IPVS for Scaled Private Cloud Load Balancing [I] - Kimberly Messimer, Comcast VIPER
IPVS for Scaled Private Cloud Load Balancing [I] - Kimberly Messimer, Comcast VIPER
In this talk, we discuss how Comcast VIPER addresses network-scaling bottlenecks using IPVS as a load balancer. We discuss the benefits including enabling us to achieve over 500Gbit/s egress from a modest Kubernetes cluster as well as dynamic VIP allocation.
Using a tool we’ve written in-house called Kube2IPVS, which utilize Kubernetes config maps, we can assign an ingress IP address and port to a Kubernetes service, and our load balancer will automatically reconfigure, with no downtime, to load balance traffic into a service.
We go into technical detail in this presentation, starting with a brief overview of IPVS and why it’s useful. We will then descend into the requirements surrounding L2 adjacency and why ARP is your frenemy. We’ll discuss how we addressed the challenges of running IPVS internal to Kubernetes, including IPVS master and backend co-location.
Finally, we'll highlight how port forwarding is not possible using IPVS in direct-reply mode, and then discuss how Kube2IPVS manages iptables rules to route packets directly into Kubernetes service chains, effectively bypassing this restriction.
We expect to have Kube2IPVS open-sourced in 2017.
About Kimberly Messimer
Platform Engineer, Comcast VIPER
Join us for KubeCon + CloudNativeCon in Barcelona May 20 - 23, Shanghai June 24 - 26, and San Diego November 18 - 21! Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy and all of the other CNCF-hosted projects.
Видео IPVS for Scaled Private Cloud Load Balancing [I] - Kimberly Messimer, Comcast VIPER канала CNCF [Cloud Native Computing Foundation]
In this talk, we discuss how Comcast VIPER addresses network-scaling bottlenecks using IPVS as a load balancer. We discuss the benefits including enabling us to achieve over 500Gbit/s egress from a modest Kubernetes cluster as well as dynamic VIP allocation.
Using a tool we’ve written in-house called Kube2IPVS, which utilize Kubernetes config maps, we can assign an ingress IP address and port to a Kubernetes service, and our load balancer will automatically reconfigure, with no downtime, to load balance traffic into a service.
We go into technical detail in this presentation, starting with a brief overview of IPVS and why it’s useful. We will then descend into the requirements surrounding L2 adjacency and why ARP is your frenemy. We’ll discuss how we addressed the challenges of running IPVS internal to Kubernetes, including IPVS master and backend co-location.
Finally, we'll highlight how port forwarding is not possible using IPVS in direct-reply mode, and then discuss how Kube2IPVS manages iptables rules to route packets directly into Kubernetes service chains, effectively bypassing this restriction.
We expect to have Kube2IPVS open-sourced in 2017.
About Kimberly Messimer
Platform Engineer, Comcast VIPER
Join us for KubeCon + CloudNativeCon in Barcelona May 20 - 23, Shanghai June 24 - 26, and San Diego November 18 - 21! Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy and all of the other CNCF-hosted projects.
Видео IPVS for Scaled Private Cloud Load Balancing [I] - Kimberly Messimer, Comcast VIPER канала CNCF [Cloud Native Computing Foundation]
Показать
Комментарии отсутствуют
Информация о видео
11 апреля 2017 г. 6:32:17
00:28:25
Другие видео канала
Kernel load-balancing for Docker containers using IPVSNetworking with KubernetesLISA19 - Deep Dive into Kubernetes Internals for Builders and OperatorsHacking and Hardening Kubernetes Clusters by Example [I] - Brad Geesaman, SymantecKubernetes Ingress networkingAWS re:Invent 2020: Introducing Gateway Load Balancer for deploying & running virtual appliancesHow Netflix Is Solving Authorization Across Their Cloud [I] - Manish Mehta & Torin Sandall, NetflixReplacing NGINX with Envoy in a Traffic Control System - Mark McBride, Turbine Labs, IncDeep Dive: etcd - Xiang Li, Alibaba & Wenjia Zhang, GooglePost Hype Microservices with Bryan CantrillIstio & Service Mesh - simply explained in 15 minsWhen Unix Landed - ComputerphileAWS re:Invent 2019: Get the most from Elastic Load Balancing for different workloads (NET407-R2)Writing a Custom Controller: Extending the Functionality of Your Cluster [I] - Aaron LevyTutorial: Communication Is Key - Understanding Kubernetes Networking - Jeff Poole, Vivint Smart HomeUnderstanding Linux Network InterfacesKubernetes Networking: How to Write a CNI Plugin From Scratch - Eran Yanay, TwistlockKubernetes is dropping Docker support - What does it mean for YOU?Load Balancing with Kubernetes: concepts, use cases, and implementation detailsEffective RBAC - Jordan Liggitt, Red Hat