your enterprise cloud-native app platform: an … cloud foundry architecture ... pcf service broker...
TRANSCRIPT
Richard Seroter@rseroter
CNA3430BU
#VMworld #CNA3430BU
Your Enterprise Cloud-Native App Platform: An Introduction to Pivotal Cloud Foundry
VMworld 2017 Content: Not fo
r publication or distri
bution
#CNA3430BU CONFIDENTIAL© Copyright 2017 Pivotal Software, Inc. All rights Reserved.
Your Enterprise Cloud-Native App Platform: An Introduction to Pivotal Cloud Foundry
Richard Seroter
@rseroter
August 31, 2017
VMworld 2017 Content: Not fo
r publication or distri
bution
#CNA3430BU CONFIDENTIAL
Cover with ImageDo you remember your first business trip to Las Vegas? I do.
VMworld 2017 Content: Not fo
r publication or distri
bution
Software dominates how we interact with the world.
VMworld 2017 Content: Not fo
r publication or distri
bution
Enterprises struggle to deliver software people love. Why?
It’s hard to experiment and
quickly incorporate what we learn.
We’re stuck with incomplete or
outdated application platforms.
Hostile processes and procedures
make it painful to ship software.
Organization silos have competing
priorities.
VMworld 2017 Content: Not fo
r publication or distri
bution
Not EVERYONE is struggling.
VMworld 2017 Content: Not fo
r publication or distri
bution
#CNA3430BU CONFIDENTIAL
Pivotal Cloud FoundryThe platform that helps you ship and run all types of
modern apps in a consistent way, anywhere you want.
VMworld 2017 Content: Not fo
r publication or distri
bution
Pivotal Cloud Foundry Architecture
DY N A M I C R O U T E S E R V I C E S / A P I M A N A G E M E N T
A P P M I C R O S E R V I C E S T E C H N O L O G Y
Spring Boot SteeltoeSpring Cloud
Services
D ATA M I C R O S E R V I C E S T E C H N O L O G Y
Spring Cloud Data Flow
Cloud Cache RabbitMQ MySQL
YOUR APPLICATIONS
PLATFORM
Elastic Runtime ConcourseApp
AutoscalerPCF Metrics CredHub
Orgs, Spaces, Roles and
Permissions
E M B E D D E D O S
C L O U D O R C H E ST R AT I O N
C O N TA I N E R O R C H E ST R AT I O NWindows Linux
AmazonWeb Services
MicrosoftAzure
GoogleCloud
PlatformOpen Stack VMWare
S E R V I C E
B R O K E R A P I
PIVOTAL
CLOUD FOUNDRY
APPLICATION
RUNTIME
PIVOTAL
CLOUD FOUNDRY
BOSH
MODERN
CLOUD NATIVE
PLATFORM
MULTI CLOUD
VMworld 2017 Content: Not fo
r publication or distri
bution
#CNA3430BU CONFIDENTIAL
Operator goals
VMworld 2017 Content: Not fo
r publication or distri
bution
Your goal
Get new technology installed quickly, consistently.
Your challenges
Complex prerequisites, immature tooling.VMworld 2017 Content: Not fo
r publication or distri
bution
PCF setup is straightforward.
All you need is an IaaS.
Cloud provider interfaces for each IaaS
Packaged with an embedded OS
Linux and Windows stemcells available
Servers and services created automatically
No wild collection of products to integrate
Hours to get running, not days or weeksVMworld 2017 Content: Not fo
r publication or distri
bution
Your goal
Keep the environment secure and up-to-date.
Your challenges
Security processes built to be reactionary, not proactive. Patching complex stacks is an exercise in triaging and
scheduling.
VMworld 2017 Content: Not fo
r publication or distri
bution
PCF helps you reduce risk by going faster.
Secure defaults, no-downtime
patching.
Uses an immutable infrastructure model
80+ hardening configurations for base image
Fully encrypted network, CredHub for keys
Secure-by-default container runtime
Ubiquitous policy enforcement
Monitoring and scanning integration
Control of software supply chain with buildpacks
Constant, full-stack patching
VMworld 2017 Content: Not fo
r publication or distri
bution
Your goal
Make sure the platform stays online at all times.
Your challenges
Platforms have many points of failure, and it’s hard to continuously upgrade core components.
VMworld 2017 Content: Not fo
r publication or distri
bution
PCF is built with resilience in mind.
Highly available architecture,
canary upgrades.
Four layers of high availability built in
Container fails? PCF creates another
Server process fails? PCF restarts it
Host VM fails? PCF deletes and recreates
AZ fails? Traffic goes to secondary site
Upgrade each layer with no downtime using fully-tested BOSH releases
Tested at silly scale, for sustained periods
VMworld 2017 Content: Not fo
r publication or distri
bution
Your goal
Offer a relevant service catalog to developers.
Your challenges
Curating products and creating hardened build templates fails to keep up with dev demand.
VMworld 2017 Content: Not fo
r publication or distri
bution
PCF service broker model is operator friendly.
Define the service catalog, and
get consistent, managed
services.
