Loading…
This event has ended. Visit the official site or create your own event on Sched.
October 23-26, 2017 - Prague, Czech Republic
Click Here For Information & Registration
View analytic

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

ContainerCon Tracks [clear filter]
Monday, October 23
 

11:15

A Look at Running Containers in a Hostile Environment - Stéphane Graber, Canonical Canada Ltd.
NorthSec is one of the biggest on-location security contests (Capture The Flag) in the world. It's also one of the biggest deployments of LXC, albeit only for a weekend. It is unique not only because of its size but because of the way it works. Every team gets its own simulation of the real world, including its own fake internet and various fake companies and organizations connected to it. Each edition comes with its own original scenario which drives the event and gets the team going from one challenge to the next, earning points in the process. Everything is simulated using containers, several hundreds of them PER TEAM. Those run internet routers or simulate corporate servers. Some are deliberately vulnerable to attacks; some can't ever fail. In this talk, we'll look at the NorthSec 2017 infrastructure, what it looked like, how it was made and what we learned from it.

Speakers
avatar for Stéphane Graber

Stéphane Graber

Technical Lead, Canonical Canada Ltd.
Stéphane Graber works as the technical lead for LXD at Canonical Ltd. He is the upstream project leader for LXC and LXD and a frequent speaker and track leader at various containers and other Linux related events. | | Stéphane is also a long time contributor to the Ubuntu Li... Read More →



Monday October 23, 2017 11:15 - 11:55
Palmovka

11:15

Effective Ingress Traffic Management with Traefik - Emile Vauge, Containous
How to effectively manage ingress network traffic in your container based infrastructure? This talk will be a deep dive into Traefik, a modern reverse-proxy and load balancer made to deploy microservices with ease.

Speakers
avatar for Emile Vauge

Emile Vauge

CEO, Containous
Creator of traefik.io, Emile is developer and founder of containo.us. He has more than 10 years experience developing applications for the web and the industry and is certified Docker trainer. Lately he got interested in the DevOps methods. He is particularly interested in orches... Read More →


Monday October 23, 2017 11:15 - 11:55
Karlin I

11:15

Kubernetes 1.8 - What’s New in the Release? - Ihor Dvoretskyi, CNCF
Kubernetes 1.8 has been released a few weeks ago bringing with it new notable features and enhancements. This is a third release of the project in 2017 and this talk will highlight how the traditional operational experience with Kubernetes are being improved with the fresh release.

Speakers
avatar for Ihor Dvoretskyi

Ihor Dvoretskyi

Developer Advocate, Cloud Native Computing Foundation
Ihor is a Developer Advocate for Cloud Native Computing Foundation, focused on the Kubernetes-related efforts at open source community. He acts as a Product Manager for the Kubernetes community, co-leading Product Management Special Interest Group with the goal of growing Kuberne... Read More →


Monday October 23, 2017 11:15 - 11:55
Chez Louis

12:05

Cloud Foundry GrootFS: A Daemonless Container Image Manager That You Can Use With runC - George Lestaris, Pivotal
runC, OCI’s implementation of the runtime spec, has been very successful since the initiative was launched back in 2015. Cloud Foundry and others have been running with runC in production for a while now with hundreds of thousands of runC containers being spawned around the world on every day. For us, in Open Source Summit, runC is quickly becoming the standard implementation of containers in Linux. runC, however, does not deal with the container packaging techniques which currently get standardised as well through the image spec initiative.

In this talk, George will introduce you to GrootFS, a deamonless container image manager, which can run seamlessly as a non-root user in Linux and provide runC with various types of container images. GrootFS is dealing with the low-level filesystem operations required to make container images efficient as well as the distribution of images.

Speakers
avatar for George Lestaris

George Lestaris

Product Manager, Pivotal
George Lestaris is the product manager of the Cloud Foundry GrootFS team, working at Pivotal in London. GrootFS is building tools to manage the container image lifecycle for Garden, CF's container engine. Before Pivotal, George spent some time with web programming, high throughpu... Read More →


Monday October 23, 2017 12:05 - 12:45
Palmovka

12:05

Dude, Where's My Microservice? - Tomasz Janiszewski, Allegro
In this talk I will focus on Discovery Service and communication between microservices. I'll present possible methods and show strong and weak sides of them. For each method I'll provide reference implementation. This presentation will be technology agnostic and present general ideas that could be applied for any container scheduler like Mesos/Kubernetes/Swarm/Nomad.

Speakers
avatar for Tomasz Janiszewski

Tomasz Janiszewski

Software Engineer, Allegro
Tomasz is a software engineer passionate about distributed systems. He believes in free and open source philosophy and occasionally contributes to projects on GitHub. At Allegro he works as a Software Engineer working with Mesos and Marathon cluster.



Monday October 23, 2017 12:05 - 12:45
Chez Louis

12:05

Secure Container Deployment In Multi-Tenant Environments - K Y Srinivasan, Microsoft & Jun Nakajima, Intel
Containers offer many advantages ranging from extremely fast boot times (measured in milliseconds) to high deployment densities (number of container instances that can be launched on a physical node). While these attributes make containers ideal for realizing IaaS on cloud infrastructures, security and isolation concerns make traditional containers unsuitable for multi-tenant public cloud infrastructures. We present here a new capability on the Windows platform to host Linux containers that while retaining the traditional advantages of containers adds the necessary hardware enforced isolation to make them suitable for multi-tenant environments. We present here the architectural choices we have made in realizing this functionality as well the performance of Hyper-V Linux containers.

Speakers
avatar for Jun Nakajima

Jun Nakajima

Senior Principal Engineer, Intel Open Source Technology Center
Jun Nakajima is a Senior Principal Engineer leading open source virtualization and cloud projects, such as Xen, KVM, and OpenStack at Intel Open Source Technology Center. Jun has been working on various virtualization projects for more than a decade. Jun presented a number of tim... Read More →
KS

KY Srinivasan

Architect, Microsoft
KY is an Architect at Microsoft where he focuses on making Linux run well on Hyper-V and Azure cloud environment. K. Y comes to Microsoft from Novell where he was a Distinguished Engineer, leading a number of key platform initiatives. Prior to joining Novell, he was a Distinguish... Read More →


Monday October 23, 2017 12:05 - 12:45
Karlin I

14:20

Container Migration Around The World - Adrian Reber, Red Hat and Mike Rapoport, IBM Research
This presentation is heavily based on a demo of a running container which is live migrated around the world while the clients connection will stay alive. The example application used in the demonstration is Xonotic (The Free and Fast Arena Shooter). The server will be running in a runC container which will be live migrated around the world while the client is running locally. On the basis of the migrated container the involved technologies will be explained. This is mainly CRIU (Checkpoint/Restore In Userspace) and migration optimizations to decrease the downtime of migrations over long distances (from one continent to another) and the runC-CRIU integration. Depending on the available network infrastructure the demo will be live or pre-recorded.

Speakers
MR

Mike Rapoport

Researcher, IBM Research
Mike has lots of programming experience in different areas ranging from medical equipment to visual simulation, but most of all he likes hacking on Linux kernel and low level stuff. Throughout his career Mike promoted use of free and open source software and made quite a few cont... Read More →
AR

Adrian Reber

Senior Software Engineer, Red Hat
Adrian is a Senior Software Engineer at Red Hat and is migrating processes at least since 2010. At some point he migrated so many processes that he got a PhD for that and since he joined Red Hat he started to migrate containers. Occasionally he still migrates single processes.



