Weaveworks, profile picture
Uploaded byWeaveworks
291 views

SRE and GitOps for Building Robust Kubernetes Platforms.pdf

The document covers a webinar led by Chris Lavery, a Senior Site Reliability Engineer at Weaveworks, discussing GitOps and Site Reliability Engineering (SRE). It highlights the importance of data-driven decisions, service level indicators (SLIs), service level objectives (SLOs), and the role of progressive delivery in managing deployment risks. The presentation emphasizes balancing feature availability with deployment velocity to enhance both operational efficiency and service reliability.

Software
In this document
Powered by AI

Introduction of Chris Lavery, Senior Site Reliability Engineer at Weaveworks. Overview of Weaveworks and GitOps methodology.

Definition and significance of SRE in modern development and operations, the shift towards cloud and digital services.

The importance of observability in modern distributed systems through metrics, logging, and APM.

Definitions and differences between SLIs, SLOs, and SLAs. Discussion on setting realistic uptime goals and error budgets.

Overview of DevOps Research Assessment metrics focusing on lead time, deployment frequency, and stability metrics.Key principles of GitOps: declarative system states, version control in Git, and automated applications of changes.

Importance of managing risk in availability and feature velocity, contrasting traditional systems with SRE principles.

Description of progressive delivery, its implementation strategies (A/B testing, canary), and benefits.

Benefits shown from GitOps & Progressive Delivery: increased deployment frequency, shorter lead times, and recovery.

Advantages and disadvantages of various deployment strategies including Rolling, Canary, Blue/Green, and Feature Flags.