Service broker API offers: catalog management, provisioning, binding, unbinding, de-provisioning
Can have brokered, managed, on-demand services
Pivotal offers 50+ partner offerings
Cloud IaaS provider brokers bring best-of-breed capabilities to developersVMworld 2017 Content: N
ot for publicatio
n or distribution
#CNA3430BU CONFIDENTIAL
DEMONSTRATION
Browse the PCF marketplace
VMworld 2017 Content: Not fo
r publication or distri
bution
Your goal
Isolate tenants and workloads.
Your challenges
Unique environments create maintenance headaches, but co-location of workloads adds risk.
VMworld 2017 Content: Not fo
r publication or distri
bution
PCF offers built in multi-tenancy, isolation
Split workloads however you
want, introduce
microsegmentation via the
network.
Native support for orgs, spaces with role-based access controls and quotas
Backing services can be shared or single tenant
Isolation Segments create separate compute and network pools
Automated upgrades means you can more easily manage multiple Foundations VMworld 2017 Content: N
ot for publicatio
n or distribution
#CNA3430BU CONFIDENTIAL
Developer goals
VMworld 2017 Content: Not fo
r publication or distri
bution
Your goal
Use modern dev tools and frameworks.
Your challenges
Ops doesn’t want to set up and maintain runtimes for multiple stacks, and getting sandboxes is near
impossible.
VMworld 2017 Content: Not fo
r publication or distri
bution
PCF supports all major languages and runtimes.
Built-in support, but extensible
for edge cases.
Buildpacks for Java, .NET Core, .NET Framework, Ruby, Node.js, Go, Python, PHP
Windows or Linux hosts
Deploy apps as Docker images
Platform builds container, or you provide one
Additional support for Spring Boot apps
All apps get same auto-scaling, log aggregation, metrics collection behavior
VMworld 2017 Content: Not fo
r publication or distri
bution
Your goal
Use a wide assortment of app types to solve business needs.
Your challenges
Platforms either rigidly support one type of app, or are so generic that they provide no guardrails for any type of
app.
VMworld 2017 Content: Not fo
r publication or distri
bution
PCF runs all sorts of apps, in one place.
Modern or legacy, stateless or
stateful. Come one, come all.
Ideal for horizontally scaled web applications
Deploy Internet-facing APIs
Run “headless” background jobs
Execute one-off tasks
Run stream processing apps
Use Volume Services for stateful file system
Leverage backing services for off-box cache, databases, messaging engines
VMworld 2017 Content: Not fo
r publication or distri
bution
Your goal
Ship software early and often.
Your challenges
Deploying software within the enterprise requires a sadistic maze of processes and stakeholders with
differing priorities.
VMworld 2017 Content: Not fo
r publication or distri
bution
PCF makes deployment boring.
The platform handles everything
from runtimes to routing.
cf push makes it simple:Finds hostsConfigures runtimeInstalls and configures middlewareRetrieves code dependenciesCreates and stores app packageConfigures dependent servicesDeploys containers to hostsLoad environment variablesConfigures load balancer, firewallsStarts service monitoringConfigures log collection
Bring your own CI/CD tools or use Concourse
VMworld 2017 Content: Not fo
r publication or distri
bution
#CNA3430BU CONFIDENTIAL
DEMONSTRATION
Push a Spring Boot application
VMworld 2017 Content: Not fo
r publication or distri
bution
Your goal
Configure apps in a self-service fashion.
Your challenges
The configuration surface is too wide, or too locked down to make changes post-deployment.
VMworld 2017 Content: Not fo
r publication or distri
bution
PCF helps you configure, and re-configure as needed.
Rich controls, but
straightforward UX.
Use CLI, API, or graphical UI to scale apps up or out
Create and configure autoscale policies
Configure logging levels for Spring Boot apps
Add or change user-provided environment variables
Bind or unbind to service instances
Create and manage container-to-container networking policies
VMworld 2017 Content: Not fo
r publication or distri
bution
#CNA3430BU CONFIDENTIAL
DEMONSTRATION
Using Autoscale policies, logging levels,
and container networking
VMworld 2017 Content: Not fo
r publication or distri
bution
Your goal
Keep MTTR short with targeted troubleshooting.
Your challenges
Logs are strewn everywhere, and everyone’s looking at a different set of facts.
VMworld 2017 Content: Not fo
r publication or distri
bution
PCF consolidates and correlates logs for troubleshooting.
PCF Metrics brings it all
together.
Application logs extracted from each container and stored centrally
Logs get correlated with host metrics and platform events
Tap into the “firehose” or consume via CLI or PCF Metrics user interface
Visualize microservices latency with Trace ExplorerVMworld 2017 Content: N
ot for publicatio
n or distribution
#CNA3430BU CONFIDENTIAL
DEMONSTRATION
Correlating logs and tracing latency with
PCF Metrics
VMworld 2017 Content: Not fo
r publication or distri
bution
#CNA3430BU CONFIDENTIAL
Pivotal Cloud Foundry
A platform for delivering modern apps, anywhere.
VMworld 2017 Content: Not fo
r publication or distri
bution
VMworld 2017 Content: Not fo
r publication or distri
bution
VMworld 2017 Content: Not fo
r publication or distri
bution