What S New in OpenShift Container Platform 4-1
What S New in OpenShift Container Platform 4-1
What S New in OpenShift Container Platform 4-1
Jarosław Stakuń
RHCA, Senior Solutions Architect
Red Hat CEE
1
OpenShift 4 Platform
AUTOMATED OPERATIONS
KUBERNETES
4
OPENSHIFT PLATFORM
Installation Experiences
OPENSHIFT CONTAINER PLATFORM HOSTED OPENSHIFT
Simplified opinionated “Best Customer managed resources & Deploy directly from the Azure
Practices” for cluster provisioning infrastructure provisioning console. Jointly managed by Red
Hat and Microsoft Azure engineers.
Fully automated installation and Plug into existing DNS and security
updates including host container boundaries
OS.
OpenShift Dedicated
User managed
OCP Cluster
openshift-install deployed
RH
RHCoreOS
CoreOS RH
RHCoreOS
CoreOS
RHEL CoreOS RHEL CoreOS
The installer typically finishes within 30 minutes succeeds (wait a few minutes).
INFO Access the OpenShift web-console here:
● Only minimal user input needed with all non-essential install https://console-openshift-console.apps.demo.example.com
INFO Login to the console with user: kubeadmin, password: <provided>
config options now handled by component operator CRD’s
● IPI installer 4.1 provides support for AWS deployments with
additional provider support planned in future releases
● See the OpenShift documentation for more details
OPENSHIFT PLATFORM
User managed
OCP Cluster
Note: Control plane nodes
must run RHEL CoreOS!
RH
RHCoreOS
CoreOS RHEL
RHEL CoreOS RHEL 7
CoreOS
Customer deployed
Cloud Resources Cloud Resources
OPENSHIFT PLATFORM
Customization & Provider Support Best Practices: AWS Yes: AWS, Bare Metal, & VMware
OPENSHIFT PLATFORM
WHEN TO USE When customization and integration with When cloud-native, hands-free operations
additional solutions is required are a top priority
OPENSHIFT PLATFORM
RHCOS Details
● RHEL 8 bits (4.18 kernel) ● Transactional host updates
● Includes all packages required for OpenShift ● Read-only OS binaries
● Over-The-Air updates encompass OCP & RHCOS ● Preconfigured for most environments
OPENSHIFT PLATFORM
Graphical Re-configuration
Global Configuration
You complete most of the cluster configuration and
customization after you deploy your OpenShift Container
Platform cluster.
Networking Plug-ins
Multus Enables Multiple
3.x Capability... 4.x Capability...
Networks & New Functionality
to Existing Networking Kubernetes Kubernetes
The Multus CNI “meta plugin” CRDs
for Kubernetes enables one to CNI “meta plugin” ( )
create multiple network OpenShift default plugin#2
interfaces per pod, and assign a SDN CNI
CNI plugin to each interface CNI plug-in
OpenShift
created. with new New, optional
SDN CNI secondary
Pod functionality
plug-ins:
1. Create pod annotation(s) to call
eth0
out a list of intended network Pod ● macvlan
OpenShift ● host device
attachments... SDN CNI eth0 net0
(default) ● ipam(dhcp)
2. ...each pointing to CNI network new
OpenShift
configurations packed inside SDN CNI capability
(default)
CRD objects
OPENSHIFT PLATFORM
Storage
Storage Focus
● Cluster Storage Operator Supported Dev Preview
○ Sets up the default storage class
○ Looks through cloud provider and sets up the AWS EBS Snapshot*
correct storage class
VMware vSphere Disk EFS*
● Drivers themselves remain in-tree for now
● Focus has been on RHEL7 and RHCOS8 validating:
NFS Local Volume*
○ AWS EBS
○ vSphere Default Storage Class iSCSI Raw Block
● Openshift Container Storage v4 will be based on Ceph
○ Rook operator Fibre Channel
HostPath
cloud.redhat.com
18
CLOUD-LIKE SIMPLICITY, EVERYWHERE
Cluster Monitoring
Cluster monitoring is installed by default
● Exposes resource metrics for Horizontal Pod
Autoscaling (HPA) by default
○ HPA based on custom metric is tech preview
● No manual etcd monitoring configuration anymore
● New screens for managing Alerts & Silences
● More metrics available for troubleshooting purposes
(e.g. HAproxy)
