Embed Size (px)
Citation preview
New DockerFor Production
Kay Yan「DaoCloud」
Docker Are Lite VMs
85% using Swarm & Compose5X Real Docker adoption last year
Production Ready for 1.5 year
40%Docker users already running in production
Portable & Quality
Docker Are being Converged
Docker Engine
安全
多租户
存储
编排
集群
Converged
*网络*
Multihost Networking
Out of Box overlay networking - SDN
Manage network as a top-level command
More than 6 implements today
Overlay Network
Node0
ServiceA
Node1
ServiceBserviceB:80
*magic*
Container-Container NetworkIP address per containerSeamless, does not change the application code
What’s in Network
What’s in Network
Network In Production
0
50
100
150
200
250
300
350
400
VXLan FLANNEL UDP WEAVE PCAP CALICO
Overlay Network benchmark
Bandswitch CPU Cost
benchmark on AWS EC2
less CPU Cost
Storage
Build-in persistent StorageAttach any volume to any container, dynamicallyMulti backends
Cluster - Swarm
Ready for production
Cluster - DEMO
Engine as a Single-Node Cluster
Scale 1000x
Build In “Swarm Agent”
Cluster OverView
Docker Native DCOS Kubernetes CoreOS
Orchestration
Scheduler
Resource Allocation
Service Discovery
More than Containers
Health Check
Storage clustering?
Live Migration? Coming Soon
Compose V2version: 2services:
web:build: .networks:
- front- back
redis:image: redisvolumes:
- data:/var/lib/redisnetworks:
- backvolumes:
data: driver: localnetworks:
front:driver: bridge
back:driver: bridge
Compose in Production
ExtendsDev & ProdMulti EnvironmentsAdministrative Tasks
* Continuously UP *
* Zero-Downtime Deploy*
Authz/Authn
Docker Content Trust
Security
Under the water
Security
Security
What’s Next?
More PlatformsOfficial ARM SupportWindows 2016
BuildARG & Proxy SupportClient Build
Thank You!
