ã³ã³ããåãã¯ãããžãŒã®ãšã³ã·ã¹ãã ã¯æ¥éã«é²åããå€åããŠããããããã®åéã§ã¯é©åãªäœæ¥æ
£è¡ãäžè¶³ããŠããŸãã ãã ããKubernetes ãšã³ã³ããã¯ãã¬ã¬ã·ãŒ ã¢ããªã±ãŒã·ã§ã³ã®ææ°åãšææ°ã®ã¯ã©ãŠã ã¢ããªã±ãŒã·ã§ã³ã®éçºã®äž¡æ¹ã§äœ¿çšãããããšãå¢ããŠããŸãã
ããŒã
äŒç€Ÿãå®çšŒåç°å¢ã«ã³ã³ããããããã€ããæºåãã§ããŠãããã©ããã確èªããæ¹æ³
ã«ãã
Ð
ã³ã³ãããŒãžã®é¢å¿ãšå°å ¥ãé«ãŸã£ãŠããã«ããããããããã¯ãããžãŒãæªçã§ããŠããŠãäžè¶³ããŠãããããã³ã³ãããŒãéçšç°å¢ã«å°å ¥ããã«ã¯åŠç¿æ²ç·ãå¿ èŠã§ãã çµç¹ã¯ãã¢ããªã±ãŒã·ã§ã³ã®ã³ã³ããåãå¿ èŠãšããããžãã¹ ããã»ã¹ã«ã€ããŠçŸå®çã§ããå¿ èŠããããŸãã IT ãªãŒããŒã¯ãè¿ éã«åŠç¿ããå¿ èŠããããããåé²ããããã®ã¹ãã«ã»ãããæã£ãŠãããã©ãããè©äŸ¡ããå¿ èŠããããŸãã
å®çšŒåç°å¢ã§ã³ã³ããã䜿çšãããšãã«ããããééã
çµç¹ã¯ãå®çšŒåç°å¢ã§ã³ã³ãããéçšããããã«å¿
èŠãªåŽåãéå°è©äŸ¡ããããšããããããŸãã
ã³ã³ãããå®å šã«ä¿ã€æ¹æ³
ã»ãã¥ãªãã£ã¯ãåŸããã察åŠããããšã¯ã§ããŸããã DevOps ããã»ã¹ã«çµã¿èŸŒãå¿
èŠããããããDevSecOps ãšããç¹å¥ãªçšèªããååšããŸãã çµç¹ã¯èšç»ãç«ãŠãå¿
èŠããã
- ã¢ããªã±ãŒã·ã§ã³ ã€ã¡ãŒãžã®è匱æ§ãã¹ãã£ã³ããããã»ã¹ãç¶ç¶çã€ã³ãã°ã¬ãŒã·ã§ã³/ç¶ç¶çããªããªãŒ (CI/CD) ãã€ãã©ã€ã³ã«çµ±åããŸãã ã¢ããªã±ãŒã·ã§ã³ã¯ããœãããŠã§ã¢ã®æ§ç¯ããã³èµ·å段éã§ã¹ãã£ã³ãããŸãã ãªãŒãã³ãœãŒã¹ã®ã³ã³ããŒãã³ããã©ã€ãã©ãªããã¬ãŒã ã¯ãŒã¯ãã¹ãã£ã³ããŠç¹å®ããå¿ èŠæ§ã匷調ããŸãã éçºè ãå€ãè匱ãªããŒãžã§ã³ã䜿çšããããšã¯ãã³ã³ãããŒã®è匱æ§ã®äž»ãªåå ã® XNUMX ã€ã§ãã
- Center for Internet Security ãã¹ãã䜿çšããŠæ§æãæ¹åããŸã (
CIS )ãDocker ãš Kubernetes ã®äž¡æ¹ã§äœ¿çšã§ããŸãã - ã¢ã¯ã»ã¹å¶åŸ¡ã匷å¶ããè·åã®åé¢ã確ä¿ããæ©å¯ç®¡çããªã·ãŒãå®è£ ããŠãã ããã Secure Sockets Layer (SSL) ããŒãããŒã¿ããŒã¹è³æ Œæ å ±ãªã©ã®æ©å¯æ å ±ã¯ããªãŒã±ã¹ãã¬ãŒã¿ãŒãŸãã¯ãµãŒãããŒãã£ã®ç®¡çãµãŒãã¹ã«ãã£ãŠæå·åãããå®è¡æã«å ¬éãããŸãã
