DoKC, profile picture
Uploaded byDoKC
35 views

Kubernetes Cluster Upgrade Strategies and Data: Best Practices for your Stateful Workload

Link: https://youtu.be/qUW8LkxYayc https://go.dok.community/slack https://dok.community/ ABSTRACT OF THE TALK How do you make sure your Stateful Workloads remain available when your Kubernetes infrastructure updates? This talk will discuss different strategies of upgrading a Kubernetes cluster, and how you can manage risk for your workload. The talk will showcase demos of each upgrade strategy. BIO Peter is a Senior Software Engineer on GKE at Google. He works on improving Kubernetes for Stateful workloads. His main focus is on enhancing the Kubernetes ecosystem for high availability applications. KEY TAKE-AWAYS FROM THE TALK The mechanics of different upgrade strategies, when to apply a particular upgrade strategy depending on your Stateful workload and how to mitigate risk to your application’s availability.

Download to read offline
Peter Schuurman (@pwschuurman) Software Engineer / Google 2022-08-12 K8s Cluster Upgrade Strategies Best Practices for your Stateful Workload
Agenda ● Why Upgrade? ● Stateful Workloads and Upgrades ● Nodepool Upgrade Strategies ● Control Plane Upgrade Strategies ● Upgrade Strategy and Workload Selection
Why Upgrade: Kubernetes Version Lifecycle source
Version Skew Kubernetes Version Skew Policy maintains support for 2 node minor versions New Features New features are introduced in upcoming Kubernetes versions. Eg: StatefulSet MaxUnavailable was introduced in 1.24. Security Compliance Organizations following compliance protocols (PCI, HIPAA, FedRamp) are required to apply security patches within 30 days of availability Patch Support Kubernetes minor versions are maintained for 1 year Why Upgrade: Modern and Protected
MariaDB has modernized their architecture by bringing SkySQL to the cloud on Kubernetes. Built using the Kubernetes operator pattern, MariaDB leverages resiliency and maintains high availability during upgrades. We have been using containers for many years … Our goal was to simplify the implementation and focus less on lower-level infrastructure, dependencies and instance life-cycle. With Kubernetes, our engineers could leverage the strong momentum from the open source community to drive infrastructure logic and security. (Reference) Why Upgrade: Modern Applications
Why Upgrade: Upgrade Dimensions Application Developer Kubernetes Administrator Cloud Platform
Why Upgrade: Upgrade Dimensions Application Developer Kubernetes Administrator Cloud Platform
Why Upgrade: Upgrade Dimensions Application Compatibility Nodes Control Plane Ensuring your application is compatible with an upgraded Kubernetes version Kubernetes (node or control plane) Upgrading the operating system, dependant libraries and kubernetes software of your cluster’s data plane Upgrading the operating system and kubernetes software of your cluster’s orchestration layer
Why Upgrade: Key Concerns Application Availability Cost Speed
Nodes: Surge Upgrades ● Application Availability: Suitable for fault-tolerant workloads. Control availability by specifying node maxUnavailable ● Cost: Cost effective ● Speed: Increase upgrade velocity with parallel node surge
Nodes: Blue/Green Upgrades ● Application Availability: Granular control during migration ● Cost: Increased cost with resource pre-provisioning ● Speed: Slow and controlled
Node Upgrade Takeaways Surge Upgrades Blue/Green Upgrades Application Availability Rollback scenarios make take more time High degree of application availability Cost Lower cost, upgraded node creation occurs just in time Higher cost, upgraded nodes are pre-provisioned Speed Nodes can be upgraded in batches for increased speed Higher control over node migration reduces speed
Control Plane: Upgrades ● Kubernetes maintains API versions with each minor release ● API schema may change with new minor versions
Control Plane: Surge Upgrade ● Application Availability: HA control plane setups limit disruptions. Kubernetes minor rollback is not supported ● Cost: Cost effective ● Speed: Fast
Control Plane: Blue/Green Upgrade ● Application Availability: Granular control over application upgrade. Safe minor version rollback ● Cost: Increased cost over in-place upgrades with cluster pre-provisioning ● Speed: Slow and controlled
Control Plane: Blue/Green Upgrade ● KEP-3335: Introduces building blocks to the StatefulSet API to enable StatefulSet replicas to be moved across clusters. ● With Kubernetes Multi-Cluster Services (KEP-1645), applications can maintain connectivity ● Demo
Control Plane Upgrade Takeaways Surge Upgrades Blue/Green Upgrades Application Availability Rollback is not possible Applications can be rolled back to a cluster with a known compatible Control Plane Cost Lower cost, upgraded control plane creation occurs just in time Higher cost, cluster pre-provisioned Speed Control Plane upgrade is fast and scales sub-linearly as cluster size increases Upgrade speed scales with application migration speed
Takeaways ● Trade-off between business requirements: application availability, speed and cost ● Modern applications update consistently and often ● Kubernetes has the tools to support safe stateful upgrades today, and the community is building new tools to increase this margin of safety