Monday October 23, 2017 14:20 - 15:00
Palmovka

14:20

Lightweight Containerization at Facebook - Zoltan Puskas, Facebook
In Facebook's new container system we started to heavily utilize Btrfs, cgroups2 and systemd. The combination of these tools and some additional internal code allowed us to create a lightweight, fast and efficient container system that along with our schedulers allows us to deploy, migrate and manage the life cycle of different jobs on a large scale.

We would like to present an effective alternative to existing systems (e.g. Docker, Kubernetes, etc.) that will grant a broader choice to anyone involved in containers. Our solution is aimed at systems where full virtualization is not required, making more efficient usage of available hardware and enabling fast startup/shutdown times, easy debugability, and good fault tolerance while still providing proper isolation at large scales.

Speakers
ZP

Zoltan Puskas

Production Engineer, Facebook
I'm Zoltan Puskas, currently working for Facebook's Infrastructure group improving the company's internal container systems. I previously worked on teams building distributed ETL systems. Before Facebook I have worked on embedded and HPC systems in the spaces of digital signage... Read More →



Monday October 23, 2017 14:20 - 15:00
Chez Louis

14:20

Migrating Legacy Monoliths to Cloud Native Microservices Architectures on Kubernetes - Dan Kohn, Cloud Native Computing Foundation
Cloud Native architectures, such as those built on Kubernetes, are envied for their ability to segment different parts of an application into microservices that can separately be containerized, so that each microservice can be written in its own language, with its own framework, and its unique set of libraries. This has been shown to significantly increase developer and team productivity by decoupling dependencies between different parts of a team.

However, most legacy code consists of a large monolithic code base, not microservices applications. And, the lesson of second system syndrome is that many attempted code rewrites will end in failure, as the first system will evolve faster than the replacement system can be developed to displace it. A cloud native architecture that is only useful for new greenfield deployments is not very useful at all. So, how can monoliths evolve into modern cloud native architectures, in order to take advantage of the dev ops revolution and the resulting developer productivity gains?

This talk will look at several real-world cases where existing monolithic, legacy applications deployed in multi-billion dollar companies were slowly evolved into cloud native microservices architectures on Kubernetes. They did so step-by-step, shaving off individual pieces of functionality into new applications that were packaged into new microservices applications, until the original monolith was eventually cut down to a reasonable size. In doing so, they demonstrated that the cloud native architecture is suitable across most categories of computing, including both greenfield and brownfield development.

Speakers
avatar for Dan Kohn

Dan Kohn

Executive Director, Cloud Native Computing Foundation
Dan is Executive Director of the Cloud Native Computing Foundation, which sustains and integrates open source technologies like Kubernetes and Prometheus. He also helped create and launch the Linux Foundation's Core Infrastructure Initiative as an industry-wide response to the se... Read More →


Monday October 23, 2017 14:20 - 15:00
Karlin I

15:10

Everything You Need to Know About Kubernetes Persistent Storage - Kenny Coleman, {code}
Applications need data. Containers remain an ephemeral technology but we don't want our data to disappear either. So how does Kubernetes do it?

This session will examine all the individual pieces required for creating persistent applications in Kubernetes. You will learn about in-tree and out-of-tree storage drivers, PersistentVolumes (PV), PersistentVolumeClaims (PVC), Dyanamic Provisioning, how to use all of these in your Deployments and Pods, high availability, and what happens to the volumes when you delete objects. Get ramped up on everything you need to know about using persistent storage for your applications in Kubernetes

Speakers
avatar for Kendrick Coleman

Kendrick Coleman

Developer Advocate, {code}
Kendrick Coleman is a reformed sysadmin and virtualization junkie. His attention has shifted from hypervisors to cloud native platforms focused on containers. In his role as a Developer Advocate for {code} by Dell EMC, he works with a team to write solutions for running persisten... Read More →



Monday October 23, 2017 15:10 - 15:50
Palmovka

15:10

From Zero to Hero: Scalable 4K Video Encoding with Kubernetes and Other Open Source Tools - Hygo Reinaldo, Xite Networks International
From zero to hero: Scalable 4k video encoding with kubernetes and other open source tools (Hygo Reinaldo, Xite Networks) - Encoding 4k videos can be very challenging due to aspects like encoding time, price, scaling, managing huge amount of data, failure recovery and reliability. In this presentation, Hygo explains a real life case of migration from a non-reliable On-premises platform and proprietary encoding software to a new continuous delivery platform running on cloud and using open source tools like kubernetes, linux, docker containers and ffmpeg for fast and efficient encoding 4k videos process, 15x faster encoding than On-premises. It's a great example of how powerful the right set of open source tools can be when implemented together.

This presentation it's also a good opportunity for professionals to get more familiarized with kubernetes, including it's core components and main features, containers and good DevOps practices.

Speakers
avatar for Hygo Reinaldo

Hygo Reinaldo

Senior Cloud Engineer, Xite Networks International
Hygo Reinaldo is a Senior Cloud Engineer with more than 12 years experience in Linux and Networking administration. Open Source it's on his blood. He has been automating all the daily boring stuff with Python and bash. Nowadays, he builds continuous delivery platforms using the m... Read More →



Monday October 23, 2017 15:10 - 15:50
Chez Louis

15:10

High Performance Microservices on Linux with Apache Thrift - Jens Geyer, VSX & Randy Abernethy, RX-M LLC
The world is rapidly adopting cloud native approaches to software development, reaping the synergies produced by combining microservices, Linux container technology and dynamic application orchestration. Containers offer performance gains and simplified operations, however maximizing microservice performance involves API level considerations. In this demonstration and talk we will take a look at how Apache Thrift can be used to generate material performance gains in container packaged microservices. We'll contrast Apache Thrift with REST and gRPC, describing the strengths and weaknesses of each. We'll also demonstrate how to seamlessly package Apache Thrift microservices with Docker and how to scale them with Kubernetes on a Linux cluster. The talk will conclude with a demonstration of microservice interface evolution and rolling upgrades.

Speakers
RA

Randy Abernethy

Managing Partner, RX-M, LLC
Tech Entrepreneur, coder, startup adviser, financial technology pioneer, Apache Thrift committer, author and highly experienced Destiny guardian.
avatar for Jens Geyer

Jens Geyer

Senior Software Engineer, VSX Vogel Software GmbH
Addicted to software, full stack developer, active Thrift committer & PMC member and technical writer. Committed to the goal to create high-quality, scalable software efficiently. Working for customers in the EU and worldwide. Love to learn, teach and laugh.



Monday October 23, 2017 15:10 - 15:50
Karlin I

16:20

From Dockerfiles to Ansible Container - Tomas Tomecek, Red Hat
Come and discover how you can utilize Ansible language paired with ansible-container tool for a complete lifecycle of your containerized project. This talk contains lessons learnt from turning a docker-compose & Dockerfile based project into ansible-container. In this session you will see: real examples, real problems, hopefully solutions and fresh news.

Speakers
avatar for Tomas Tomecek

Tomas Tomecek

Senior Software Engineer, Red Hat
Engineer. Hacker. Speaker. Tinker. Red Hatter. Likes containers, linux, open source, python 3, rust, zsh, tmux.



Monday October 23, 2017 16:20 - 17:00
Palmovka

16:20

GPU, USB, NICs and Other Physical Devices in Your Containers - Stéphane Graber, Canonical Canada Ltd.
The very definition of a container is that it's a set of processes, or in this case full operating system which is sharing the kernel with the host machine. This opens a full array of possibilities as far as what can be shared between
host and container.

This talk will be covering some of the most common use cases, such as sharing one or multiple GPUs with a container for compute use, accessing USB devices or physical network interfaces. Then go into slightly
weirder cases of kernel device passthrough and see what can be done in such containers.

