Loading…
This event has ended. Visit the official site or create your own event on Sched.
Customize your schedule by session topic and skill level:  Session Topic - Refer to the "Type" filter list to the right to find a session based on topic. Talk Difficulty - Sessions are categorized as [B]eginner, [I]ntermediate or [A]dvanced at the end of each talk title.

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Advanced [clear filter]
Wednesday, March 29
 

11:15 CEST

Alertmanager on Its Way to High Availability [A] - Frederic Branczyk, CoreOS
The latest releases of the Alertmanager introduced a high availability mode. Frederic will guide you through the contract of Prometheus and Alertmanager and why developing the high availability mode is unique to the problem the Alertmanager solves by giving an introduction into the principles used to implement it.

Speakers
avatar for Frederic Branczyk

Frederic Branczyk

Software Engineer, CoreOS
Frederic is an engineer at CoreOS contributing to Prometheus and Kubernetes to build state of the art modern infrastructure and monitoring tools. He discovered his interest in monitoring tools and distributed systems in his previous jobs, where he used machine learning to detect anomalies... Read More →


Wednesday March 29, 2017 11:15 - 11:50 CEST
A 06 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany
  Prometheus

12:00 CEST

Leverage LXD/LXC with Kubernetes [A] - Lin Sun, IBM
Do you want to increase the density of your Kubernetes workers? We have run some experiments with Kubernetes workers in LXC containers managed by LXD. Come to hear our experience and challenges during the experiment!

Speakers
avatar for Lin Sun

Lin Sun

Senior Technical Staff Member, IBM
Lin has been working on container and cloud-native since 2014 from Docker to Kubernetes to Service Mesh. She is currently an Istio maintainer, a member of the Istio steering committee and technical oversight committee. She is passionate about new technologies and loves to play with... Read More →


Wednesday March 29, 2017 12:00 - 12:35 CEST
B 05 - B 06 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany
  KubeCon Ops, Developer

15:35 CEST

Steward, the Kubernetes-Native Service Broker [A] - Gabe Monroy, Deis
No application is an island. Most applications interact with a diverse set of services, not all of which run on a Kubernetes cluster. How do you manage access to both on and off cluster resources? Join Gabe Monroy, CTO of Deis, for a discussion about service catalogs, explicit service bindings, and how they can help you rationalize heterogeneous computing environments. We will end with a demo of Steward, an open source service broker for Kubernetes.

Speakers
GM

Gabe Monroy

CTO, Deis
Gabriel Monroy (@gabrtv) is the CTO and creator of Deis. As an early contributor to Docker and Kubernetes, Gabriel has deep experience with containers in production and frequently advises organizations on PaaS, distributed systems, and cloud-native architectures. Gabriel speaks regularly... Read More →


Wednesday March 29, 2017 15:35 - 16:10 CEST
B 05 - B 06 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany
 
Thursday, March 30
 

11:30 CEST

Integrating Long-Term Storage with Prometheus [A] - Julius Volz, Prometheus
While Prometheus's built-in storage does not support long-term data retention and durability, Prometheus provides nascent interfaces for integration with external long-term storage systems. This talk explains how these interfaces work, and how you can integrate with them to create custom long-term storage solutions. It will also showcase some real-world integration examples and highlight the key challenges in implementing them.

Speakers
avatar for Julius Volz

Julius Volz

Co-Founder, Prometheus



Thursday March 30, 2017 11:30 - 12:05 CEST
A 06 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany
  Prometheus, Operations

12:15 CEST

BoF: Should Kubernetes Have a DSL for Configuration? [A] - Gareth Rushgrove, Puppet

Currently many, if not most, people in the Kubernetes community are writing YAML configuration files by hand, using the data format designed for the API. These files contain a great deal of repetition in any non-trivial environment and writing the data by hand is error prone without the ability to create higher-level abstractions. This Birds of a Feather session would look to discuss this problem, and what higher-level tools may help solve it in the future. In particular we would talk about:

* Why different types of users might prefer different interfaces
* The pros and cons of domain specific languages
* The advantages of abstractions
* The argument that you should just "use a proper programming language"