More Related Content

PDF
Distributed Vector Databases - What, Why, and How
byDoKC
 
PDF
Is It Safe? Security Hardening for Databases Using Kubernetes Operators
byDoKC
 
PDF
Stop Worrying and Keep Querying, Using Automated Multi-Region Disaster Recovery
byDoKC
 
PDF
Transforming Data Processing with Kubernetes: Journey Towards a Self-Serve Da...
byDoKC
 
PDF
The State of Stateful on Kubernetes
byDoKC
 
PDF
Colocating Data Workloads and Web Services on Kubernetes to Improve Resource ...
byDoKC
 
PDF
Make Your Kafka Cluster Production-Ready
byDoKC
 
PDF
Dynamic Large Scale Spark on Kubernetes: Empowering the Community with Argo W...
byDoKC
 
Distributed Vector Databases - What, Why, and How
byDoKC
 
Is It Safe? Security Hardening for Databases Using Kubernetes Operators
byDoKC
 
Stop Worrying and Keep Querying, Using Automated Multi-Region Disaster Recovery
byDoKC
 
Transforming Data Processing with Kubernetes: Journey Towards a Self-Serve Da...
byDoKC
 
The State of Stateful on Kubernetes
byDoKC
 
Colocating Data Workloads and Web Services on Kubernetes to Improve Resource ...
byDoKC
 
Make Your Kafka Cluster Production-Ready
byDoKC
 
Dynamic Large Scale Spark on Kubernetes: Empowering the Community with Argo W...
byDoKC
 

More from DoKC

PDF
Run PostgreSQL in Warp Speed Using NVMe/TCP in the Cloud
byDoKC
 
PDF
The Kubernetes Native Database
byDoKC
 
PDF
ING Data Services hosted on ICHP DoK Amsterdam 2023
byDoKC
 
PDF
Implementing data and databases on K8s within the Dutch government
byDoKC
 
PDF
StatefulSets in K8s - DoK Talks #154
byDoKC
 
PDF
Running PostgreSQL in Kubernetes: from day 0 to day 2 with CloudNativePG - Do...
byDoKC
 
PDF
Analytics with Apache Superset and ClickHouse - DoK Talks #151
byDoKC
 
PPTX
Overcoming challenges with protecting and migrating data in multi-cloud K8s e...
byDoKC
 
PDF
Evaluating Cloud Native Storage Vendors - DoK Talks #147
byDoKC
 
PDF
We will Dok You! - The journey to adopt stateful workloads on k8s
byDoKC
 
PPTX
Mastering MongoDB on Kubernetes, the power of operators
byDoKC
 
PDF
Leveraging Running Stateful Workloads on Kubernetes for the Benefit of Develo...
byDoKC
 
PDF
Why run Postgres in Kubernetes?
byDoKC
 
PDF
What's New in Kubernetes Storage
byDoKC
 
PDF
What we've learned from running a PostgreSQL managed service on Kubernetes
byDoKC
 
PDF
Weathering The Cloud Storm: Modern Data Management Patterns for Reliability a...
byDoKC
 
PPTX
Using Kubernetes to deliver a “serverless” service
byDoKC
 
PDF
The many uses of Kubernetes cross cluster migration of persistent data
byDoKC
 
PDF
The Data on Kubernetes Landscape
byDoKC
 
PDF
Testing the Mettle: Evaluating data solutions for large-scale production to c...
byDoKC
 
Run PostgreSQL in Warp Speed Using NVMe/TCP in the Cloud
byDoKC
 
The Kubernetes Native Database
byDoKC
 
ING Data Services hosted on ICHP DoK Amsterdam 2023
byDoKC
 
Implementing data and databases on K8s within the Dutch government
byDoKC
 
StatefulSets in K8s - DoK Talks #154
byDoKC
 
Running PostgreSQL in Kubernetes: from day 0 to day 2 with CloudNativePG - Do...
byDoKC
 
Analytics with Apache Superset and ClickHouse - DoK Talks #151
byDoKC
 
Overcoming challenges with protecting and migrating data in multi-cloud K8s e...
byDoKC
 
Evaluating Cloud Native Storage Vendors - DoK Talks #147
byDoKC
 
We will Dok You! - The journey to adopt stateful workloads on k8s
byDoKC
 
Mastering MongoDB on Kubernetes, the power of operators
byDoKC
 
Leveraging Running Stateful Workloads on Kubernetes for the Benefit of Develo...
byDoKC
 
Why run Postgres in Kubernetes?
byDoKC
 
What's New in Kubernetes Storage
byDoKC
 
What we've learned from running a PostgreSQL managed service on Kubernetes
byDoKC
 
Weathering The Cloud Storm: Modern Data Management Patterns for Reliability a...
byDoKC
 