Outside of the obvious GPU compute use case, device passthrough can also be used to consolidate a number of distinct, mostly idle or old machines into just a single one, including any custom hardware that they may
have attached to them and with very little hassle. It's also ideal for testing environments with hardware needs.

Speakers
avatar for Stéphane Graber

Stéphane Graber

Technical Lead, Canonical Canada Ltd.
Stéphane Graber works as the technical lead for LXD at Canonical Ltd. He is the upstream project leader for LXC and LXD and a frequent speaker and track leader at various containers and other Linux related events. | | Stéphane is also a long time contributor to the Ubuntu Li... Read More →



Monday October 23, 2017 16:20 - 17:00
Chez Louis

16:20

Highway to Helm: Deploying Kubernetes Native Applications - Michelle Noorali & Matt Butcher, Microsoft
Kubernetes has gained unprecedented traction in the last few years. This talk will explore how Helm, the package manager for Kubernetes, streamlines the on boarding and managing of applications running on Kubernetes. Kubernetes packages, called Charts, provide a way to deploy configurable, out-of-the-box applications, or package your own applications. In this demo-led session, we’ll show how you can use Helm to improve your deployment workflows, best practices for creating and configuring Kubernetes Charts, and lessons we’ve learned building Helm along the way.

Speakers
avatar for Matt Butcher

Matt Butcher

Helm Lead, Microsoft
Matt Butcher is a principal engineer at Microsoft, where he leads the open source Kubernetes Helm project. Matt has published 8 technical books, as well as the Illustrated Children's Guide to Kubernetes. He has contributed to hundreds of open source projects. Matt holds a PhD in... Read More →
avatar for Michelle Noorali

Michelle Noorali

Software Engineer, Microsoft Azure
Michelle is a software engineer on the Azure Container Service team at Microsoft and a core maintainer on the Kubernetes Helm project. She co-leads SIG-Apps which is the Kubernetes special interest group for running and managing applications and workloads on Kubernetes. She has p... Read More →


Monday October 23, 2017 16:20 - 17:00
Karlin I
  • Experience Level Any

17:10

Containerd Internals: Building a Core Container Runtime - Stephen Day, Docker & Phil Estes, IBM
Containerd is the core container runtime used in Docker to execute containers and distribute images. It was designed from the ground up to support the OCI image and runtime specifications. The design of containerd is carefully crafted to fit the use cases of modern container orchestrators like Kubernetes and Swarm. In this talk, we dive into design decisions that help containerd meet a diverse set of requirements for a growing container world. Developing an understanding of the decoupled components will provide attendees a grasp where they can leverage functionality in their platforms. By slicing the components of a container runtime into the right pieces, integrators can choose only what they need.

Speakers
avatar for Stephen Day

Stephen Day

Senior Software Engineer, Docker
Stephen Day is a software engineer at Docker. His many contributions to Docker ecosystem projects include SwarmKit and the version 2 specification for the Docker Registry HTTP API, and evolving the available models for container image distribution. He currently works on container... Read More →
avatar for Phil Estes

Phil Estes

Senior Technical Staff, Office of the CTO, IBM
Phil is a Senior Technical Staff Member in the office of the CTO of IBM Cloud. Phil is a core contributor and maintainer on the Docker engine project where he has contributed key features like user namespace support and multi-platform image capabilities. Phil is also a founding m... Read More →



Monday October 23, 2017 17:10 - 17:50
Palmovka

17:10

OpenSDS Meets Kubernetes Service Catalog - Howard Huang, Huawei
OpenSDS is a new Linux Foundation collaborative project that was established late 2016. OpenSDS aims to provide a software defined storage management framework through an intent driven API, policy driven orchestration, and distributed southbound hub that enables vendor or open source solution.

In this topic, we will demonstrate our latest effort on providing OpenSDS as a service broker to Kubernetes using the Service Catalog mechanism. We will also show that by utilizing OpenSDS as a out-of-band enhanced storage service, it could provide Kubernetes an interesting storage option for the user.

Speakers
HH

Howard Huang

Standard Manager, Huawei
I'm currently serving as open source and standard community operation manager for Huawei. I have been involved with communities/organizations such as OpenStack, OpenSDS, OPNFV, CNCF, ETSI, SNIA and so forth. I'm now the PTL of OpenStack Cyborg project, OPNFV Parser project and th... Read More →


Monday October 23, 2017 17:10 - 17:50
Karlin I

17:10

Unikernelized Real Time Linux & IoT - Tiejun Chen, Vmware
Unikernel is a novel software technology that links an application with OS in the form of a library and packages them into a specialized image that facilitates direct deployment on a hypervisor. But why these existing unikernels have yet to gain large popularity broadly? I'll talk what challenges Unikernels are facing, and discuss exploration of if-how we could convert Linux as Unikernel, and IoT could be a valuable one of use cases because the feature of smaller size & footprint are good for those resource-strained IoT platforms. Those existing unikernels are not designed to address those IoT characters like power consumption and real time requirement, and they also doesn't support versatile architectures. Most existing Unikernels just focus on X86/ARM. As a paravirtualized unikenelized Linux, especially Unikernelized Real Time Linux, really makes Unikernels to succeed.

Speakers
avatar for Tiejun Chen

Tiejun Chen

Staff Engineer, VMware
I’m a staff engineer from ATC, Advanced Technology Center, VMware China. Currently we’re trying to work out our own Unikernel & IoT & Serverless project. Before join VMware, I worked at Wind River where I was responsible of developing Wind River Linux BSP, Kernel features and... Read More →


Monday October 23, 2017 17:10 - 17:50
Chez Louis

18:00

BoF: Open Source Delivered in Containers and Their Licenses - Gergely Csatari, Nokia
Linux containers are a great way to deliver (not just) open source software and they are used everywhere for this purpose. From open source aspect the problem with container images is that they hide what kind of open source software is in the image, and what are the licenses of the software. When an organization complies with open source licenses, it needs to check and ensure the license terms of all the open source software used in the organization and follow accordingly (e.g. place licenses to product documentation or share source code), but the current situation makes this laborious and not effective. In this BoF I would like discuss if it is a good idea to collect the open source software and their licenses into the metadata of the container images. If it turns out to be a good idea I would like to ask for some advices how to make the first steps to design and implement this.

Speakers
avatar for Gergely Csatari

Gergely Csatari

Engineer, Nokia
As a product architect worked on the modernizing a core network element in Nokia-s portfolio. In the process we moved from propitiatory hardware and software to containers and cloud native architecture. In the last two years moved to a team which is responsible to help the usage... Read More →



Monday October 23, 2017 18:00 - 18:45
Palmovka

18:00

BoF: Why Containers Are Really Just Fancy Files and Fancy Processes - Scott McCarty, Red Hat
It took years to boil containers down to this simple explanation - containers are just fancy files and fancy processes. Let me explain…Containers, in a way, are not terribly different than regular programs. They can be moved around, started, and stopped. But, what is a program when you really think about it? Well, it depends on what it’s doing.

Speakers
avatar for Scott McCarty

Scott McCarty

Container Evalngelist, Red Hat
At Red Hat, Scott McCarty helps to educate IT professionals, customers, and partners on all aspects of Linux containers, from organizational transformation to technical implementation, and works to advance Red Hat's go-to-market strategy around containers and related technologies... Read More →



Monday October 23, 2017 18:00 - 18:45
Chez Louis
 
Tuesday, October 24
 

10:55

Developer Tools for Kubernetes - Michelle Noorali & Matt Butcher, Microsoft

The rise of containers and Kubernetes has made deploying and upgrading applications as well as operating clusters of machines much easier. However, it's still daunting to develop applications in this new world. Developers have to learn lots of new information, tools, and technologies before they can even begin to productive. In this session, we will talk about open source tools that make developing applications for Kubernetes easier.