- æœåšçãªäŸµå®³ã®ãªã¹ã¯ã軜æžããããã«ã»ãã¥ãªã㣠ããªã·ãŒã管çããã³ã³ãããŒã®ææ Œãåé¿ããŸãã
- ãã¯ã€ããªã¹ããåäœç£èŠãç°åžžæ€åºãæäŸããã»ãã¥ãªã㣠ããŒã«ã䜿çšããŠãæªæã®ããã¢ã¯ãã£ããã£ãé²æ¢ããŸãã
- Kubernetes ã®çµã¿èŸŒã¿æ©èœã掻çšããŸãã ããŒã«ã䜿çšããŠãŠãŒã¶ãŒã®ã¢ã¯ã»ã¹ãèšå®ããŸãã å¿ èŠãªæå°éã®ã¢ã¯ã»ã¹èš±å¯ãæ€èšããã®ã«æéããããå Žåã§ããåã ã®ãšã³ãã£ãã£ã«äžå¿ èŠãªã¢ã¯ã»ã¹èš±å¯ãä»äžããªãããã«ããŠãã ããã æåã¯æéãç¯çŽã§ãããããã¯ã©ã¹ã¿ãŒç®¡çè ã«å šäœçãªæš©éãäžããããªããããããŸããã ãã ããã¢ã«ãŠã³ãã«åŠ¥åãééãããããšãåŸã§å£æ» çãªçµæã«ã€ãªããå¯èœæ§ããããŸãã
- éè€ããã¢ã¯ã»ã¹èš±å¯ãé¿ããŠãã ããã ç°ãªã圹å²ãéè€ããããšäŸ¿å©ãªå ŽåããããŸãããããã«ããéçšäžã®åé¡ãçºçããããæš©éãåé€ãããšãã«ç²ç¹ãçãããããå¯èœæ§ããããŸãã æªäœ¿çšããã³éã¢ã¯ãã£ããªåœ¹å²ãåé€ããããšãéèŠã§ãã
- ãããã¯ãŒã¯ ããªã·ãŒãèšå®ããŸããã¢ãžã¥ãŒã«ãåé¢ããŠã¢ãžã¥ãŒã«ãžã®ã¢ã¯ã»ã¹ãå¶éããŸãã ã¿ã°ã䜿çšããŠãå¿ èŠãªã¢ãžã¥ãŒã«ãžã®ã€ã³ã¿ãŒããã ã¢ã¯ã»ã¹ãæ瀺çã«èš±å¯ããŸãã çžäºã«éä¿¡ããå¿ èŠãããã¢ãžã¥ãŒã«éã®éä¿¡ãæ瀺çã«èš±å¯ããŸãã
ã³ã³ãããšã³ã³ããå ã®ãµãŒãã¹ã®ç£èŠãçµç¹åããæ¹æ³
ã»ãã¥ãªãã£ãšç£èŠ -
- ãã¹ã ã·ã¹ãã ã®ç£èŠãšçµã¿åãããŠãã³ã³ãããŒãŸãã¯ã³ã³ãããŒå ã®ãµãŒãã¹ã®ç¶æ ãç£èŠããŠã¿ãŠãã ããã
- ã³ã³ãã ãªãŒã±ã¹ãã¬ãŒã·ã§ã³ãç¹ã« Kubernetes ã«æ·±ãçµ±åãããŠãããã³ããŒãšããŒã«ãæ¢ããŠãã ããã
- 詳现ãªãã°èšé²ãèªåãµãŒãã¹æ€åºãåæãæ©æ¢°åŠç¿ã䜿çšãããªã¢ã«ã¿ã€ã ã®æšå¥šäºé ãæäŸããããŒã«ãéžæããŠãã ããã
- ããŒã«ã䜿çšããŠãã³ã³ãããŒã®ã¡ããªãã¯ãèªåçã«æ€åºããŠè¿œè·¡ããCPUãã¡ã¢ãªã皌åæéãªã©ã®ããã©ãŒãã³ã¹ ã¡ããªãã¯ãé¢é£ä»ããŸãã
- ã³ã³ããç£èŠã¡ããªã¯ã¹ã«åºã¥ããŠå®¹éãæ¯æžããæ¥ãäºæž¬ããããšã§ãæé©ãªå®¹éèšç»ã確ä¿ããŸãã
- ã³ã³ããåãããã¢ããªã±ãŒã·ã§ã³ã®å¯çšæ§ãšããã©ãŒãã³ã¹ãç£èŠãã容éèšç»ãšããã©ãŒãã³ã¹ã®åé¡ã®ãã©ãã«ã·ã¥ãŒãã£ã³ã°ã®äž¡æ¹ã«åœ¹ç«ã¡ãŸãã
