitigation ● Number of nodes in cluster ○ If in doubt increase the number ● Spreading policies ● Multiple instances ● Memory limitations ● Healing policies ○ Autorestart ○ Reschedule

16. Security mitigation ● TLS authentication ● Minimal & official Docker images ● Signed Docker images ● User Namespace Remapping ● PID limits ● Capabilities ● Seccomp profiles ● AppArmor/SELinux profiles https://github.com/riyazdf/dockercon-workshop

17. Recommendations for going Live with Docker ● You still need to take care of OS ● Read Github issues ● Read from the source ● Keep it up to date ● (Performance) Test it

18. Thank you! Give me your feedback @rreinurm

How application performance requirements impacted the (r)evolution of the Docker infrastructure at Pipedrive.

Recomendados

Recomendados

Mais conteúdo relacionado

Mais procurados

Mais procurados (20)

Destaque

Destaque (19)

Semelhante a How application performance requirements impacted the (r)evolution of the Docker infrastructure at Pipedrive.

Semelhante a How application performance requirements impacted the (r)evolution of the Docker infrastructure at Pipedrive. (20)

Último

Último (20)

How application performance requirements impacted the (r)evolution of the Docker infrastructure at Pipedrive.