Speakers
avatar for Matt Butcher

Matt Butcher

Helm Lead, Microsoft
Matt Butcher is a principal engineer at Microsoft, where he leads the open source Kubernetes Helm project. Matt has published 8 technical books, as well as the Illustrated Children's Guide to Kubernetes. He has contributed to hundreds of open source projects. Matt holds a PhD in... Read More →
avatar for Michelle Noorali

Michelle Noorali

Software Engineer, Microsoft Azure
Michelle is a software engineer on the Azure Container Service team at Microsoft and a core maintainer on the Kubernetes Helm project. She co-leads SIG-Apps which is the Kubernetes special interest group for running and managing applications and workloads on Kubernetes. She has p... Read More →


Tuesday October 24, 2017 10:55 - 11:35
Karlin I

10:55

Kubernetes Day 2: Monitoring - Frederic Branczyk, CoreOS
There are plenty of ways to setup a Kubernetes cluster, kubeadm, bootkube, kargo, and a lot more, but what happens after setup? Monitoring your cluster health as well as the workload running in the cluster is one of the most important aspects of operating a Kubernetes cluster.

The Prometheus monitoring system is a match made in heaven for monitoring Kubernetes clusters. Not only are many concepts similar, but Prometheus is able to keep up with the dynamic environment that Kubernetes holds.

In this talk Frederic will describe and showcase best practices of end to end monitoring using Prometheus with the Prometheus Operator, from metric collection to notifying operators about alerts.

Speakers
avatar for Frederic Branczyk

Frederic Branczyk

Software Engineer, CoreOS
Frederic Branczyk is an engineer at CoreOS, where he contributes to Prometheus and Kubernetes to build state-of-the-art modern infrastructure and monitoring tools. Frederic discovered his interest in monitoring tools and distributed systems in his previous jobs, where he used mac... Read More →



Tuesday October 24, 2017 10:55 - 11:35
Palmovka

10:55

Tutorial: An Introduction to Stateful Applications on #K8s - Steve Wong & Kenny Coleman, {code}

Steve and Kenny will address how Kubernetes storage works in the context of supporting stateful applications. The talk will cover how Kubernetes storage is implemented now, and what's next for storage in future releases. Also addressed will be mechanisms like StorageClasses and StatefulSets which can provide advanced features when deploying stateful applications. The talk will include a demonstration, with audience participation, showing how a stateful application can be deployed in a platform neutral way, and unchanged way to both a public and an on-prem cloud.


Speakers
avatar for Kendrick Coleman

Kendrick Coleman

Developer Advocate, {code}
Kendrick Coleman is a reformed sysadmin and virtualization junkie. His attention has shifted from hypervisors to cloud native platforms focused on containers. In his role as a Developer Advocate for {code} by Dell EMC, he works with a team to write solutions for running persisten... Read More →
avatar for Steve Wong

Steve Wong

Strategic Open Source Partner Engineer, {code}
Steve Wong is an Open Source Engineer with the {code} team. Steve has been participating in the Apache Mesos, DC/OS, Kubernetes, and REX-Ray projects.



Tuesday October 24, 2017 10:55 - 12:25
Chez Louis

11:45

Kubernetes. In Real Life. - Ian Crosby, Container Solutions
When developing Cloud Native applications, a robust orchestration layer is crucial. Deployment and management of your containerised applications is not something which can be performed manually. Of the many tools which aim to solve this problem Kubernetes has emerged as a leader in the space.

While the underlying technologies have existed for much longer, Kubernetes itself is still relatively young. There are many resources available to show you how to ‘quickly’ get up and running, But when it comes to running Kubernetes in production, it is still a learning process.

In this talk I will take a look at the best practices as well as the common mistakes we have seen while working with companies who are running Kubernetes in production. From running your own local highly available Kubernetes cluster to leveraging a cloud hosted solution, I will share the lessons we’ve learned, as well as the most important points to consider when looking to take Kubernetes into the wild.

Speakers
avatar for Ian Crosby

Ian Crosby

Senior Engineer, Container Solutions
Ian Crosby is a long time software developer, enthusiast, and advocate. He cut his teeth developing military defence systems and has since aimed to use his powers for good. In his current role as Senior Engineer at Container Solutions in Amsterdam he assists companies move into t... Read More →


Tuesday October 24, 2017 11:45 - 12:25
Palmovka

11:45

Selecting the Right Persistent Storage Option for Apps in Containers - Bipin Kunal and Niels de Vos, Red Hat
No matter where an application is running, it will most likely need some form of storage. When running application in container environment, persistent storage is needed. There are plenty of storage plugins available which can provide persistent storage for application containers. With plenty of persistent storage available, it becomes evident to understand the different access modes and how it works so that applications can make better use of persistent storage. Join us and be able to choose right persistent access mode for your applications. We will take you through : what all various persistent storage access method we have, how access mode suites your workload, and how these modes works internally.

Speakers
avatar for Bipin Kunal

Bipin Kunal

Senior Software Maintenance Engineer, Red Hat
Bipin is product lead for gluster support and maintenance engineer at Red Hat. He works on various customer issues with gluster and its integration with virtualization platform and openshift container platform. He works closely with gluster and container native storage engineerin... Read More →
avatar for Niels de Vos

Niels de Vos

Senior Software Engineer, Red Hat
Niels is a core-developer and maintainer for Gluster. He is employed by Red Hat and works together with other teams who provide professional support for Red Hat Gluster Storage. The main areas where Niels is active include network protocols, low-level/Operating Systems improvemen... Read More →



Tuesday October 24, 2017 11:45 - 12:25
Karlin I
  • Experience Level Any

14:05

Kubernetes with Mixed Linux and Windows Deployments - Alessandro Pilotti, Cloudbase Solutions and Michael Michael, Apprenda
Windows Server 2016 introduced support for Docker containers, so the next logical step was to have Kubernetes running on Windows!

The #sig-windows team did a great job in overcoming portability and other issues, with the ultimate result of having a fully functional Windows Kubelet. The networking stack in particular proved to be tricky, but enter Open vSwitch and OVN to save the day and allow cross-platform networking across Linux and Windows nodes with heterogeneous deployments.

The result? Think about containerized ASP.NET Windows applications talking to databases or other services running on Linux pods, all orchestrated by Kubernetes!

During this session we will show how this whole deployment works on premise and on public clouds, with plenty of demos!

Speakers
avatar for Michael Michael

Michael Michael

Sr. Director, Apprenda
Michael Michael (or M2 as he's known) is Apprenda's Senior Director of Product Management. Michael also leads the Kubernetes SIG-Windows which is tasked to bring Windows Server support natively to Kubernetes. He is an experienced, detail-oriented software engineer with problem-so... Read More →
avatar for Alessandro Pilotti

Alessandro Pilotti

CEO, Cloudbase Solutions
Alessandro Pilotti is the CEO of Cloudbase Solutions, a company focused on cloud computing interoperability, contributing in particular the OpenStack Windows and Hyper-V components and the Open vSwitch support for Hyper-V and Windows Containers. Alessandro is a Microsoft Cloud an... Read More →



Tuesday October 24, 2017 14:05 - 14:45
Palmovka

14:05

Serverless - Is It For Your Organization? - Michael Bright, HPE
This talk will examine the Serverless phenomenon, popularized by AWS Lambda but now proposed by many public cloud providers such as Google and Microsoft.

