big brother: kubernetes edition
TRANSCRIPT
Information presented is confidential
Container-native monitoring:Kubernetes Edition
Apurva Davé, Sysdig Specialist
Information presented is confidentialInformation presented is confidential
Information presented is confidentialInformation presented is confidential
Information presented is confidentialInformation presented is confidential
Information presented is confidentialInformation presented is confidential
Monitoring containers is different
Microservices and containers break legacy monitoring and analytics tools
Sysdig is the first and only solution that can natively monitor any infrastructure and app, including container-based ones
Information presented is confidentialInformation presented is confidential
Monitoring containers is different
Legacy monitoring approaches cannot see inside containers
Running monitoring agents inside containers is not a viable solution
Yesterday’s monitoring tools don’t understand microservices architectures & container orchestration
Information presented is confidentialInformation presented is confidential
Host OS
Container orchestration & tooling
Network & infrastructure
Container
CoreApp
Sysdig ContainerVision
Unique system instrumentation
Container Container
Infr.App
Information presented is confidentialInformation presented is confidential
Sysdig ContainerVision
Kernel
Docker
Container1
Container2
Container3
App App rkt LXC
Information presented is confidentialInformation presented is confidential
Kernel
Sysdig ContainerVision
Docker
Container1
Container2
Container3
App App rkt LXC
Kernel moduleInstrumentation
Information presented is confidentialInformation presented is confidential
Sysdig ContainerVision
Kernel
Docker
Container1
Container2
Container3
App App rkt LXC
Sysdig
Docker
collection &analysis
Information presented is confidentialInformation presented is confidential
New instrumentation = Better visibility
Infrastructure based monitoring & alerting
Typical infrastructure monitoring products
Information presented is confidentialInformation presented is confidential
New instrumentation = Better visibility
Application- intelligent Monitoring & alerting
Trace-driven troubleshooting
Service-oriented performance management
Information presented is confidentialInformation presented is confidential
Service-oriented performance management
Monitor applications & logical services (not hosts!)
Service 1 Service 2 Service 3
Computing node
Computing node Computing node
Computing node Computing node
Computing node
Information presented is confidentialInformation presented is confidential
Service-oriented performance management
Monitor applications & logical services (not hosts!)
Service 1 Service 2 Service 3
What’s the response time of my Cassandra service that’s currently distributed over three data centers? What are the
slowest queries?”“
Information presented is confidentialInformation presented is confidential
Service-oriented performance management
Deep, real-time understanding of orchestration metadata
Information presented is confidentialInformation presented is confidential
Kubernetes Integration
1. How are my servers running kubernetes master/minions doing?
2. Graph kubernetes-specific metrics from the API
3. (The dream) monitor your services deployed with kubernetes
a) Use kubernetes API metadata to aggregate data across replication controllers, pods
b) See inside containers to track application performance… aggregate information from inside all relevant containersBack to integrations slide
Information presented is confidentialInformation presented is confidential
How Sysdig-Kubernetes integration works
master
1. Sysdig monitoring each container & app
2. Sysdig agent on master auto-discovers and polls API
3. Metadata collected every few seconds
4. Now Sysdig Cloud can dynamically aggregate metrics across namespaces, replication controllers, pods or any labels
workers
Information presented is confidentialInformation presented is confidential
Application Intelligent Monitoring & Alerting
Automatic DiscoveryApp discovery without plug-ins
TemplatesPre-built templates by application & service
Zero-config custom metricsStatsD & JMX – no agents inside containers
Anomaly detectionOutlier & deviation based comparisons
Developers spun up a new service based on apache and mongo last night without letting us know. We deployed sysdig, so we still see it all, without any config.”“
Information presented is confidentialInformation presented is confidential
v
Application Intelligent Monitoring & Alerting
We automatically discover your appsThousands of relevant metrics without a single plug-in or YAML config
Information presented is confidentialInformation presented is confidential
Trace-driven troubleshooting
“Dashboard
sCorrelate
eventsTrace file with every system
call
System Call
PID CPU USER TH VIRTRES FILE NET
303 1.5 root 3 280K 57K0 236.00
35 0.5 root 5 37K 02K 0.00
Replay the state of my system last night, when the Auth service alerts fired, 5 minutes before our app went down. Show all the system calls from the containers we destroyed.”
Information presented is confidentialInformation presented is confidential
Demo
Information presented is confidentialInformation presented is confidential
What we’re going to show you
Small environment, with & without orchestration
1. How to deploy a sysdig agent (yes, we will actually show you instrumentation!)
2. Service-oriented performance metrics and analytics3. A deep troubleshooting example4. Basic monitoring – creating a dashboard, set an alert
Information presented is confidentialInformation presented is confidential
Product Offerings
Sysdig Cloud
Sysdig On-Premise
Sysdig Open Source
– Hosted offering– $20/mo/host – discounted for large server volume– Monthly or annual
– Run the Sysdig backend in your private cloud or AWS domain – Annual only– Minimum commitment required
– CLI-based troubleshooting tool– Used on a single host– Community support
Information presented is confidentialInformation presented is confidential
Summary
Deep container visibility
Service oriented performance management
Application intelligent monitoring & alerting
Trace driven troubleshooting
Start a free trial today and see Sysdig running in your own environment!
Information presented is confidentialInformation presented is confidential
Thanks (that’s the end)