Saturday @ Cloud Native Rejekts
It was my first time at the Cloud Native Rejekts pre-conference and I would highly recommend it. Kinvolk started the event as a way of giving speakers with rejected talks a way to recycle their hard work. I met Chris Kuehl on the first day and he also told me that the event also offers people a way to share ideas and projects which came about after the KubeCon CfP closes. I think that this is something the main event should also consider.
I dropped some brand-new inlets swag and OpenFaaS #TeamServerless stickers off at the event.
The event was held in a museum set within Balboa Park and the organisers put on Tacos for the attendees. I loved the ambience of the area and it reminded me of the time we were in Barcelona for KubeCon EU.
We also got treated to a “state of Kubernetes” talk by Tim where he explored topics like the need for Ingress v2 and how Kubernetes is already a service mesh of sorts.
inlets-operator - get tunnels to your Kubernetes cluster
On Saturday I spoke on the issues we face as IPv4 addresses run out from the original pool of 4 Billion. IPv6 was supposed to fix this problem, but 25 years later, it’s still not ready to take over.
I introduced and demoed both inlets and the inlets-operator which give incoming network access (ingress) to any Kubernetes cluster whether on premises or within a restrictive VPC. This is achieved by the client making an outbound network request over a known port such as 80, 8080, or 443 to establish a long-running uplink.
View the slides below, and subscribe to my Twitter handle for a notification of when the video is ready.
inlets is proud to be featured on the CNCF Landscape
Serverless Practitioners Summit
The second pre-conference I attended was the Serverless Practitioners Summit (SPS). Leading up to the event I’d had the opportunity to help review papers and organise the event. Doug Davis from IBM hosted the event on the day with Cloud Foundry sponsoring.
Keep an eye out for the CfP for Amsterdam, these talks do not count against your quota for the main event and can be a great way to mix with subject-matter experts and end-users too.
Getting Beyond FaaS - The PLONK Stack for Kubernetes Developers
You can watch my talk where I explore the difference between FaaS and Serverless, and introduce a stack for developers to build out application on Kubernetes.
Ramiro gave a talk on accelerating the “hot reload” experience for Kubernetes pods and applied that to OpenFaaS. He used his platform called Okteto, check it out if you could benefit from a live development experience for your applications on Kubernetes.
You can watch his recording here and I’m looking forward to collaborating with the team more.
The North American event this year saw an estimated 12k attendees, making this the largest tech event I’ve been a part of so far. I was also attending as a CNFC Ambassador for the first time - our main perk was being given a cape to wear!
There were so many concurrent sessions and tracks that scrolling through the agenda for one day could take a few minutes - this isn’t your 2014 KubeCon. I imagine this will continue to grow in the coming years. Personally, I spent most of my time in the “hallway track”, the expo area, having ad-hoc meetings and attending the keynotes. I did manage to catch a few breakout sessions.
I was excited to see the Open Source team at Intel running a serverless demo at their booth. I asked what they used to build it, and they told me it was powered by OpenFaaS. The underlying model is being served by TensorFlow using a similar technique to this.
How cool is that? You draw boxes and blocks, then a machine-learning model served by OpenFaaS generates a real photo of a building.
Linkerd and OpenFaaS Cloud for a Secure Multi-tenant Serverless Platform
If you’ve heard of Linkerd or OpenFaaS, but haven’t seen them working together, then check out this talk. I spoke with Charles from Buoyant on security features within OpenFaaS Cloud - some of which are taken directly from Kubernetes at an infrastructure level and others that are applied through the platform.
OpenFaaS Cloud builds on top of OpenFaaS to provide a managed experience for teams. It can be set up by an SRE or platform engineer and then used by multiple users and teams within the organisation to migrate applications to Kubernetes. CI/CD is built-in along with logs, metrics, and a dashboard.
Linkerd / Dive.co
Whilst out in San Diego I was invited to an end-user and adopters dinner where I learned about Dive.co which is Buoyant’s latest venture. You can think of it like an SRE’s toolbox mixed with social media - check it out and let the team know if you use Linkerd in production.
Some OpenFaaS users like Istio and others prefer the simplicity of Linkerd. Whichever you prefer, you can try out a set of free hands-on labs: Lightweight Serverless on Kubernetes with mTLS and traffic-splitting with Linkerd2.
Flux & Argo
Our friends at Weaveworks announced that the Flux project (an incubating project of the CNCF), would merge with the Argo Project developed at Intuit.
Stefan Prodan who is also an OpenFaaS contributor spoke in a panel on GitOps. The session was so popular that it had to be moved to the main stage, how about that?! Watch the video here: Panel: GitOps User Stories
Myself and Stefan with our OpenFaaS hoodies.
K3s Under the Hood: Building a Product-grade Lightweight Kubernetes Distro
Darren Shepherd gave an insightful talk to a packed-out room on what it took to get k3s from a Proof of Concept (PoC) to a GA Kubernetes distribution with commercial support.
If you’ve read my blog you’ll know I’ve done a lot of work with k3s since it launched and how well it works on any architecture - PC, ARM64 or Raspberry Pi.
I live-tweeted my highlights, just click below to view the thread:
I thought it was notable that:
- k3s runs in 300MB of memory for a server, 50MB for an agent
- only needs a 1000 line patch, vs. 3 million when it started
- uses the same tunnelling library as inlets.dev
- is marketed for edge, but works great on the desktop and for general purpose
- hit 10k stars on GitHub in just a few months
Last but not least, Darren and the team also built out new innovating projects that can be used to make Kubernetes lighter-weight such as kine, an interface for how Kubernetes uses etcd.
Did you know that k3sup (‘ketchup’) can install Kubernetes in < 1 minute on any VM, bare-metal machine or Raspberry Pi? It was great to hear from folks who were using it for their clusters.
The newest feature of k3sup is
k3sup app install which can get you a production-ready OpenFaaS installation on any Kubernetes cluster in a couple of minutes.
It works by wrapping helm charts up in Golang commands and hiding away obscure settings behind CLI flags and parameters.
This is what it looks like in action:
Today I showed https://t.co/v4Pzmxdhpm as an installer to get @OpenFaaS along with cert-manager, Nginx-ingress and a TLS certificate for the gateway.— Alex Ellis (@alexellisuk) November 19, 2019
The other thing k3sup can do is install k3s and join nodes.
Would renaming to "ketchup" show it's not just for k3s? pic.twitter.com/nwsJsDhfzW
Checkout the GitHub repo for issues and to get started.
That’s a wrap
I had a great time at the event, learned a lot, made lots of new connections and learned about new use-cases for OpenFaaS. My last highlight was this research from EMA Research that showed OpenFaaS in the top 5 Kubernetes technologies of the year.
If you use or are a contributor to the project, you should feel proud.
The next KubeCon event will be KubeCon EU, Amsterdam in 2020.
If you’d like to submit a paper to the Serverless Practioner’s Summit or to KubeCon about OpenFaaS, inlets, k3sup, or something else related to these technologies, feel free to get in touch via firstname.lastname@example.org.
OpenFaaS Insiders: all GitHub Sponsors at every tier get access to regular email updates on all news, blog posts, tutorials, new features, and security updates. Subscribe now and help me hit my goal of 200 sponsors by 2020.