1 Confidential do not distribute 1 Chris Lavery - Senior Site Reliability Engineer SRE and GitOps for Building Robust Kubernetes Platforms
2 2 Webinar Platform - FAQs Using Zoom • You are in listen only mode • This webinar is being recorded • Q&A session will follow the presentation, please use the Q&A panel to submit questions • Hit escape to exit full screen • Please introduce yourself in the chat. Technical Issues - please visit Zoom Help https://support.zoom.us/hc/en-us/articles/206175806-Top-Questions
3 Weaveworks’ is backed by solid investors Weaveworks created the GitOps methodology and tooling to solve our own Kubernetes management, scalability, and reliability requirements Weaveworks is a key partner with all the major infrastructure and Kubernetes vendors Weaveworks: the GitOps company Weaveworks is deeply committed to the Open Source Community
4 Confidential do not distribute 4 Weaveworks Site Reliability Engineer Chris Lavery Belfast, Northern Ireland Chris Lavery is a Senior Site Reliability Engineer at Weaveworks (currently on secondment to Deutsche Telekom) where he champions continuous improvement through DevOps/GitOps practices, collaborating with multiple technical and non-technical stakeholders to achieve organisational goals effectively. Chris has experience around high performance computing and modern data center architectures, familiarity with different use cases and verticals (Telecoms, Fintech, Gaming). Outside of work Chris enjoys cycling, music and a neverending list of DIY tasks. https://www.linkedin.com/in/christopherlavery https://twitter.com/mrchrislavery github.com/fire-ant
5 Introducing Site Reliability Engineering (SRE) A (basic) definition: ▪ Operations focused (Production Infrastructure, On-call work) ▪ Often Embedded within Development teams to facilitate better operational outcomes ▪ Applying Software Engineering Principles to Operational Problems.
6 Introducing Site Reliability Engineering (SRE) Why SRE ? What has changed? ▪ DevOps has progressed the culture of collaboration between development and operations ▪ Cloud computing has standardized/commodified aspects of software businesses ie. infrastructure as a service ▪ Consumers/End Users have transitioned to digital services
7 Data Driven Decisions Data Driven Decisions ▪ Modern Distributed Systems have more moving parts ▪ These systems may be a hybrid of managed cloud resources/services and bespoke custom logic ▪ Modern Application Architectures can also be distributed in nature ▪ Increasing Cardinality (more things per thing) can provide better granularity/visibility but at the cost of complexity
8 Data Driven Decisions Observability: ▪ System/Service Metrics (Infrastructure) ▪ Logging (and Events) ▪ Tracing (and Spans) APM (Application Performance Monitoring)
9 SLIs and SLOs: Dashboard Gauges, Minimum Indicators and Penalty points ▪ SLIs - Service Level Indicator ▪ A measurement derived from one or more underlying metrics to support an SLO ▪ For example: A Yield SLI (fraction of successful requests) can inform an availability SLA based on an SLO of 97.5%
10 SLIs and SLOs: Dashboard Gauges, Minimum Indicators and Penalty points ▪ SLOs - Service Level Objective ▪ The defined threshold that a service should ideally operate above or within as per the terms of an SLA
11 SLIs and SLOs: Dashboard Gauges, Minimum Indicators and Penalty points ▪ SLAs - Service Level Agreements ▪ An agreement contracted with a customer to set expectations and convey minimum levels of service
12 SLIs and SLOs: Dashboard Gauges, Minimum Indicators and Penalty points ▪ Reliable enough, but no more reliable than it needs to be. ▪ Use your error budget wisely. ▪ Use it to take risks. ▪ An error budget is 1 minus the SLO of the service
13 Uptime Traditional Focus is on Uptime ▪ If you were down for 1 second per day, you would exceed the 5 9’s SLA. ▪ This level of uptime is expensive and not often needed. ▪ Set your uptime to a reasonable level and no better Uptime Target Yearly allowed downtime 99% 3d 15h 39m 29s 99.9% 8h 45m 56s 99.99% 52m 35s 99.999% 5m 15s
14 Service Levels Summary Service Level Agreements = Agreement with a Customer to provide a service or penalties are applied. Service Level Objectives = A promise that must be achieved, e.g. uptime, response time Service Level Indicators = The metric that corresponds to meeting an objective, e.g. measured uptime, latency, error rates etc.
15 DORA: DevOps Research and Assessment
16 DORA: DevOps Research and Assessment ▪ Low Lead Time (minutes > hours > days) ▪ High Deployment Frequency (minutes < hours < days)
17 DORA: DevOps Research and Assessment ▪ Low Lead Time (minutes > hours > days) ▪ High Deployment Frequency (minutes < hours < days) ▪ Change failure rate ▪ Time to restore
18 DORA: DevOps Research and Assessment ▪ Lead Time + Deployment Frequency = Throughput ▪ Change failure rate + Time to restore = Stability
19 DORA: DevOps Research and Assessment
20 Confidential do not distribute 20 GitOps SRE
21 Confidential do not distribute 21 The entire system is described declaratively The canonical desired system state is versioned in git Software agents ensure correctness and perform actions on divergence in a closed loop The Principles of GitOps Approved changes can be automatically applied to the system
Weave GitOps Continuous delivery and operations for Kubernetes 22
23 Embrace Risk Traditional systems focus on Availability such as Uptime, but ignores velocity of deploying new features. An SRE balances both availability and velocity of features. So risk is an acceptable part of the system and should not be avoided, but it should be managed.
24 Progressive Delivery: Overview ● Progressive delivery is the practice of limiting the audience for your code changes or new feature releases ● It is done to restrict the exposure area to a minimum in case of any risk instances ● Progressive delivery can be implemented through a number of strategies from A/B testing to canary, Blue/Green, Rolling/Immutable upgrades or Feature flag management ● Make Deployments boring!
25 Progressive Delivery: SRE orientation ● Leverage the data emitted from an instrumented and observable system to reason about whether to proceed or rollback ● Configure the application infrastructure (service meshes, key metrics), SLA (overall downtime or service degradation) and automated operations (rollback/revert strategy) ● Foster higher collaboration and enables higher velocity through early feedback and deeper insight. Transferable approach which can be standardised with components and configurations within an organisation
26 Progressive Delivery: Flagger ● Cloud Native Open source Progressive delivery Operator ● Broad support for all popular Service meshes, Ingresses and K8s Gateway API ● Designed with GitOps Methodologies in mind and a complementary component to FluxCD ● Commercial UI Integration in Weave GitOps ● Adopters include CNCF projects right through to Enterprise users
27 Progressive Delivery: How it works
28 Progressive Delivery: Monitoring
29 Progressive Delivery: Visualisation
30 Progressive Delivery: Visualisation
31 Progressive Delivery: Visualisation
32 Progressive Delivery: Takeaways ● Progressive delivery is the practice of limiting the audience for your code changes or new feature releases ● It is done to restrict the exposure area to a minimum in case of any risk instances ● Progressive delivery can be implemented through a number of strategies from A/B testing to canary, Blue/Green or Feature flag management
33 Progressive Delivery: Business Value ● Deployment Frequency is higher with GitOps & Progressive Delivery ● Lead times are shorter with Progressive Delivery ● Change Failure Rate is lower with Progressive Delivery ● Mean Time to Recovery is shorter with GitOps
34 34 Whitepaper: Progressive Delivery with GitOps https://bit.ly/3K8oZwU Learn about Weave GitOps Assured www.weave.works/product/gitops/ Learn more about Weave GitOps Enterprise www.weave.works/enterprise and a 5 min demo https://youtu.be/aqJaHNCz2lM Request a personal demo www.weave.works/contact More information
35 Confidential do not distribute 3 5 You Thank Join our Community https://slack.weave.works Contact Us sales@weave.works Our products & services www.weave.works
36 Progressive Delivery: Deployment Strategies Strategy Positive Negative Rolling Zero Downtime Longer Deployments Canary Low Risk/Early Feedback Complex Monitoring/Testing Blue/Green Zero Downtime + Fast Rollback Cost (2 active instances) Feature Flags Controlled Release + test in Production Increased complexity in app management Immutable Predictable and Simple process Increase cost, Data persistence