● Configuration via ConfigMaps and Secrets
CLOUD-LIKE SIMPLICITY, EVERYWHERE
Cluster Logging
Cluster Logging is lifecycle managed via Operator Lifecycle
Management
# configure via CRD
● Install the Elasticsearch and Cluster Logging Operators apiVersion: "logging.openshift.io/v1"
kind: "ClusterLogging"
from OperatorHub metadata:
name: "instance"
● Create an instance of Cluster Logging. fluentd, namespace: "openshift-logging"
spec:
Elasticsearch and Kibana (with Operators) are created managementState: "Managed"
logStore:
● Changing the out-of-box configuration: type: "elasticsearch"
elasticsearch:
○ CPU, memory requests and limits, PVC sizes etc nodeCount: 3
resources:
can be changed by editing the Cluster Logging limits:
cpu: 800m
memory: 1Gi
Operator YAML requests:
cpu: 800m
● Direct Elasticsearch and Kibana Deployments to memory: 1Gi
storage:
dedicated Nodes (recommended for production usage) storageClassName: gp2
size: 100G
redundancyPolicy: "SingleRedunda
visualization:
type: "kibana"
kibana:
replicas: 1
OPENSHIFT PLATFORM
Big Data
Relational DBs
Monitoring
Security
NoSQL DBs
DevOps
AL/ML
Messaging
Storage
24
OPERATOR
BROAD ECOSYSTEM OF WORKLOADS
SDK
Build Operators for your apps
Ansible Playbooks
Helm Chart
APBs
Operator Metadata
● Stored in quay.io
● Fetches channels and available versions for each Operator
Container Images
● Red Hat products and certified partners come from RHCC
● Community content comes from a variety of registries
BROAD ECOSYSTEM OF WORKLOADS
Pre-Built
Base Package
Language
Images Subset
Images
BROAD ECOSYSTEM OF WORKLOADS
Red Hat Enterprise Linux 7 Red Hat Enterprise Linux 8 Like any community distro
Next wave of developer tools
OpenShift has all of the latest tools to make
your devs more productive
Code Containers
Service
Serverless
Mesh
31
NEXT WAVE OF DEVELOPER TOOLS
OpenShift Serverless
Application
Containers
Containers
Infrastructure
OpenShift Serverless
Key Features
● Familiar to Kubernetes users. Native.
● Scale to 0 and autoscale to N based on demand
● Applications and functions. Any container workload.
● Powerful eventing model with multiple event sources.
● Operator available via OperatorHub
● Knative v0.6 (v1beta1 APIs)
● No vendor lock in
Learn more
https://openshift.com/learn/topics/knative
http://bit.ly/knative-tutorial
NEXT WAVE OF DEVELOPER TOOLS
"Lift & Shift" to Serverless
apiVersion: apps/v1
kind: Deployment
metadata:
Kubernetes Knative
name: frontend
labels:
app: guestbook --- apiVersion: serving.knative.dev/v1alpha1
spec: apiVersion: v1 kind: Service
selector: kind: Service metadata:
matchLabels: metadata: name: frontend
app: guestbook name: frontend-service spec:
tier: frontend labels: template:
replicas: 1 app: guestbook metadata:
template: tier: frontend labels:
metadata: spec: app: guestbook
labels: ports: tier: frontend
app: guestbook - port: 80 spec:
tier: frontend selector: containers:
spec: app: guestbook - image: markusthoemmes/guestbook
containers: tier: frontend resources:
---
- image: markusthoemmes/guestbook requests:
name: guestbook apiVersion: route.openshift.io/v1 cpu: 100m
resources: kind: Route memory: 100Mi
requests: metadata: env:
cpu: 100m name: frontend-route - name: GET_HOSTS_FROM
memory: 100Mi spec: value: dns
env: to: ports:
- name: GET_HOSTS_FROM kind: Service - containerPort: 80
value: dns name: frontend-service
ports:
- containerPort: 80
53 lines 22 lines
Link for demo: https://www.youtube.com/watch?v=YFI36EteDOs
NEXT WAVE OF DEVELOPER TOOLS
Learn more
https://github.com/kedacore/keda
In partnership with
NEXT WAVE OF DEVELOPER TOOLS
Istio
Jaeger Prometheus
Observe Observe
Connect Control
Kiali
Grafana
NEXT WAVE OF DEVELOPER TOOLS
CodeReady Workspaces
Available in OperatorHub
OpenShift Improvements
● OpenShift logo on OpenShift clusters
● Add: Routes, DeploymentConfig, Projects,
ImageStreams
● Ability to set Project context
NEXT WAVE OF DEVELOPER TOOLS
OpenShift.