Speakers
GR

Gareth Rushgrove

Senior Software Engineer, Puppet
Gareth Rushgrove is a senior software engineer at Puppet. He works remotely from Cambridge, UK, building interesting tools for people to better manage infrastructure. Previously he worked for the UK Government Digital Service focused on infrastructure, operations and information security... Read More →


Thursday March 30, 2017 12:15 - 12:50 CEST
A 03 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany
  BoF, Wildcard

12:15 CEST

Insecure Containers? Continuous Defense Against Open Source Exploits [A] - Andrew Martin, UK Home Office
Open Source Software underpins the internet and many enterprises, but has repeatedly proven itself vulnerable to accident and tampering. High impact exploits lead us to question our unreserved trust in Open Source, and the wisdom of its proliferation is being questioned. As we fight to continuously secure millions of servers against these waves of attacks, have we found a crucial panacea in containers?

This talk examines the anatomy of major vulnerabilities, demonstrates their applicability to containerised applications, and explores container native security tooling throughout the pipeline.

Speakers
avatar for Andrew Martin

Andrew Martin

Director, ControlPlane
Andrew has an incisive security engineering ethos gained building and destroying high-traffic web applications. Proficient in systems development, testing, and operations, he is comfortable profiling and securing every tier of a bare metal or cloud native system, and has battle-hardened... Read More →



Thursday March 30, 2017 12:15 - 12:50 CEST
A 04 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany

12:15 CEST

Serverless on Kubernetes with Kubeless [A] - Sebastien Goasguen, Bitnami & Nguyen Anh-Tu, Skippbox
Serverless is getting lots of attention lately. It is positioned as the next evolution for building distributed applications, going beyond container based systems and letting developers build applications workflows based on triggers and events. The three main public clouds (GCP, Azure and AWS) all have serverless offerings. In this talk we will introduce kubeless, a serverless framework built on top of Kubernetes. It allows Kubernetes users to define functions that are dynamically injected in container runtimes and exposed via HTTP or event triggers. Events are managed by Apache Kafka while HTTP triggers are exposed with Kubernetes services. It is an open source clone of Google cloud functions, and provide similar capabilities than AWS lambda. We will explain kubeless architecture, show how we leverage ThirdPartyResources and an in-cluster controller. Above the interest of serverless, this architecture shows the power of Kubernetes and how it can be used as a platform to build new systems quickly.

Speakers
avatar for Sebastien Goasguen

Sebastien Goasguen

Kubernetes Lead, Bitnami
Sebastien Goasguen is a twenty year open source veteran. A member of the Apache Software Foundation, he worked on Apache CloudStack and Libcloud for several years before diving into the container world. He is the founder of Skippbox, a Kubernetes startup acquired by Bitnami where... Read More →
avatar for Nguyen Anh Tu

Nguyen Anh Tu

Software Engineer, Bitnami
Nguyen Anh Tu (Tuna) - Software engineer @ Bitnami. A Distributed System enthusiast. Current interests include containerization, microservices, PaaS, serverless. Favorite programming language: Go.


Thursday March 30, 2017 12:15 - 12:50 CEST
B 07 - B 08 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany

14:00 CEST

High Availability Kubernetes on Bare Metal [A] - Muhammad Kamran Azeem & Henrik Høegh, Praqma
To run mission critical applications on your own datacenter you need high availability on every part of the system. In a kubernetes cluster, this includes your controllers, etcd, and even the load balancers. This talk will describe about setting up high availability mechanisms for Kubernetes Controllers and load balancing nodes. It will also cover creating highly available etcd, worker nodes, and other components necessary in a functioning cluster based on a real world project.

