25
Information presented is confidentia Container-native monitoring: Kubernetes Edition Apurva Davé, Sysdig Specialist

Big Brother: Kubernetes Edition

Embed Size (px)

Citation preview

Page 1: Big Brother: Kubernetes Edition

Information presented is confidential

Container-native monitoring:Kubernetes Edition

Apurva Davé, Sysdig Specialist

Page 2: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Page 3: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Page 4: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Page 5: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Monitoring containers is different

Microservices and containers break legacy monitoring and analytics tools

Sysdig is the first and only solution that can natively monitor any infrastructure and app, including container-based ones

Page 6: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Monitoring containers is different

Legacy monitoring approaches cannot see inside containers

Running monitoring agents inside containers is not a viable solution

Yesterday’s monitoring tools don’t understand microservices architectures & container orchestration

Page 7: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Host OS

Container orchestration & tooling

Network & infrastructure

Container

CoreApp

Sysdig ContainerVision

Unique system instrumentation

Container Container

Infr.App

Page 8: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Sysdig ContainerVision

Kernel

Docker

Container1

Container2

Container3

App App rkt LXC

Page 9: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Kernel

Sysdig ContainerVision

Docker

Container1

Container2

Container3

App App rkt LXC

Kernel moduleInstrumentation

Page 10: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Sysdig ContainerVision

Kernel

Docker

Container1

Container2

Container3

App App rkt LXC

Sysdig

Docker

collection &analysis

Page 11: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

New instrumentation = Better visibility

Infrastructure based monitoring & alerting

Typical infrastructure monitoring products

Page 12: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

New instrumentation = Better visibility

Application- intelligent Monitoring & alerting

Trace-driven troubleshooting

Service-oriented performance management

Page 13: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Service-oriented performance management

Monitor applications & logical services (not hosts!)

Service 1 Service 2 Service 3

Computing node

Computing node Computing node

Computing node Computing node

Computing node

Page 14: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Service-oriented performance management

Monitor applications & logical services (not hosts!)

Service 1 Service 2 Service 3

What’s the response time of my Cassandra service that’s currently distributed over three data centers? What are the

slowest queries?”“

Page 15: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Service-oriented performance management

Deep, real-time understanding of orchestration metadata

Page 16: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Kubernetes Integration

1. How are my servers running kubernetes master/minions doing?

2. Graph kubernetes-specific metrics from the API

3. (The dream) monitor your services deployed with kubernetes

a) Use kubernetes API metadata to aggregate data across replication controllers, pods

b) See inside containers to track application performance… aggregate information from inside all relevant containersBack to integrations slide

Page 17: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

How Sysdig-Kubernetes integration works

master

1. Sysdig monitoring each container & app

2. Sysdig agent on master auto-discovers and polls API

3. Metadata collected every few seconds

4. Now Sysdig Cloud can dynamically aggregate metrics across namespaces, replication controllers, pods or any labels

workers

Page 18: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Application Intelligent Monitoring & Alerting

Automatic DiscoveryApp discovery without plug-ins

TemplatesPre-built templates by application & service

Zero-config custom metricsStatsD & JMX – no agents inside containers

Anomaly detectionOutlier & deviation based comparisons

Developers spun up a new service based on apache and mongo last night without letting us know. We deployed sysdig, so we still see it all, without any config.”“

Page 19: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

v

Application Intelligent Monitoring & Alerting

We automatically discover your appsThousands of relevant metrics without a single plug-in or YAML config

Page 20: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Trace-driven troubleshooting

“Dashboard

sCorrelate

eventsTrace file with every system

call

System Call

PID CPU USER TH VIRTRES FILE NET

303 1.5 root 3 280K 57K0 236.00

35 0.5 root 5 37K 02K 0.00

Replay the state of my system last night, when the Auth service alerts fired, 5 minutes before our app went down. Show all the system calls from the containers we destroyed.”

Page 21: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Demo

Page 22: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

What we’re going to show you

Small environment, with & without orchestration

1. How to deploy a sysdig agent (yes, we will actually show you instrumentation!)

2. Service-oriented performance metrics and analytics3. A deep troubleshooting example4. Basic monitoring – creating a dashboard, set an alert

Page 23: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Product Offerings

Sysdig Cloud

Sysdig On-Premise

Sysdig Open Source

– Hosted offering– $20/mo/host – discounted for large server volume– Monthly or annual

– Run the Sysdig backend in your private cloud or AWS domain – Annual only– Minimum commitment required

– CLI-based troubleshooting tool– Used on a single host– Community support

Page 24: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Summary

Deep container visibility

Service oriented performance management

Application intelligent monitoring & alerting

Trace driven troubleshooting

Start a free trial today and see Sysdig running in your own environment!

Page 25: Big Brother: Kubernetes Edition

Information presented is confidentialInformation presented is confidential

Thanks (that’s the end)