We’ll look at what Serverless is, what advantages it brings to developers and operators as well as why the cloud providers would offer such a service.

The cloud provider frameworks tend to be specific to their environment but open source frameworks exist to facilitate deployment to multiple cloud providers or to implement independent frameworks without lock-in. We’ll compare them.

Let’s also look at what are the real-world services which can be built with the Serverless paradigm. Learn about the event driven programming pattern and the importance of APIs to implement interesting use cases

There are many Open Source Serverless implementations - some aim to emulate AWS Lambda for testing or deployment, whilst other projects such as OpenWhisk and FaaS provide much richer execution environments or the ability to interwork with serveral cloud backends.

Learn how to get started with this technology by deploying your own Server for Serverless ;-), or just using online resources.

Learn also about the latest developments from Twilio and AWS in this fast moving domain

Speakers
avatar for Michael Bright

Michael Bright

Solution Architect, HPE
Michael Bright, is a Solution Architect working for HPE in the domains of HybridIT and NFV. Based in Grenoble, France, he runs a Python user group, and is a co-organizer of the Docker and FOSS Meetup groups. He has a keen interest in Containers, Orchestration, Unikernels and Serverless... Read More →



Tuesday October 24, 2017 14:05 - 14:45
Karlin I

14:05

The New Prometheus Storage Engine - Fabian Reinartz, CoreOS, Inc.
Prometheus was built as a monitoring system with Cloud Native environments in mind.

Orchestration systems such as Kubernetes are rapidly gaining traction and unlock features of highly dynamic environments, such as frequent rolling updates and auto-scaling, for everyone. This inevitably puts new strains on Prometheus as well.

In this talk we explore what the challenges are and how we are addressing them by building a new storage layer from the ground up.

The new design enables consistent performance with thousands of concurrent writers inserting millions of new samples per second on a single machine.

We will discuss how the new approach significantly reduces resource requirements for CPU, memory, and disk IO alike. At the same time its more efficient indexing techniques increase query performance and allow us to gracefully handle high turnover rates of monitored application instances.

Speakers
avatar for Fabian Reinartz

Fabian Reinartz

Software engineer, CoreOS, Inc.
Fabian Reinartz is an engineer at CoreOS and one of the Prometheus core developers. | Previously, he was a production engineer at SoundCloud.


Tuesday October 24, 2017 14:05 - 14:45
Chez Louis

14:55

Simplify Your Kubernetes Deployments with Helm - Lukas Eichler, utinity GmbH
Kubernetes is moving to be a core technology in the new cloud space. Despite seeing a rapid adoption from different projects, actually using Kubernetes in an efficient way for complex problems is still a complicated task. Lukas Eichler will show in this presentation a solution for this by using the official Kubernetes application package manager "Helm".
He will give an introduction into using Helm and show how to easily manage multiple deployment stages of your application on Kubernetes with it. In Addition he will present a Continuous Deployment pipeline with Helm and more advanced deployment features like setting up complete staging environments with one command, canary deployments and zero downtime deployments.

Speakers
avatar for Lukas Eichler

Lukas Eichler

Cloud Architect, utinity GmbH
I am a Cloud Architect at utinity, Germany where I help Clients build cool projects based on cloud native solutions.


Tuesday October 24, 2017 14:55 - 15:35
Karlin I

14:55

Unikernels: What Have They Been Up To? - Amir Chaudhry, Docker
Unikernels represent an extreme approach to application specialisation, and have typically been associated with virtual machines running on hypervisors. However, the technology is much more widely useful, can run on different targets, and has steadily made its way into other projects and products.

In this talk we'll review the progress across the unikernel ecosystem and highlight advances of the most active open-source projects:
- MirageOS, which has improved the dev experience and supports new cloud targets.
- HaLVM, which created a product to help detect network intrusions.
- IncludeOS, which has made rapid progress and introduced POSIX compatibility.

We'll also discuss how the underlying ideas behind unikernels, of minimalism, composability, and security, have found their way into other projects and products, and the questions this poses for building maintainable systems.

Speakers
AC

Amir Chaudhry

Member of Technical Staff, Docker
Amir Chaudhry is the Community Manager for MirageOS and works at Docker to make unikernels accessible to developers everywhere. Most of his time is spent on open source efforts and he's a big fan of automation to maximise developer impact. In previous lives he led operations at a... Read More →


Tuesday October 24, 2017 14:55 - 15:35
Chez Louis

14:55

Using BPF in Kubernetes - Alban Crequy, Kinvolk
In this talk, I will present different use cases for using BPF in a Kubernetes cluster. BPF is a Linux in-kernel virtual machine and there are different kinds of BPF programs for different subsystems that will be considered: kprobes, traffic control, cgroups, LSM. I’ll follow with concrete examples, such as Weave Scope’s HTTP Statistics plugin. Finally, I’ll share tips and tricks on how to develop your own BPF programs in Kubernetes with the libraries bcc and gobpf, and show ways of easily test those with SemaphoreCI and rkt.

Speakers
avatar for Alban Crequy

Alban Crequy

CTO, Kinvolk
Originally from France, Alban currently lives in Berlin where he is a CTO & co-founder at Kinvolk. He is a contributor to rkt, a container runtime for Linux, Weave Scope, a container visualization & monitoring tool, and is actively working on BPF-related projects. Before falling... Read More →



Tuesday October 24, 2017 14:55 - 15:35
Palmovka

16:05

Ten Layers of Container Security - Daniel Oh, Red Hat
In this session, we'll identify the 10 most common layers in a typical container deployment, and the best ways to build security into each layer. These layers include: 1) container host: Multi-tenancy at the container layer, 2) content security container registries, and secure access to container images, 3) build process controlling what can be deployed with a cluster container platform authentication and authorization, 4) networking isolation, 5) attached storage API management, 6) endpoint security, 7) SSO roles, 8) access management in a cluster federation. Increasingly complicated applications and demands for faster development are putting even more pressure on infrastructure, IT teams, and processes. It's more important than ever to have the right technologies in place. Containers deliver applications faster and scale them more rapidly.

Speakers
avatar for Daniel Oh

Daniel Oh

Senior Specialist Solution Architect, Red Hat
Daniel Oh is Senior Specialist Solution Architect, Agile & DevOps Community of Practice Manager at Red Hat and He's specialized at Microservices, Container, Agile & DevOps, JBoss, PaaS, and OpenShift across multiple industries. He's been delivering technical seminar, workshop to... Read More →



Tuesday October 24, 2017 16:05 - 16:45
Chez Louis
  • Experience Level Any

16:05

Using Containers and Continuous Packaging to Build Native Fossology Packages - Bruno Cornec, Hewlett Packard Enterprise and Michael Jaeger, Siemens
During last LinuxCon, Bruno presented the continuous packaging approach used
with a tool like project-builder.org to package upstream projects for hundreds
of Linux distributions tuples in an automatic manner. Discussions happened
there with the FOSSology project which wanted to benefit from this approach to
produce Linux packages for their users. Both projects have since that worked
jointly to make it a reality, and want to share their return of experience on
this journey, benefits obtained, issues encountered and how they were fixed.
After a reminder of the basics on continuous packing, the presentation will
give a concrete example of what was setup using the infrastructure of the
LinuxFoudation to enable the automatic creation of rpm and deb packages for
FOSSology, launched during the continuous integration process already in
place. A demo of the build process will also be made.