More Related Content

PDF
GitOps Testing in Kubernetes with Flux and Testkube.pdf
byWeaveworks
 
PDF
Google Cloud Platform Solutions for DevOps Engineers
byMárton Kodok
 
PDF
Istio : Service Mesh
byKnoldus Inc.
 
PPTX
Service mesh
byArnab Mitra
 
PDF
CTO Summit 2022
byDr. Jimmy Schwarzkopf
 
PPTX
OpenShift Introduction
byRed Hat Developers
 
PDF
Kubernetes Deployment Tutorial | Kubernetes Tutorial For Beginners | Kubernet...
byEdureka!
 
PPTX
Azure WAF
byCheah Eng Soon
 
GitOps Testing in Kubernetes with Flux and Testkube.pdf
byWeaveworks
 
Google Cloud Platform Solutions for DevOps Engineers
byMárton Kodok
 
Istio : Service Mesh
byKnoldus Inc.
 
Service mesh
byArnab Mitra
 
CTO Summit 2022
byDr. Jimmy Schwarzkopf
 
OpenShift Introduction
byRed Hat Developers
 
Kubernetes Deployment Tutorial | Kubernetes Tutorial For Beginners | Kubernet...
byEdureka!
 
Azure WAF
byCheah Eng Soon
 

What's hot

PDF
Efficient platform engineering with Microk8s & gopaddle.pdf
byVinothini Raju
 
PDF
Securing Your App Deployments with Tunnels, OIDC, RBAC, and Progressive Deliv...
byWeaveworks
 
PDF
ArgoCD Meetup PPT final.pdf
byamanmakwana3
 
PPTX
ISTIO Deep Dive
byYong Feng
 
PPTX
GitOps w/argocd
byJean-Philippe Bélanger
 
PDF
Kubernetes Networking | Kubernetes Services, Pods & Ingress Networks | Kubern...
byEdureka!
 
PPTX
Azure kubernetes service
byVishwas N
 
PDF
Service Mesh on Kubernetes with Istio
byMichelle Holley
 
PPSX
Service Mesh - Observability
byAraf Karsh Hamid
 
PDF
CI:CD in Lightspeed with kubernetes and argo cd
byBilly Yuen
 
PPTX
Introduction to kubernetes
byRishabh Indoria
 
PPTX
Istio a service mesh
byChandresh Pancholi
 
PPTX
Introduction to Microsoft Azure 101
byR M Shahidul Islam Shahed
 
PDF
OpenStack Architecture
byMirantis
 
PPTX
AWS Cloud Security
byAWS Riyadh User Group
 
PDF
AWS ECS vs EKS
byNorberto Enomoto
 
PPT
Presentacion Palo Alto Networks
byLaurent Daudré-Vignier
 
PDF
Istio service mesh introduction
byKyohei Mizumoto
 
PPTX
Cloud security and security architecture
byVladimir Jirasek
 
PPTX
Metasploit seminar
byhenelpj
 
Efficient platform engineering with Microk8s & gopaddle.pdf
byVinothini Raju
 
Securing Your App Deployments with Tunnels, OIDC, RBAC, and Progressive Deliv...
byWeaveworks
 
ArgoCD Meetup PPT final.pdf
byamanmakwana3
 
ISTIO Deep Dive
byYong Feng
 
GitOps w/argocd
byJean-Philippe Bélanger
 
Kubernetes Networking | Kubernetes Services, Pods & Ingress Networks | Kubern...
byEdureka!
 