frontend - http://frontend-myapp.192.168.99.100.nip.io
$ odo watch
Waiting for something to change in /dev/frontend
Use It To: Enable the ‘git push’ flow developers love, but with OpenShift Kubernetes.
NEXT WAVE OF DEVELOPER TOOLS
CodeReady Containers
43
HOSTED OPENSHIFT
Simplified opinionated Customer managed Deploy directly from the Powerful cluster, no
Skip
“Best the on-call
Practices” for rotation
resources & infrastructure Azure console. maintenance needed
cluster provisioning provisioning
Jointly managed by Red Managed by Red Hat
Red Hat engineers keep you up to date
Good for bringing up Plug into existing DNS and Hat and Azure engineers. engineers and support
clusters via automation security boundaries
Expand capacity without hassle Free your team from the Free your team from the
distraction of ops distraction of ops
HOSTED OPENSHIFT
OpenShift Dedicated
Dedicated with OpenShift 3 Dedicated with OpenShift 4
Available today, hosted on Amazon Web Services Initial availability June 2019
Broader availability in fiscal Q2
Consumption based billing now available
OperatorHub
Bring Your Own Cloud Account Red Hat products and certified Operators will be added in
a curated catalog later in the year.
Connected to cloud.redhat.com
Clusters will appear beside other self-managed installs
Migrating to OpenShift 4
Tooling and advice for moving from OpenShift 3.x to 4.x
3 4
47
MIGRATING TO OPENSHIFT 4
49
2019 Roadmap
4 June 2019 Q3/Q4 CY2019 Q4 CY19/Q1 CY20
OpenShift 4.1 OpenShift 4.2 OpenShift 4.3
● OpenShift Serverless (Knative) - DP ● Developer Console GA ● OpenShift Serverless (Knative) - GA
DEV
● OpenShift Pipelines (Tekton) Dev Preview ● OpenShift Serverless (Knative) - TP ● OpenShift Pipelines (Tekton) GA
DEV
DEV
● CodeReady Workspaces ● OpenShift Pipelines (Tekton) Tech Preview
● CodeReady Containers Alpha ● CodeReady Containers GA
● Developer CLI (odo) Beta ● Developer CLI (odo) GA ● Metering for Services
● Windows Containers
APP
● OperatorHub ● GPU metering
● Operator Lifecycle Manager
APP
● OperatorHub Enhancements
APP
● Service Mesh (~2 month after) ● Operator Deployment Field Forms
● Application Binding with Operators
● Application Migration Console ● Kubernetes 1.15 w/ CRI-O runtime
● Kubernetes 1.13 with CRI-O runtime ● Automated Installer for IBM Cloud, Alibaba,
● RHEL CoreOS, RHEL7 RHV, Bare Metal Hardware Appliance
PLATFORM
PLATFORM
● Automated Installer for AWS ● Disconnected Install and Update ● Pre-existing Infra Installer for Azure, OSP,
● Pre-existing Infra Installer for Bare Metal, PLATFORM ● Automated Installer for Azure, OSP, GCP GCP
VMware, AWS ● OVN Tech Preview ● OVN GA w/ Windows Networking
● Automated, one-click updates ● FIPS Integration
● Multus (Kubernetes multi-network) ● Federation Workload API
● Quay v3 ● Automated App cert rotation
● OpenShift Container Storage 4.2
● cloud.redhat.com - Multi-Cluster Mgmt
● OCP Cluster Subscription Management
HOSTED
HOSTED
HOSTED
50
● OpenShift Dedicated consumption Deployment Consumption Improvements
pricing ● Proactive Support Operator
Thank you &
try.openshift.com
jarek@redhat.com
linkedin.com/company/red-hat facebook.com/redhatinc
youtube.com/user/RedHatVideos twitter.com/RedHat
51