Speakers
MK

Muhammad Kamran Azeem

Senior Consultant Infrastructure and Security, Praqma
Muhammad Kamran Azeem is a senior consultant for infrastructure and security at Praqma’s Oslo office, where has has been working for past two years. He brings with him about 20 years of experience covering programming, database administration, networks, information security and... Read More →
HH

Henrik Høegh

DevOps consultant, Praqma
Senior consultant with more than 15 years experience within operations, DevOps, and Continuous Delivery on Kubernetes, Docker, Linux, Atlassian, Jenkins. As a DevOps consultant Henrik regularly works with build servers, Container technologies, version control, and agile task management... Read More →



Thursday March 30, 2017 14:00 - 14:35 CEST
A 05 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany

14:00 CEST

Configuring Prometheus for High Performance [A] - Björn Rabenstein, SoundCloud Ltd.
A key to Prometheus's success is its operational simplicity. It takes only minutes to get a server with a meaningful configuration up and running from scratch. However, once you need to run your Prometheus server a bit hotter, you will quickly find yourself practicing the dark art of tuning Prometheus command line flags. This talk will shed some light on how to handle various scenarios: How to run Prometheus on a tiny machine or how to utilize a large amount of RAM. How to optimize for very high ingestion rates or for a lot of time series. How to get the most out of your old spinning disk or how to limit the wearout of your expensive SSD. There will also be a sneak preview of ongoing efforts to reduce the required amount of flag tuning.

Speakers
avatar for Björn Rabenstein

Björn Rabenstein

Engineer, Grafana Labs
Björn is a Production Engineer at SoundCloud and a Prometheus developer. Previously, he was a Site Reliability Engineer at Google and a number cruncher for science.


Slides pdf

Thursday March 30, 2017 14:00 - 14:35 CEST
A 06 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany
  Prometheus, Operations

14:45 CEST

Kubernetes Cluster Federation: How to Write a Federated Controller? [A] - Madhu C.S. & Nikhil Jindal, Google
Extensibility is one of the major selling points of Kubernetes. Cluster Federation is built on the same spirit, but the tooling provided in the form of libraries and framework to build federated controllers is quite different than the tooling provided to build Kubernetes controllers. In this talk, we will show you the tools and techniques provided by Cluster Federation to write your own federated controllers. We will also show you the steps involved in building a federated controller by building one during the talk.

Speakers
avatar for Madhu C.S.

Madhu C.S.

Software Engineer, Google
Madhu C.S. (madhusudancs@{github, slack, twitter}) is a Software Engineer on the Kubernetes team at Google where he works on Cluster Federation. Before Kubernetes, he worked on a number of different projects within Google Cloud. He also has a strong background in compilers and has... Read More →
avatar for Nikhil Jindal

Nikhil Jindal

Software Engineer, Google
Nikhil Jindal (nikhiljindal@github) is a Software Engineer on the kubernetes team at Google. He had started on kubernetes by working on API machinery and is now focussed on multi cluster problems. Before getting the kubernetes bug, he was enjoying working on Google Maps.



Thursday March 30, 2017 14:45 - 15:20 CEST
C 01 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany

15:40 CEST

K8SNIff - End-to-End Encryption Till the Pod [A] - Sebastian Scheele & Jason Murray, Loodse GmbH
When running Kubernetes on Kubernetes, in order to ensure end-to-end encryption, we were confronted with the challenge to route TLS traffic directly to the pods. With one ingress only per cluster, that was not possible with the existing solutions.

To solve this problem, we created K8SNIff as an open source project on github: https://github.com/kubermatic/k8sniff. K8SNIff is a small ingress server that will accept incoming TLS connections, and parse TLS Client Hello messages for the SNI Extension. If one is found, K8Sniff will forward that connection to the pod.

In this talk, participants will learn how easy it is to implement your own logic on top of the Kubernetes API. Moreover, we will give practical examples for the use of K8SNIff.

Speakers
JM

Jason Murray

Jason Murray is a Senior Infrastructure Architect at Loodse. He has contributed to both Kubernetes and Container Linux, focusing on large scale bare metal deployments. Prior to joining Loodse, Jason worked as an Operations Engineer at Collins and was Head of Development at Contet... Read More →
avatar for Sebastian Scheele

Sebastian Scheele

CEO, Kubermatic
Sebastian Scheele is the CEO and co-founder of Kubermatic. Kubermatic is an enterprise software platform company that enables enterprises and service providers to deliver automated multi-cloud operations. Kubermatic Kubermatic, an enterprise Kubernetes management platform,  automates... Read More →


Thursday March 30, 2017 15:40 - 16:15 CEST
B 07 - B 08 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany