AGENDA

●
○
○
●
○
○
●
○
●
○
●
 NEW PATTERNS FOR DEVELOPMENT

CI/CD
Waterfall

Web APIs Speed

services

Agility

Container
Data
Micro-
Center
services Control
Monolith

Server Hybrid
/VM Cloud
OUTCOMES
 AGILE INTEGRATION
Modern architectures and app development
Traditional integration incompatible with
requires more agile integration
Cloud development

ESB

Centralize ⧫ Leverage ⧫ Simplify

Distributed Integration ⧫ Scalability ⧫ Reusability
Internal teams ⧫ Maximize use of resources
Agile Teams ⧫ Distributed App Dev

USE INTEGRATION WHERE NEEDED, RATHER THAN CENTRALIZING

 WHAT ARE CONTAINERS?
It Depends Who You Ask

INFRASTRUCTURE APPLICATIONS

● Application processes on a shared kernel ● Package apps with all dependencies

● Simpler, lighter, and denser than VMs ● Deploy to any environment in seconds
● Portable across different environments ● Easily accessed and shared
VIRTUAL MACHINES AND CONTAINERS

VIRTUAL MACHINES CONTAINERS

VM Container Container Container Container

App App App App

App App App App

OS Dependencies OS deps OS deps OS deps OS deps

Kernel Container Host (Kernel)

Hypervisor Hypervisor

Hardware Hardware

VM isolates the hardware Container isolates the process

VIRTUAL MACHINES AND CONTAINERS
Virtual Machine Container

Application Application

OS dependencies OS dependencies

Operating System
Container Host

VM Isolation Container Isolation

Complete OS Shared Kernel
Static Compute Burstable Compute
Static Memory Burstable Memory
High Resource Usage Low Resource Usage
 VIRTUAL MACHINES AND CONTAINERS

Virtual Machine Container

Application Application
Clear ownership boundary Dev
IT Ops OS dependencies between Dev and IT Ops OS dependencies
(and Dev, sort of)
drives DevOps adoption
Operating System and fosters agility Container Host
IT Ops
Infrastructure Infrastructure

Optimized for stability

Optimized for agility
 APPLICATION PORTABILITY WITH VM

Virtual machines are NOT portable across hypervisor and

do NOT provide portable packaging for applications

Guest VM VM Type X VM Type Y VM Type Z

Application Application Application Application

Application
OS dependencies OS dependencies OS dependencies OS dependencies
OS dependencies

Operating System Operating System Operating System Operating System

Operating System

LAPTOP BARE METAL VIRTUALIZATION PRIVATE CLOUD PUBLIC CLOUD

APPLICATION PORTABILITY WITH CONTAINERS

RHEL Containers + RHEL Host = Guaranteed Portability

Across Any Infrastructure

Container Container Container Container Container

Application Application Application Application Application

OS dependencies OS dependencies OS dependencies OS dependencies OS dependencies

RHEL RHEL RHEL RHEL

RHEL
Guest VM Virtual Machine Virtual Machine Virtual Machine

LAPTOP BARE METAL VIRTUALIZATION PRIVATE CLOUD PUBLIC CLOUD

 LINUX AND CONTAINER INFRASTRUCTURE
CONTAINER CONTAINER CONTAINER

APP APP APP CONTAINERS ARE LINUX

LINUX O/S LINUX O/S LINUX O/S
DEPENDENCY DEPENDENCY DEPENDENCY
Red Hat
LINUX CONTAINER HOST (KERNEL)
Enterprise Linux
is a leader in paid
70%
CY2016 paid
Linux Linux share

Linux OS host Linux is in

1 spans every every single 2
container container
 CONTAINERS IN A NUTSHELL
● Application portability across hybrid cloud environments

● Allow developers to focus on their application vs. underlying infrastructure

● Deployed for shorter periods of time than VMs

● Removing complexity through minimalism

● Presents new challenges for Operations teams

 HOW DO I MANAGE THESE CONTAINERS?
● How do I manage configuration, service
discovery, and resource scaling?

● Where do I configure my cluster?

● How do I update my applications?

● How do I update the underlying cluster?

● How can I simplify my complex applications?