Azure kubernetes service
byVishwas N
 
Service Mesh on Kubernetes with Istio
byMichelle Holley
 
Service Mesh - Observability
byAraf Karsh Hamid
 
CI:CD in Lightspeed with kubernetes and argo cd
byBilly Yuen
 
Introduction to kubernetes
byRishabh Indoria
 
Istio a service mesh
byChandresh Pancholi
 
Introduction to Microsoft Azure 101
byR M Shahidul Islam Shahed
 
OpenStack Architecture
byMirantis
 
AWS Cloud Security
byAWS Riyadh User Group
 
AWS ECS vs EKS
byNorberto Enomoto
 
Presentacion Palo Alto Networks
byLaurent Daudré-Vignier
 
Istio service mesh introduction
byKyohei Mizumoto
 
Cloud security and security architecture
byVladimir Jirasek
 
Metasploit seminar
byhenelpj
 

Similar to SRE and GitOps for Building Robust Kubernetes Platforms.pdf

PDF
Cloud Native Engineering with SRE and GitOps
byWeaveworks
 
PDF
Shift Deployment Security Left with Weave GitOps & Upbound’s Universal Crossp...
byWeaveworks
 
PDF
SRE & Kubernetes
byAfkham Azeez
 
PPTX
SRE (service reliability engineer) on big DevOps platform running on the clou...
byDevClub_lv
 
PDF
Site-Reliability-Engineering-v2[6241].pdf
byDeepakGupta747774
 
PPTX
A Blueprint for a Successful DevOps Metamorphosis
byXebiaLabs
 
PDF
Free GitOps Workshop
byWeaveworks
 
PDF
Free GitOps Workshop (with Intro to Kubernetes & GitOps)
byWeaveworks
 
PPTX
DevOps & Site Reliability Engineering (SRE).pptx
byabiguimeleroy
 
PPTX
GitOps in a nutshell (Montreal CNCF meetup May 2024)
byLucien Boix
 
PDF
Site Reliability Engineering slide deck 101
byManikumarKothapalli1
 
PDF
GitOps Cookbook (Third Early Release) Natale Vinto
byheeressiepel
 
PDF
What is DevOps? And Why Use DevOps? What?
byjvntecnologia
 
PDF
PDF GitOps Cookbook (Third Early Release) Natale Vinto download
byxamysakuchuk
 
PDF
Sre With Java Microservices Patterns For Reliable Microservices In The Enterp...
bysharatacosra
 
PDF
GitOps, Driving NGN Operations Teams 211127 #kcdgt 2021
byWilliam Caban
 
PPTX
Cloud Native Apps with GitOps
byWeaveworks
 
PPTX
ADDO_2022_SRE Architectural Patterns_Nov10.pptx
byShikhaSrivastava820471
 
PPTX
Facilitating DevOps Execution in an All Digital Environment
byKurt Andersen
 
PDF
How to get started with Site Reliability Engineering
byAndrew Kirkpatrick
 
Cloud Native Engineering with SRE and GitOps
byWeaveworks
 
Shift Deployment Security Left with Weave GitOps & Upbound’s Universal Crossp...
byWeaveworks
 
SRE & Kubernetes
byAfkham Azeez
 
SRE (service reliability engineer) on big DevOps platform running on the clou...
byDevClub_lv
 
Site-Reliability-Engineering-v2[6241].pdf
byDeepakGupta747774
 
A Blueprint for a Successful DevOps Metamorphosis
byXebiaLabs
 
Free GitOps Workshop
byWeaveworks
 
Free GitOps Workshop (with Intro to Kubernetes & GitOps)
byWeaveworks
 
DevOps & Site Reliability Engineering (SRE).pptx
byabiguimeleroy
 
GitOps in a nutshell (Montreal CNCF meetup May 2024)
byLucien Boix
 
Site Reliability Engineering slide deck 101
byManikumarKothapalli1
 
GitOps Cookbook (Third Early Release) Natale Vinto
byheeressiepel
 
What is DevOps? And Why Use DevOps? What?
byjvntecnologia
 
PDF GitOps Cookbook (Third Early Release) Natale Vinto download
byxamysakuchuk
 
Sre With Java Microservices Patterns For Reliable Microservices In The Enterp...
bysharatacosra
 