Speakers
avatar for Bruno Cornec

Bruno Cornec

Open Source & Linux Technology Strategist, Hewlett Packard Enterprise
Bruno Cornec has been managing various Unix systems since 1987 and Linux since 1993 (0.99pl14). Bruno first worked 8 years around Software Engineering and Configuration Management Systems in Unix environments. Since 1995, he is Open Source and Linux (OSL) Strategist and Evangelis... Read More →
MJ

Michael Jaeger

Senior Research Scientist Open Source Software, FOSSology.org / Siemens AG
Michael is one of the maintainers of FOSSology and has founded the SW360 project (check them on Github!), both in the area of OSS handling w.r.t. license compliance and component management. At Siemens Corporate Technology in Munich, Germany, Michael worked in several roles as pr... Read More →



Tuesday October 24, 2017 16:05 - 16:45
Palmovka

16:05

Why mount() is a Liability for Container Engines, and How They Address It - Tycho Andersen, Docker Inc
One of the most obvious features of containers to new users is that they allow for isolated root filesystem environments. The way container engines achieve this is through careful manipulation mount namespaces and mount sharing flags. If one of these steps is handled incorrectly, attackers may be able to control the host. Further, even if mounts are configured correctly, things like binding or moving mounts, or simply creating a whole new copy of a virtual filesystem can make host filesystem security more difficult to reason about. And on top of that, malicious users could also exploit unknown bugs in filesystem block parsers.

While most container engines heavily lock down mount() by default, it is useful to understand *why* this is the case and what possible exploits look like. In this talk, I’ll cover basics of how a container’s rootfs is configured, as well as how mount flags interact with namespaces, and what container engines do about all this.

Speakers
TA

Tycho Andersen

Software Engineer, Docker, Inc
Tycho is an engineer at Docker working on LinuxKit, a toolkit for building container-focused host operating systems out of Linux. In his spare time he rides bikes and does improv comedy. Tycho has been fortunate to speak at a number of industry conferences including linux.conf.au... Read More →


Tuesday October 24, 2017 16:05 - 16:45
Karlin I

16:55

OpenSDS and Hyperscale Storage Design at NTT and Yahoo Japan - Steven Tan, Huawei & Kei Kusunoki, NTT & Yusuke Sato, Yahoo Japan
OpenSDS is an open-source project created to address the storage challenges, particularly in scale-out cloud native environments, with heterogeneous storage platforms. In this session, we will introduce OpenSDS architecture and design. Kei, from NTT Communications, and Yusuke from Yahoo Japan will also be presenting their storage designs, and the different challenges they faced when approaching designing for hyperscale.

Speakers
YS

Yusuke Sato

Engineer, Yahoo Japan Corporation
ST

Steven Tan

Huawei
Steven Tan is Chief Architect for Storage Management and Storage-as-a-Service at Huawei. He is responsible for SDS management strategies, architecture, solutions, partnerships and open-source collaboration. Steven brings over 20 years of engineering experience spanning cloud, virtualization, storage, data security, and data protection. Prior to Huawei, he served as VP of Engineering at ProphetStor Data Services where he led engineering to build the... Read More →


Tuesday October 24, 2017 16:55 - 17:35
Palmovka

16:55

Using Docker Containers to Serve Deep Learing Predictions at Booking.com - Sahil Dua, Booking.com
Each day, over 1.2 million room nights are reserved on Booking.com. That gives us access to huge amount of data which we can utilise in order to provide a better experience to our customers.

We understand that while there are a lot of machine learning frameworks and libraries available, putting the models in production at large scale is still a challenge. I’d like to talk about how we took on the challenge of deploying deep learning models in production: how we chose our tools and developed our internal deep learning infrastructure. I’ll cover how we do model training in Docker containers, distributed TensorFlow training in a cluster of containers, automated re-training of models and finally - deployment of models using Kubernetes. I’ll also talk about how we optimise our model prediction infrastructure for latency or throughput depending on the use case.

Speakers
avatar for Sahil Dua

Sahil Dua

Software Developer, Booking.com
Sahil is a software developer at Booking.com on the deep learning team. His current adventure involves leveraging container infrastructure to help Booking.com’s internal teams in taking advantage of deep learning techniques at scale. An open source software enthusiast, Sahil i... Read More →



Tuesday October 24, 2017 16:55 - 17:35
Chez Louis

16:55

Zombie Kubernetes! : Making Nodes Rise From the Dead - Michael Johnston, Supergiant.io
How to install Kubernetes using immutable configuration. Remove points of provisioning failure by leveraging cloud-config for configuration.

Speakers
MJ

Michael Johnston

Devops Engineer, Supergiant.io
Mike Johnston is an Infrastructure engineer with over 15 years of experience developing stable and performant infrastructure for Wal-Mart Stores Inc. and startups in northwest Arkansas. Mike is also one of the core creators of Supergiant, a infrastructure management tool for Kube... Read More →



Tuesday October 24, 2017 16:55 - 17:35
Karlin I
 
Wednesday, October 25
 

11:15

Connecting Brokers to Kubernetes Clusters with the Kubernetes Service Catalog and the Open Service Broker API - Aaron Schlesinger, Microsoft
Kubernetes enables complex, powerful and reliable microservice based applications. These applications still lack a standard way to connect to the vast selection of services on the market.

The service-catalog project connects Open Service Broker API (OSB API) compatible brokers to any Kubernetes cluster, providing standardized integration with multiple clouds and vendors.

In this presentation, I’ll show exactly how service-catalog achieves this elusive standardization along with the OSB API. I’ll detail the architecture, where the project is, and how we got to where we are. And, of course, I’ll show the service-catalog in action with a demo. And to conclude, I’ll explain how you can get involved with the Kubernetes Special Interest Group (SIG) that is building service-catalog.

Speakers
AS

Aaron Schlesinger

Sr. Software Engineer, Microsoft Azure, Microsoft
Aaron Schlesinger is a Sr. Software Engineer at Microsoft where he works on Kubernetes and related projects. He is a co-lead on the Kubernetes Service-Catalog special interest group, and is deeply involved with connecting external services to Kubernetes clusters in a manageable w... Read More →


Wednesday October 25, 2017 11:15 - 11:55
Chez Louis

11:15

Deep Dive in Docker Overlay Networks - Laurent Bernaille, D2SI
The Docker network overlay driver relies on several technologies: network namespaces, VXLAN, Netlink and a distributed key-value store. This talk will present each of these mechanisms one by one along with their userland tools and show hands-on how they interact together when setting up an overlay to connect containers.

The talk will continue with a demo showing how to build your own simple overlay using these technologies.

Speakers
LB

Laurent Bernaille

CTO, D2SI
Laurent Bernaille is a solution architect specialized in cloud, containers, and automation. He is an open source enthusiast and has lately been focusing on helping organizations improve their deployment pipelines. He is really interested in how these new technologies are transfor... Read More →



Wednesday October 25, 2017 11:15 - 11:55
Palmovka

11:15

No One Puts the JVM in a Container - Joerg Schad & Johannes Unterstein, Mesosphere
The current craze of Docker has everyone sticking their processes inside a container... but do you really understand cgroups and how they work? Do you understand the difference between CPU Sets and CPU Shares?
Spark is a Scala application that lives inside a Java Runtime, do you understand the consequence of what impact the cgroup constraints have on the JRE?
This talk starts with a deep understand of Java's memory management and GC characteristics and how JRE characteristics change based on core count.
We will continue the talk looking at containers and how resource isolation works. The session will detail specifically the difference between CPU sets and CPU shares and memory management.
The session will close with a deep understanding of the consequences of running the JRE in a CPU share environment and the potential for pseudo-random behavior of running in a heterogeneous datacenter.

Speakers
avatar for Jörg Schad

Jörg Schad

Software Engineer, Mesosphere
Jörg is a software engineer at Mesosphere in Hamburg. In his previous life he implemented distributed and in memory databases and conducted research in the Hadoop and Cloud area. His speaking experience includes various Meetups, international conferences, and lecture halls.
avatar for Johannes Unterstein

Johannes Unterstein

Distributed Applications Engineer, Mesosphere
Johannes Unterstein is a Distributed Applications Engineer at Mesosphere in Hamburg where he works on Mesosphere's Marathon project.



Wednesday October 25, 2017 11:15 - 11:55
Karlin I

12:05

Connected Intelligence: Edge-Native Design for IoT Apps and Microservices Beyond the Cloud - Rishikesh Palve, TIBCO
We are entering the next phase of distributed computing where we find ourselves immersed in ubiquitous & cheap compute in the form of IoT devices all around us. This presents an opportunity to evolve design principles for applications and microservices running on these devices. How do we build applications that run natively on the edge devices and interact with cloud? What are the do’s and dont’s for building edge applications? Do cloud-native design principles map directly to edge-native, or does it diverge away in certain areas? How do we leverage machine learning frameworks to embed intelligence in the edge apps? We explore these questions in the context of Project Flogo, an Open Source Integration Framework and real-world Industrial IoT problems.

Speakers
avatar for Rishikesh Palve

Rishikesh Palve

Product Manager, TIBCO
Rishikesh is a Product Manager at TIBCO. He has worked in different groups such as engineering, pre-sales and product management over last 7 years. In his various roles, he has been instrumental in product releases as well as in solution design, architecture and POCs for TIBCO cu... Read More →



Wednesday October 25, 2017 12:05 - 12:45
Karlin I

12:05

Docker, Moby is Killing Your #devops Efforts - Kris Buytaert, Inuits.eu
Containers have been a round for over a decade, Docker for almost half of that, the new hipster tool is touted to be the ultimate devops tool, but is it ? This talk will show that docker sometimes is the antipattern , that it does exactly the opposite of what devops is trying to achieve. Often Docker is effectively widening the gaps between development and operations and reenforcing the silos we have been trying to break down. We'll show how Docker is a nice development tool, but an operational nightmare. This talk is based on real life situations and will focus on both the cultural and the technical aspect of adopting containers. Next to showing the problems Docker brings we will also provide guidelines/example on how to do Docker right, as a team.

Speakers
avatar for Kris Buytaert

Kris Buytaert

Chief Yak Shaver, Inuits.eu
Kris Buytaert is a long time Linux and Open Source Consultant. He's one of instigators of the devops movement, currently working for Inuits | | He is frequently speaking at, or organizing different international conferences | He spends most of his time working on bridging th... Read More →



Wednesday October 25, 2017 12:05 - 12:45
Chez Louis
  • Experience Level Any

12:05

Mixing cgroupfs v1 and cgroupfs v2: Finding Solutions for Container Runtimes - Christian Brauner, Canonical Ltd.
With the release of kernel 4.5 the new cgroupfs v2 API was declared non-experimental. But the missing feature parity between cgroupfs v2 with cgroupfs v1 makes it nearly impossible for container runtimes to use it. Especially before the cpu controller is merged, no runtime is expected to switch to it by default. Nonetheless cgroupfs v2 is slowly making its way into various distributions. This brings with it a new set of problems and challenges which container runtimes must tackle. For example, one of the core problems container runtimes will have to face is how to support running cgroupfs v1 hierarchies inside a container while the host is running a cgroupfs v2 hierarchy and vica versa. This talk will try to outline some of these problems more clearly, and suggest possible solutions and hopefully inspire a fruitful discussion that leads to further solutions or at least helps to identify and specify various problems more clearly.

Speakers
avatar for Christian Brauner

Christian Brauner

Software Engineer, Canonical Ltd.
Christian Brauner is a core developer and maintainer of the LXD and LXC projects and part of the Ubuntu Server team. He's been active in the open source community for a long time and is a regular speaker and moderator at several large events (e.g. 33C3, Linux Plumbers Conference... Read More →



Wednesday October 25, 2017 12:05 - 12:45
Palmovka

14:15

Continuous Integration of an Operating System in Kubernetes - Stef Walter, Red Hat
At Red Hat we use Kubernetes to do continuous integration of an entire operating system, booting tens of thousands of operating systems a day in Kubernetes.

I’ll share some surprising results we found while using Kubernetes in this way. We achieved six times the task density by deploying Kubernetes on the same hardware resources.

We’ll also look at what we had to change in Kubernetes to enable this, including bringing necessary devices into Kubernetes pods. You’ll also see Cockpit based dashboard that lets us jump into any container and diagnose issues or visualize scaling.

Speakers
avatar for Stef Walter

Stef Walter

Operating System Architecture Lead, Red Hat Inc
Stef is an avid open source hacker. He's contributed to over a hundred open source projects, and can be found preaching about continuous integration and working on the Cockpit Linux admin interface. He's a usability freak. Stef lives in Germany, and works at Red Hat.



Wednesday October 25, 2017 14:15 - 14:55
Karlin I

14:15

Docker Adoption Patterns - Ilan Rabinovitch, Datadog
As a SaaS monitoring solution specializing in dynamic infrastructure, Datadog has a unique vantage point into the container usage patterns at a global scale. What patterns are organizations finding most successful in their adoption? Which technologies are being containerized? Join us as we open up the data and discuss real world container, orchestration and scheduler usage in organizations large and small, from startup to enterprise.

Speakers
avatar for Ilan Rabinovitch

Ilan Rabinovitch

Dir, Technical Community, Datadog
Ilan is Director of Technical Community at Datadog. Prior to joining Datadog, he spent a number of years leading infrastructure and reliability engineering teams at organizations such as Ooyala and Edmunds.com. In addition to his work at Datadog, he active in the open-source and... Read More →


Wednesday October 25, 2017 14:15 - 14:55
Chez Louis
  • Experience Level Any

14:15

Docker?!?! But I am a SysAdmin! - Mike Coleman, Docker
Your developers just walked into your cube and said "here's the new app, I built it with Docker, and it's ready to go live". What do you do next? In this session we'll talk about what containers are and what they are not. And we'll step through a series of considerations that need to be examined when deploying containerized workloads - VMs or Container? Bare Metal or Cloud? What about capacity planning? Security? Disaster Recovery? How do I even get started?

Speakers
avatar for Mike Coleman

Mike Coleman

Technology Evangelist, Docker
Mike works at docker as an evangelist specializing in helping the community understand how to operationalize Docker. Prior to joining Docker he worked at Puppet Labs, VMware, Intel, and Microsoft in a variety of product management and technical marketing roles. Before all that Mi... Read More →



Wednesday October 25, 2017 14:15 - 14:55
Palmovka

15:05

Container Orchestration: The State of Play - Michael Bright, HPE
As containers continue to disrupt the IT and Cloud industries competition continues to increase for container technologies and especially container and infrastructure orchestration.

In this talk we will look at why we need Container Orchestration and the main contenders amongst Docker Swarm, Kubernetes and Apache Mesos as well as other upcoming solutions such as Morpheus, Nomad and Cattle.

This is one of the most hotly contended technology areas in computing today with very rapid advances in capabilities amongst the competing open source implementations.

So how should you choose your solution?

We’ll compare and contrast the existing solutions, look at where they are heading and how you can use them in your solution today and tomorrow

A separate hands-on lab session will also be proposed.