 KUBERNETES IN A NUTSHELL
● Application portability across hybrid cloud environments

● Allow developers to focus on their application vs. underlying infrastructure

● Deployed for shorter periods of time than VMs

● Removing complexity through minimalism

● Presents new challenges for Operations teams

KUBERNETES AS CONTAINER ORCHESTRATION

● Schedulers and scheduling

● Service discovery and load balancing

● Resource management
 THE BENEFITS OF KUBERNETES

● Scalability

● Portability

● Consistent deployments

● Separated and automated operations

and development
BASIC KUBERNETES ARCHITECTURE
 Storage RBAC
Deployment Topologies
Operating Systems Containers

Scaling Alerting Telemetry

Log Aggregation
Metrics
High Availability WHY SO HARD?
Image Management
Security Self Healing
Patching
VMs Networking Monitoring App Servers
Routing Configuration Management
CONFIDENTIAL - FOR INTERNAL
USE ONLY
 INSTALL DEPLOY
● Templating ● Identity & security access
● Validation ● App monitoring & alerts
● OS setup ● Storage & persistence
● Egress, ingress, & integration
● Host container images
● Build/Deploy methodology
HARDEN
● Platform monitoring & alerts
● Metering & chargeback
● Platform security hardening
● Image hardening
● Security certifications
● Network policy
OPERATE
● OS upgrade & patch
● Platform upgrade & patch
● Image upgrade & patch
● App upgrade & patch
● Security patches
● Continuous security scanning

75%
of enterprise users identify
● Disaster recovery
● Resource segmentation
● Multi-environment rollout
● Enterprise container registry
● Cluster & app elasticity
● Monitor, alert, remediate
complexity of implementation and ● Log aggregation

operations as the top blocker to adoption

Source: The New Stack. The State of the Kubernetes Ecosystem, August 2017.
 Self-Service Standards-based

Multi-language Web-scale

Automation Open Source

Collaboration Enterprise Grade

Multi-tenant Secure
OPENSHIFT IS ENTERPRISE KUBERNETES
Red Hat makes building application with containers easy

Business 3rd party

Red Hat Application Automation
Integration Data Web & Mobile
frameworks
Services
CONTAINER CONTAINER CONTAINER CONTAINER CONTAINER

LIFECYCLE AUTOMATION CONTAINER MANAGEMENT

PaaS

SELF-SERVICE SERVICE CATALOG MONITORING CAPACITY MGMT PUBLIC REGISTRY

(RH Registry)
CI/CD
Red Hat OpenShift (Jenkins)
IMAGE BUILD POLICY MANAGEMENT SECURITY ANALYSIS
Container Platform OPS MANAGEMENT
CaaS

(incl. CloudForms) CONTAINER INFRASTRUCTURE SERVICES

ORCHESTRATION OPS AUTOMATION
CONTAINER ENGINE REGISTRY
(Kubernetes) (Ansible)
STORAGE NETWORKING
SECURITY
(Kubernetes) (Open vSwitch) STORAGE
(RH Storage)
Red Hat Enterprise ENTERPRISE-GRADE CONTAINER OS
IaaS

DEV TOOLS
Linux & Atomic Host ( Developer Studio,
PHYSICAL VIRTUAL PRIVATE CLOUD PUBLIC CLOUD Container Dev Kit)
Automated, full-stack installation from the
container host to application services
Seamless Kubernetes deployment to any
cloud or on-premises environment
Autoscaling of cloud resources
One-click updates for platform, services,
and applications
Traditional apps Cloud-native apps AI/ML, Functions...

Container & DevOps Platform

Edge Datacenter Hybrid & Multi-Cloud

● OpenShift retrieves the
list of available updates
● Admin selects the target
version
● OpenShift is updated
over the air
● Auto-update support
CONTROL Container content CI/CD pipeline
Application
Container registry Deployment policies
security

Container platform Container host multi-tenancy

DEFEND
Network isolation Storage
Infrastructure
Audit & logging API management

EXTEND Security ecosystem

 FROM YOUR DATACENTER TO THE CLOUD

Automated Secure by Network Over-the-air Monitoring Pluggable

Multi-tenant
operations default traffic control updates & chargeback architecture

Bare metal, VMware vSphere, Red Hat Virtualization, Red Hat OpenStack Platform,
Amazon Web Services, Microsoft Azure, Google
OPENSHIFT PLATFORM
OPENSHIFT PLATFORM

OPERATING SYSTEM

OPERATING SYSTEM

INFRASTRUCTURE
 FULLY AUTOMATED DAY-1 AND DAY-2 OPERATIONS

INSTALL DEPLOY HARDEN OPERATE

AUTOMATED OPERATIONS
Infra provisioning Full-stack deployment Secure defaults Multicluster aware

Embedded OS On-premises and cloud Network isolation Monitoring and alerts

Unified experience Audit and logs Full-stack patch & upgrade

Signing and policies Zero-downtime upgrades

Vulnerability scanning
 Flexible app No reinvention
architectures of core concepts

Uniform deploy
Truly hybrid
and debug

Operators codify operational knowledge and workflows to automate

life-cycle management of containerized applications with Kubernetes
● OperatorHub.io launched by Red Hat, AWS,
Microsoft and Google
● OpenShift Operator Certification
● OperatorHub integrated into OpenShift 4

COMMUNITY OPERATORS

OPENSHIFT CERTIFIED OPERATORS

 apiVersion: mongodb.com/v1
kind: MongoDbReplicaSet
metadata:
name: example
namespace: production
spec:
members: 3
version: 4.0.2
persistent: false
project: example
credentials: my-secret