GitOps, Driving NGN Operations Teams 211127 #kcdgt 2021
byWilliam Caban
 
Cloud Native Apps with GitOps
byWeaveworks
 
ADDO_2022_SRE Architectural Patterns_Nov10.pptx
byShikhaSrivastava820471
 
Facilitating DevOps Execution in an All Digital Environment
byKurt Andersen
 
How to get started with Site Reliability Engineering
byAndrew Kirkpatrick
 

More from Weaveworks

PDF
Automated Provisioning, Management & Cost Control for Kubernetes Clusters
byWeaveworks
 
PDF
Six Signs You Need Platform Engineering
byWeaveworks
 
PDF
Intro to GitOps with Weave GitOps, Flagger and Linkerd
byWeaveworks
 
PDF
Intro to GitOps & Flux.pdf
byWeaveworks
 
PDF
Weave GitOps 2022.09 Release: A Fast & Reliable Path to Production with Progr...
byWeaveworks
 
PDF
Robust Network Security and Observability with GitOps and Cilium
byWeaveworks
 
PDF
Webinar: End to End Security & Operations with Chainguard and Weave GitOps
byWeaveworks
 
PDF
Building internal developer platform with EKS and GitOps
byWeaveworks
 
PDF
Implementing Flux for Scale with Soft Multi-tenancy
byWeaveworks
 
PDF
Simplifying Hybrid Kubernetes with Weaveworks and EKS.pdf
byWeaveworks
 
PDF
Weave AI Controllers (Weave GitOps Office Hours)
byWeaveworks
 
PDF
Flamingo: Expand ArgoCD with Flux (Office Hours)
byWeaveworks
 
PDF
The Story of Flux Reaching Graduation in the CNCF
byWeaveworks
 
PDF
Flux Beyond Git Harnessing the Power of OCI
byWeaveworks
 
PDF
Flux’s Security & Scalability with OCI & Helm Slides.pdf
byWeaveworks
 
PDF
Deploying Stateful Applications Securely & Confidently with Ondat & Weave GitOps
byWeaveworks
 
PDF
Webinar: Capabilities, Confidence and Community – What Flux GA Means for You
byWeaveworks
 
PDF
How to Avoid Kubernetes Multi-tenancy Catastrophes
byWeaveworks
 
PDF
Accelerating Hybrid Multistage Delivery with Weave GitOps on EKS
byWeaveworks
 
PDF
Flux Security & Scalability using VS Code GitOps Extension
byWeaveworks
 
Automated Provisioning, Management & Cost Control for Kubernetes Clusters
byWeaveworks
 
Six Signs You Need Platform Engineering
byWeaveworks
 
Intro to GitOps with Weave GitOps, Flagger and Linkerd
byWeaveworks
 
Intro to GitOps & Flux.pdf
byWeaveworks
 
Weave GitOps 2022.09 Release: A Fast & Reliable Path to Production with Progr...
byWeaveworks
 
Robust Network Security and Observability with GitOps and Cilium
byWeaveworks
 
Webinar: End to End Security & Operations with Chainguard and Weave GitOps
byWeaveworks
 
Building internal developer platform with EKS and GitOps
byWeaveworks
 
Implementing Flux for Scale with Soft Multi-tenancy
byWeaveworks
 
Simplifying Hybrid Kubernetes with Weaveworks and EKS.pdf
byWeaveworks
 
Weave AI Controllers (Weave GitOps Office Hours)
byWeaveworks
 
Flamingo: Expand ArgoCD with Flux (Office Hours)
byWeaveworks
 
The Story of Flux Reaching Graduation in the CNCF
byWeaveworks
 
Flux Beyond Git Harnessing the Power of OCI
byWeaveworks
 
Flux’s Security & Scalability with OCI & Helm Slides.pdf
byWeaveworks
 
Deploying Stateful Applications Securely & Confidently with Ondat & Weave GitOps
byWeaveworks
 
Webinar: Capabilities, Confidence and Community – What Flux GA Means for You
byWeaveworks
 
How to Avoid Kubernetes Multi-tenancy Catastrophes
byWeaveworks
 
Accelerating Hybrid Multistage Delivery with Weave GitOps on EKS
byWeaveworks
 
Flux Security & Scalability using VS Code GitOps Extension
byWeaveworks
 

Recently uploaded

PDF
A Deep Dive into the Services Offered by IT Infrastructure Services Companies
byCalance
 
PDF
Working with Machine Learning in Production
byFrederick Apina
 
PPTX
Lifecycle of Automated Testing: A Step-by-Step Journey from Planning to Repor...
bySophie Lane
 
PDF
Master the Critical Path Method (CPM) for Smarter Project Scheduling
byOrangescrum
 
PDF
Test Driven Development with mORMot 2 with Delphi and FPC
byArnaud Bouchez
 
PPTX
Streamline Compliance and Safety with Advanced Contractor Management Software
bySHEQ Network Limited
 
PDF
How Code and Pixels Expertise Can Deliver Superior E-Learning Content .pdf
byelearningdevelopment
 
PDF
Workshop about mORMot 2 during EKON: write a clean-architecture TDD sample
byArnaud Bouchez
 
PDF
ESUG 2009: [Project planning], by Tim Mackinnon
byESUG
 
PDF
Insurance Underwriting Software for Smarter Operations
byInsurance Tech Services
 
PPTX
Future-Proofing the PMO - Strategic Portfolio Management for 2026 and Beyond
byOnePlan Solutions
 
PPTX
Advanced Risk Assessment Module for Enhanced Workplace Safety
byEHA Soft Solutions
 
PPTX
Classify and visualize Jira work to stay focused and foster innovation - Work...
byWork Type Focus
 
PPTX
BUSY Software – Smart Accounting & Inventory Solution.pptx
byMoving Cloud
 
PDF
InfoDays: Softwarearchitektur 2025: Microservices lieben Azure Container Apps
byJan Stamer
 
PDF
Evolution and Examples of Java Features, from Java 1.7 to Java 25
byYann-Gaël Guéhéneuc
 
PDF
HTML_Final notes_with_header_and_footer.pdf
byJaydeep Kale
 
PDF
The Future of School Management in Kenya_ Why Automation Is the Next Big Leap
byChandru
 
PDF
Chpetwr two Health Survey for - (2).pdf
byAhmedAlhadiAbduselam
 
PDF
To Effect or Not to Effect - a Scala Perspective [Func Prog Conf 2025]
byssusera4be6d
 
A Deep Dive into the Services Offered by IT Infrastructure Services Companies
byCalance
 
Working with Machine Learning in Production
byFrederick Apina
 
Lifecycle of Automated Testing: A Step-by-Step Journey from Planning to Repor...
bySophie Lane
 
Master the Critical Path Method (CPM) for Smarter Project Scheduling
byOrangescrum
 
Test Driven Development with mORMot 2 with Delphi and FPC
byArnaud Bouchez
 
Streamline Compliance and Safety with Advanced Contractor Management Software
bySHEQ Network Limited
 
How Code and Pixels Expertise Can Deliver Superior E-Learning Content .pdf
byelearningdevelopment
 
Workshop about mORMot 2 during EKON: write a clean-architecture TDD sample
byArnaud Bouchez
 
ESUG 2009: [Project planning], by Tim Mackinnon
byESUG
 
Insurance Underwriting Software for Smarter Operations
byInsurance Tech Services
 
Future-Proofing the PMO - Strategic Portfolio Management for 2026 and Beyond
byOnePlan Solutions
 
Advanced Risk Assessment Module for Enhanced Workplace Safety
byEHA Soft Solutions
 
Classify and visualize Jira work to stay focused and foster innovation - Work...
byWork Type Focus
 
BUSY Software – Smart Accounting & Inventory Solution.pptx
byMoving Cloud
 
InfoDays: Softwarearchitektur 2025: Microservices lieben Azure Container Apps
byJan Stamer
 
Evolution and Examples of Java Features, from Java 1.7 to Java 25
byYann-Gaël Guéhéneuc
 
HTML_Final notes_with_header_and_footer.pdf
byJaydeep Kale
 
The Future of School Management in Kenya_ Why Automation Is the Next Big Leap
byChandru
 
Chpetwr two Health Survey for - (2).pdf
byAhmedAlhadiAbduselam
 
To Effect or Not to Effect - a Scala Perspective [Func Prog Conf 2025]
byssusera4be6d
 