Speakers
avatar for Michael Bright

Michael Bright

Solution Architect, HPE
Michael Bright, is a Solution Architect working for HPE in the domains of HybridIT and NFV. Based in Grenoble, France, he runs a Python user group, and is a co-organizer of the Docker and FOSS Meetup groups. He has a keen interest in Containers, Orchestration, Unikernels and Serverless... Read More →



Wednesday October 25, 2017 15:05 - 15:45
Palmovka

15:05

Death of the ESB: 10 Pitfalls in the Trasition to Cloud-Native Integration - Rishikesh Palve, TIBCO
As we move from an ESB world to an API focused microservices world, the need for integration does not go away. In fact, it is arguably far more important today than ever. Based on customer engagements, this session discusses the 10 pitfalls one has to avoid when plotting the transition from an ESB-centric integration architecture to a distributed API-centric microservices architecture on platforms such as CloudFoundry, Kubernetes etc.
Examples of pitfalls
• SOAPful APIs
• Server-side conversations
• Roll your own key management
• Coupling of apps & API lifecycle
• Let’s migrate everything as-is

Speakers
avatar for Rishikesh Palve

Rishikesh Palve

Product Manager, TIBCO
Rishikesh is a Product Manager at TIBCO. He has worked in different groups such as engineering, pre-sales and product management over last 7 years. In his various roles, he has been instrumental in product releases as well as in solution design, architecture and POCs for TIBCO cu... Read More →



Wednesday October 25, 2017 15:05 - 15:45
Karlin I

15:05

Everything You Always Wanted to Know About Object Storage - Orit Wasserman, Red Hat
The rapid growth of unstructured data is fueling the need for a next generation storage that’s flexible, economical, and scalable enough to handle the petabytes of data being created every day. Object storage is the answer!

Ceph is a highly available distributed software defined storage, that provides two object storage interfaces:
  • Rados provides native object storage API using a rich library with C/C++, java, python, go and several others bindings.
  • Ceph RGW (Rados Gateway) provides HTTP REST API that is Amazon S3 and openstack swift compatible.
In this talk I will introduce object storage foundations, best practices and Ceph object storage solution.

Speakers
avatar for Orit Wasserman

Orit Wasserman

Senior software engineer, Red Hat
Orit is a senior engineer at Red Hat, working on object storage (Ceph Rados Gateway).She has an extensive experience with distributed storage systems (block and file systems). | In her previous role she authored and co-maintained live migration for KVM/QEMU. Previously she devel... Read More →



Wednesday October 25, 2017 15:05 - 15:45
Chez Louis

16:15

System Containers - Christan Brauner, Canonical Ltd.
The last couple of years have seen an increased interest in container-related technologies. When people speak of containers they usually mean process containers. They often view a container as being much more comparable to a single process than to a virtual machine. But this is not the only way that containers can be used. The features that the Linux kernel provides allow for much more, up to running a whole Linux system unmodified inside a single container. For the last couple of years the LXD team has worked on just that: making containers behave much more like a virtual machine. This talk is going to introduce the concept of a system container in depth and touch on some of the more challenging aspects one faces when containerizing a whole init system and not just a single process. We will also show how system containers allow you to do things like running other container runtimes like runC, Docker/Moby, and LXD inside them and allow for device passthrough for GPU and USB devices in a much easier way than actual virtual machines can.

Speakers
avatar for Christian Brauner

Christian Brauner

Software Engineer, Canonical Ltd.
Christian Brauner is a core developer and maintainer of the LXD and LXC projects and part of the Ubuntu Server team. He's been active in the open source community for a long time and is a regular speaker and moderator at several large events (e.g. 33C3, Linux Plumbers Conference... Read More →



Wednesday October 25, 2017 16:15 - 16:55
Chez Louis

16:15

Tutorial: Container Orchestration: Hands-On with the Technologies - Michael Bright, HPE
As containers continue to disrupt the IT and Cloud industries competition continues to increase for container technologies and especially container and infrastructure orchestration.

In this tutorial we will demonstrate hands-on experience with the main contenders for Container Orchestration today which are Docker Swarm, Kubernetes and Apache Mesos and upcoming solutions amongst Morpheus, Nomad and Cattle.

This is one of the most hotly contended technology areas in computing today with very rapid advances in capabilities amongst the competing open source implementations.

This tutorial will allow to see what it means to use these technologies and to compare them to appreciate their ease of use and or complexity.

Updated materials will be made available here:
https://github.com/ContainerOrchestration/Labs



Speakers
avatar for Michael Bright

Michael Bright

Solution Architect, HPE
Michael Bright, is a Solution Architect working for HPE in the domains of HybridIT and NFV. Based in Grenoble, France, he runs a Python user group, and is a co-organizer of the Docker and FOSS Meetup groups. He has a keen interest in Containers, Orchestration, Unikernels and Serverless... Read More →


Wednesday October 25, 2017 16:15 - 17:45
Palmovka

16:15

Lab: Linux Container Internals - Scott McCarty & Marcos Entenza Garcia, Red Hat
Have you ever wondered how Linux containers work? How they really work, deep down inside? Questions like: How does sVirt/SELinux, SECCOMP, namespaces, and isolation really work? How does the Docker Daemon work? How does Kubernetes talk to the Docker Daemon? How are container images made? In this lab, we'll answer all these questions and more. If you want a deep technical understanding of containers, this is the lab for you. An engineering walk through the deep, dark internals of the container host, what’s packaged in the container image, and how container orchestration work. You'll get the knowledge and confidence it takes to apply your current Linux technical knowledge to containers.

Speakers
avatar for Marcos Entenza Garcia

Marcos Entenza Garcia

SRE - Open Innovation Labs, Red Hat
At Red Hat's Open Innovation Labs, Marcos Entenza (aka Mak), helps build our Push Button Infrastructure that we use to accelerate customer residencies. He is part of the Consulting Team, where he has been played Consultant and Architect roles for Customer's engagements, helping E... Read More →
avatar for Scott McCarty

Scott McCarty

Container Evalngelist, Red Hat
At Red Hat, Scott McCarty helps to educate IT professionals, customers, and partners on all aspects of Linux containers, from organizational transformation to technical implementation, and works to advance Red Hat's go-to-market strategy around containers and related technologies... Read More →



Wednesday October 25, 2017 16:15 - 17:45
Congress Hall III

17:05

Bringing Multi-Container to Constrained Devices: The Case of the IoT Gateway - Csaba Kiraly & Koustabh Dolui, Bruno Kessler Foundation
Containerization has been driving the scene in cloud technology, but it stretches far beyond the cloud domain. In fact, the AGILE project develops a container based open software framework for IoT gateways, bringing several of these advantages to the IoT edge domain.

We show how we bring docker-based containerization to the constrained gateway platform ensuring support for a diversity of gateway hardware architectures below, dependence conflict free code reuse as part of, and language-agnostic application runtime on top of the framework.

The talk will focus on streamlining the process of bringing docker-based containerization to these devices, discussing architectural aspects, developer workflow, and the use of base image hierarchies and image layering for in-container and cross-container performance optimizations.

Speakers
avatar for Koustabh Dolui

Koustabh Dolui

Research Engineer, Bruno Kessler Foundation
Koustabh Dolui is a research engineer at FBK, Trento, Italy. His research interests lie in Edge computing and cloud platforms for IoT. He has graduated in Telecommunications Engineering from Politecnico di Milano, Italy in 2016. He is a developer for the AGILE H2020 project and a... Read More →
CK

Csaba Kiraly

Senior Researcher, FBK CREATE-NET
"Csaba Kiraly is a senior researcher at the Bruno Kessler Foundation, Trento, Italy, as member of the OpenIoT team. His main interests are in design and performance evaluation of IoT systems and networking protocols. In the past, he was also working on virtualization technologies... Read More →



Wednesday October 25, 2017 17:05 - 17:45
Chez Louis