38
 What is the Container Adoption Journey?
Discover Pilot Prepare Expand Accelerate Optimize Self-sustain

An overarching A meaningful Repeatable Distributed Small teams are Infra and app Culture, process,
strategy is workload runs in onboarding development enabled and instrumentation and technology
defined to production on a processes are teams guide app empowered to enables DevOps changes
identify minimally viable implemented onboarding at enhance designs practices to be permeate the
objectives, skill container and new apps scale using in support of adopted by organization to
gaps, and platform brought onto an standardized rapid response leadership and drive continued
measurable managed by a enhanced approaches to the market informs strategy improvement
outcomes select team platform

RED HAT
CUSTOMER SUCCESS Consulting, training, and support for Digital Transformation
CONTAINER ADOPTION JOURNEY - MAPPING TO CURRICULUM OFFERINGS
SELF-
PERSONA DISCOVER PILOT PREPARE EXPAND ACCELERATE OPTIMIZE
SUSTAIN

DO080
ADOPTION DO500 DO700 RHLS
CORE TEAM DO180

DO180
SYSTEM DO380
DO500 DO280 RHLS
ADMINS DO425
DO407

SITE DO380
DO700
RELIABILITY DO500 DO425 RHLS
DO407
ENGINEERS DO288

DO700 or:
Enterprise DO180
DEVELOPERS DO500 RHLS
DO288
DO292
MICROSERVICES 1) DO180 +
DEVELOPERS DO101 + DO288 or RHLS
Existing skills DO292
INFOSEC 2) JB283
ENGINEER
 DO080 Deploying Containerized Applications Technical Overview

DO180 Introduction to Containers, Kubernetes, and Red Hat OpenShift

Administrator Track Developer Track

Red Hat OpenShift Development I: Containerizing
DO280 Red Hat OpenShift Administration I DO288
Applications
Red Hat Certified Specialist in OpenShift Application
EX280 Red Hat Certified Specialist in OpenShift Administration EX288
Development
Red Hat Application Development II: Implementing
DO380 Red Hat OpenShift Administration II: High Availability JB283
Microservice Architectures
Red Hat Certified Enterprise Microservices Developer
EX283
Exam
Red Hat OpenShift Development II: Creating
DO292
Security/DevSecOps Microservices with RHOAR

DO425 Red Hat Security: Securing Containers and OpenShift

Red Hat Certified Specialist in Security: Containers and

EX425
OpenShift Container Platform

Suggested
Pre-Req Overview Required Course Complementary
Exam
Introduction to containers, Kubernetes, and OpenShift (DO180)
Learn to build and manage containers for deployment on a Kubernetes and Red Hat OpenShift cluster
Introduction to Containers, Kubernetes, and Red Hat OpenShift (DO180) helps you build core knowledge in
managing containers through hands-on experience with containers, Kubernetes, and the Red Hat® OpenShift®
Container Platform. These skills are needed for multiple roles, including developers, administrators, and site
reliability engineers.

Topics covered include understanding container and OpenShift architecture, creating containzerized services,
and deploying applications on Kubernetes and Red Hat OpenShift.

Audience:
● Developers who wish to containerize software applications
● Administrators who are new to container technology and container orchestration
● Architects who are considering using container technologies in software architectures
● Site reliability engineers who are considering using Kubernetes and Red Hat OpenShift

Prerequisites: Be able to use a Linux terminal session, issue operating system commands, and be familiar with
shell scripting. Experience with web application architectures and their corresponding technologies is
recommended, but not required.
 WAYS TO TRAIN
Onsite Training
Private On-site training and
exams delivered at your location
or at one of our training centers
Classroom Training
Training and test in a professional
classroom environment led by
Red Hat Certified Instructors
Virtual Training
Live instructor-led online training
with the same high-quality,
hands-on labs you'd find in our
classrooms
Online Learning
90 days of access to course
content and up to 80 hours of
hands on labs – all available
online, at your pace, and your
schedule.
 RED HAT LEARNING SUBSCRIPTION

Simple, flexible, on-demand training

● 24x7 access globally, available offline

● Self-paced, unlimited access to Red Hat courses

● Access to content currently in development

● Updated content pushed as early releases

● Content spanning the entire Red Hat product portfolio

● Early access to completed chapters of courses

 RED HAT LEARNING SUBSCRIPTION TRIAL
Take advantage of 7-days of free access to Red Hat Training’s on-demand learning solution.

Start learning with access to:

- 50+ courses chapters
- Video classroom course chapters
- 1 hour cloud-based lab access
- Early Access to content in
development
- Including beta content for
upcoming product releases of
OpenShift Container Platform 4
- User consumption reports

TRY NOW AT: red.ht/learning-subscription

CONFIDENTIAL