Using Kubernetes to deliver a “serverless” service
byDoKC
 
The many uses of Kubernetes cross cluster migration of persistent data
byDoKC
 
The Data on Kubernetes Landscape
byDoKC
 
Testing the Mettle: Evaluating data solutions for large-scale production to c...
byDoKC
 

Kubernetes Cluster Upgrade Strategies and Data: Best Practices for your Stateful Workload

  • 1.
    Peter Schuurman (@pwschuurman) SoftwareEngineer / Google 2022-08-12 K8s Cluster Upgrade Strategies Best Practices for your Stateful Workload
  • 2.
    Agenda ● Why Upgrade? ●Stateful Workloads and Upgrades ● Nodepool Upgrade Strategies ● Control Plane Upgrade Strategies ● Upgrade Strategy and Workload Selection
  • 3.
    Why Upgrade: KubernetesVersion Lifecycle source
  • 4.
    Version Skew Kubernetes Version SkewPolicy maintains support for 2 node minor versions New Features New features are introduced in upcoming Kubernetes versions. Eg: StatefulSet MaxUnavailable was introduced in 1.24. Security Compliance Organizations following compliance protocols (PCI, HIPAA, FedRamp) are required to apply security patches within 30 days of availability Patch Support Kubernetes minor versions are maintained for 1 year Why Upgrade: Modern and Protected
  • 5.
    MariaDB has modernizedtheir architecture by bringing SkySQL to the cloud on Kubernetes. Built using the Kubernetes operator pattern, MariaDB leverages resiliency and maintains high availability during upgrades. We have been using containers for many years … Our goal was to simplify the implementation and focus less on lower-level infrastructure, dependencies and instance life-cycle. With Kubernetes, our engineers could leverage the strong momentum from the open source community to drive infrastructure logic and security. (Reference) Why Upgrade: Modern Applications
  • 6.
    Why Upgrade: UpgradeDimensions Application Developer Kubernetes Administrator Cloud Platform
  • 7.
    Why Upgrade: UpgradeDimensions Application Developer Kubernetes Administrator Cloud Platform
  • 8.
    Why Upgrade: UpgradeDimensions Application Compatibility Nodes Control Plane Ensuring your application is compatible with an upgraded Kubernetes version Kubernetes (node or control plane) Upgrading the operating system, dependant libraries and kubernetes software of your cluster’s data plane Upgrading the operating system and kubernetes software of your cluster’s orchestration layer
  • 9.
    Why Upgrade: KeyConcerns Application Availability Cost Speed
  • 10.
    Nodes: Surge Upgrades ●Application Availability: Suitable for fault-tolerant workloads. Control availability by specifying node maxUnavailable ● Cost: Cost effective ● Speed: Increase upgrade velocity with parallel node surge
  • 11.
    Nodes: Blue/Green Upgrades ●Application Availability: Granular control during migration ● Cost: Increased cost with resource pre-provisioning ● Speed: Slow and controlled
  • 12.
    Node Upgrade Takeaways SurgeUpgrades Blue/Green Upgrades Application Availability Rollback scenarios make take more time High degree of application availability Cost Lower cost, upgraded node creation occurs just in time Higher cost, upgraded nodes are pre-provisioned Speed Nodes can be upgraded in batches for increased speed Higher control over node migration reduces speed
  • 13.
    Control Plane: Upgrades ●Kubernetes maintains API versions with each minor release ● API schema may change with new minor versions
  • 14.
    Control Plane: SurgeUpgrade ● Application Availability: HA control plane setups limit disruptions. Kubernetes minor rollback is not supported ● Cost: Cost effective ● Speed: Fast
  • 15.
    Control Plane: Blue/GreenUpgrade ● Application Availability: Granular control over application upgrade. Safe minor version rollback ● Cost: Increased cost over in-place upgrades with cluster pre-provisioning ● Speed: Slow and controlled
  • 16.
    Control Plane: Blue/GreenUpgrade ● KEP-3335: Introduces building blocks to the StatefulSet API to enable StatefulSet replicas to be moved across clusters. ● With Kubernetes Multi-Cluster Services (KEP-1645), applications can maintain connectivity ● Demo
  • 17.
    Control Plane UpgradeTakeaways Surge Upgrades Blue/Green Upgrades Application Availability Rollback is not possible Applications can be rolled back to a cluster with a known compatible Control Plane Cost Lower cost, upgraded control plane creation occurs just in time Higher cost, cluster pre-provisioned Speed Control Plane upgrade is fast and scales sub-linearly as cluster size increases Upgrade speed scales with application migration speed
  • 18.
    Takeaways ● Trade-off betweenbusiness requirements: application availability, speed and cost ● Modern applications update consistently and often ● Kubernetes has the tools to support safe stateful upgrades today, and the community is building new tools to increase this margin of safety