SRE and GitOps for Building Robust Kubernetes Platforms.pdf

  • 1.
    1 Confidential do notdistribute 1 Chris Lavery - Senior Site Reliability Engineer SRE and GitOps for Building Robust Kubernetes Platforms
  • 2.
    2 2 Webinar Platform -FAQs Using Zoom • You are in listen only mode • This webinar is being recorded • Q&A session will follow the presentation, please use the Q&A panel to submit questions • Hit escape to exit full screen • Please introduce yourself in the chat. Technical Issues - please visit Zoom Help https://support.zoom.us/hc/en-us/articles/206175806-Top-Questions
  • 3.
    3 Weaveworks’ is backedby solid investors Weaveworks created the GitOps methodology and tooling to solve our own Kubernetes management, scalability, and reliability requirements Weaveworks is a key partner with all the major infrastructure and Kubernetes vendors Weaveworks: the GitOps company Weaveworks is deeply committed to the Open Source Community
  • 4.
    4 Confidential do notdistribute 4 Weaveworks Site Reliability Engineer Chris Lavery Belfast, Northern Ireland Chris Lavery is a Senior Site Reliability Engineer at Weaveworks (currently on secondment to Deutsche Telekom) where he champions continuous improvement through DevOps/GitOps practices, collaborating with multiple technical and non-technical stakeholders to achieve organisational goals effectively. Chris has experience around high performance computing and modern data center architectures, familiarity with different use cases and verticals (Telecoms, Fintech, Gaming). Outside of work Chris enjoys cycling, music and a neverending list of DIY tasks. https://www.linkedin.com/in/christopherlavery https://twitter.com/mrchrislavery github.com/fire-ant
  • 5.
    5 Introducing Site ReliabilityEngineering (SRE) A (basic) definition: ▪ Operations focused (Production Infrastructure, On-call work) ▪ Often Embedded within Development teams to facilitate better operational outcomes ▪ Applying Software Engineering Principles to Operational Problems.
  • 6.
    6 Introducing Site ReliabilityEngineering (SRE) Why SRE ? What has changed? ▪ DevOps has progressed the culture of collaboration between development and operations ▪ Cloud computing has standardized/commodified aspects of software businesses ie. infrastructure as a service ▪ Consumers/End Users have transitioned to digital services
  • 7.
    7 Data Driven Decisions DataDriven Decisions ▪ Modern Distributed Systems have more moving parts ▪ These systems may be a hybrid of managed cloud resources/services and bespoke custom logic ▪ Modern Application Architectures can also be distributed in nature ▪ Increasing Cardinality (more things per thing) can provide better granularity/visibility but at the cost of complexity
  • 8.
    8 Data Driven Decisions Observability: ▪System/Service Metrics (Infrastructure) ▪ Logging (and Events) ▪ Tracing (and Spans) APM (Application Performance Monitoring)
  • 9.
    9 SLIs and SLOs:Dashboard Gauges, Minimum Indicators and Penalty points ▪ SLIs - Service Level Indicator ▪ A measurement derived from one or more underlying metrics to support an SLO ▪ For example: A Yield SLI (fraction of successful requests) can inform an availability SLA based on an SLO of 97.5%
  • 10.
    10 SLIs and SLOs:Dashboard Gauges, Minimum Indicators and Penalty points ▪ SLOs - Service Level Objective ▪ The defined threshold that a service should ideally operate above or within as per the terms of an SLA
  • 11.
    11 SLIs and SLOs:Dashboard Gauges, Minimum Indicators and Penalty points ▪ SLAs - Service Level Agreements ▪ An agreement contracted with a customer to set expectations and convey minimum levels of service
  • 12.
    12 SLIs and SLOs:Dashboard Gauges, Minimum Indicators and Penalty points ▪ Reliable enough, but no more reliable than it needs to be. ▪ Use your error budget wisely. ▪ Use it to take risks. ▪ An error budget is 1 minus the SLO of the service
  • 13.
    13 Uptime Traditional Focus ison Uptime ▪ If you were down for 1 second per day, you would exceed the 5 9’s SLA. ▪ This level of uptime is expensive and not often needed. ▪ Set your uptime to a reasonable level and no better Uptime Target Yearly allowed downtime 99% 3d 15h 39m 29s 99.9% 8h 45m 56s 99.99% 52m 35s 99.999% 5m 15s
  • 14.
    14 Service Levels Summary ServiceLevel Agreements = Agreement with a Customer to provide a service or penalties are applied. Service Level Objectives = A promise that must be achieved, e.g. uptime, response time Service Level Indicators = The metric that corresponds to meeting an objective, e.g. measured uptime, latency, error rates etc.
  • 15.
  • 16.
    16 DORA: DevOps Researchand Assessment ▪ Low Lead Time (minutes > hours > days) ▪ High Deployment Frequency (minutes < hours < days)
  • 17.
    17 DORA: DevOps Researchand Assessment ▪ Low Lead Time (minutes > hours > days) ▪ High Deployment Frequency (minutes < hours < days) ▪ Change failure rate ▪ Time to restore
  • 18.
    18 DORA: DevOps Researchand Assessment ▪ Lead Time + Deployment Frequency = Throughput ▪ Change failure rate + Time to restore = Stability
  • 19.
  • 20.
    20 Confidential do notdistribute 20 GitOps SRE
  • 21.
    21 Confidential do notdistribute 21 The entire system is described declaratively The canonical desired system state is versioned in git Software agents ensure correctness and perform actions on divergence in a closed loop The Principles of GitOps Approved changes can be automatically applied to the system
  • 22.
    Weave GitOps Continuous deliveryand operations for Kubernetes 22
  • 23.
    23 Embrace Risk Traditional systemsfocus on Availability such as Uptime, but ignores velocity of deploying new features. An SRE balances both availability and velocity of features. So risk is an acceptable part of the system and should not be avoided, but it should be managed.
  • 24.
    24 Progressive Delivery: Overview ●Progressive delivery is the practice of limiting the audience for your code changes or new feature releases ● It is done to restrict the exposure area to a minimum in case of any risk instances ● Progressive delivery can be implemented through a number of strategies from A/B testing to canary, Blue/Green, Rolling/Immutable upgrades or Feature flag management ● Make Deployments boring!
  • 25.
    25 Progressive Delivery: SREorientation ● Leverage the data emitted from an instrumented and observable system to reason about whether to proceed or rollback ● Configure the application infrastructure (service meshes, key metrics), SLA (overall downtime or service degradation) and automated operations (rollback/revert strategy) ● Foster higher collaboration and enables higher velocity through early feedback and deeper insight. Transferable approach which can be standardised with components and configurations within an organisation
  • 26.
    26 Progressive Delivery: Flagger ●Cloud Native Open source Progressive delivery Operator ● Broad support for all popular Service meshes, Ingresses and K8s Gateway API ● Designed with GitOps Methodologies in mind and a complementary component to FluxCD ● Commercial UI Integration in Weave GitOps ● Adopters include CNCF projects right through to Enterprise users
  • 27.
  • 28.
  • 29.
  • 30.
  • 31.
  • 32.
    32 Progressive Delivery: Takeaways ●Progressive delivery is the practice of limiting the audience for your code changes or new feature releases ● It is done to restrict the exposure area to a minimum in case of any risk instances ● Progressive delivery can be implemented through a number of strategies from A/B testing to canary, Blue/Green or Feature flag management
  • 33.
    33 Progressive Delivery: BusinessValue ● Deployment Frequency is higher with GitOps & Progressive Delivery ● Lead times are shorter with Progressive Delivery ● Change Failure Rate is lower with Progressive Delivery ● Mean Time to Recovery is shorter with GitOps
  • 34.
    34 34 Whitepaper: Progressive Deliverywith GitOps https://bit.ly/3K8oZwU Learn about Weave GitOps Assured www.weave.works/product/gitops/ Learn more about Weave GitOps Enterprise www.weave.works/enterprise and a 5 min demo https://youtu.be/aqJaHNCz2lM Request a personal demo www.weave.works/contact More information
  • 35.
    35 Confidential do notdistribute 3 5 You Thank Join our Community https://slack.weave.works Contact Us sales@weave.works Our products & services www.weave.works
  • 36.
    36 Progressive Delivery: DeploymentStrategies Strategy Positive Negative Rolling Zero Downtime Longer Deployments Canary Low Risk/Early Feedback Complex Monitoring/Testing Blue/Green Zero Downtime + Fast Rollback Cost (2 active instances) Feature Flags Controlled Release + test in Production Increased complexity in app management Immutable Predictable and Simple process Increase cost, Data persistence