- ã³ã³ãããšãã®ãã¹ãã£ã³ã°ç°å¢ã®ç®¡çãšã¹ã±ãŒãªã³ã°ã®ãµããŒããæäŸããããšã§ãã¯ãŒã¯ãããŒãèªååããŸãã
- ã¢ã¯ã»ã¹å¶åŸ¡ãèªååããŠãŠãŒã¶ãŒããŒã¹ãç£èŠããå€ãã¢ã«ãŠã³ããã²ã¹ãã¢ã«ãŠã³ããç¡å¹ã«ããäžèŠãªæš©éãåé€ããŸãã
- ããŒã«ã»ãããè€æ°ã®ç°å¢ (ã¯ã©ãŠãããªã³ãã¬ãã¹ããŸãã¯ãã€ããªãã) ã«ããã£ãŠãããã®ã³ã³ãããŒãšã¢ããªã±ãŒã·ã§ã³ãç£èŠããŠãã€ã³ãã©ã¹ãã©ã¯ãã£ããããã¯ãŒã¯ãã·ã¹ãã ãã¢ããªã±ãŒã·ã§ã³å šäœã®ããã©ãŒãã³ã¹ãèŠèŠåãããã³ãããŒã¯ã§ããããšã確èªããŸãã
ããŒã¿ãä¿åãããã®ã»ãã¥ãªãã£ã確ä¿ããæ¹æ³
ã¹ããŒããã« ã¯ãŒã«ãŒ ã³ã³ããã®å°é ã«ãããã¯ã©ã€ã¢ã³ãã¯ãã¹ãã®å€éšã«ããŒã¿ãååšããããšãšããã®ããŒã¿ãä¿è·ããå¿ èŠæ§ãèæ ®ããå¿ èŠããããŸãã
ã«ãã
ããŒã¿æå·åãäž»èŠãªã»ãã¥ãªãã£æŠç¥ (64%) ã§ãããåçè ã¯ã©ã³ã¿ã€ã ç£èŠã䜿çšããŠããŸã
(49%)ãã¬ãžã¹ããªã®è匱æ§ã®ã¹ãã£ã³ (49%)ãCI/CD ãã€ãã©ã€ã³ã®è匱æ§ã®ã¹ãã£ã³ (49%)ãã©ã³ã¿ã€ã ä¿è·ã«ããç°åžžã®ããã㯠(48%)ã
- ååã«åºã¥ããŠæ§ç¯ãããã¹ãã¬ãŒãž ãœãªã¥ãŒã·ã§ã³ãéžæãã
ãã€ã¯ããµãŒãã¹ã¢ãŒããã¯ã㣠ã ã³ã³ãã ãµãŒãã¹ã®ããŒã¿ ã¹ãã¬ãŒãžèŠä»¶ãæºãããããŒããŠã§ã¢ã«äŸåãããAPI é§ååã§ãåæ£ã¢ãŒããã¯ãã£ãæã¡ãããŒã«ã« ãããã€ã¡ã³ããšãããªã㯠ã¯ã©ãŠãã§ã®ãããã€ã¡ã³ãããµããŒããããã®ã«çŠç¹ãåœãŠãããšããå§ãããŸãã - ç¬èªã®ãã©ã°ã€ã³ãã€ã³ã¿ãŒãã§ãŒã¹ã¯é¿ããŠãã ããã Kubernetes ã®çµ±åãæäŸããCSI (ã³ã³ãã ã¹ãã¬ãŒãž ã€ã³ã¿ãŒãã§ã€ã¹) ãªã©ã®æšæºã€ã³ã¿ãŒãã§ã€ã¹ããµããŒããããã³ããŒãéžæããŠãã ããã
ãããã¯ãŒã¯ãšé£æºããæ¹æ³
IT ããŒã ããããžã§ã¯ãããšã«ãããã¯ãŒã¯åãããéçºããã¹ããå質ä¿èšŒãå®çšŒåç°å¢ãäœæããåŸæ¥ã®ãšã³ã¿ãŒãã©ã€ãº ãããã¯ãŒã¯ ã¢ãã«ã¯ãç¶ç¶çãªéçºã¯ãŒã¯ãããŒã«å¿ ãããé©åãããšã¯éããŸããã ããã«ãã³ã³ãã ãããã¯ãŒã¯ã¯è€æ°ã®å±€ã«ãŸããããŸãã
Ð
- åãããŒãäžã«ã¹ã±ãžã¥ãŒã«ããããããã¯ãNAT (ãããã¯ãŒã¯ ã¢ãã¬ã¹å€æ) ã䜿çšããã«ä»ã®ããããšéä¿¡ã§ããå¿ èŠããããŸãã
- ç¹å®ã®ããŒãã§å®è¡ãããŠãããã¹ãŠã®ã·ã¹ãã ããŒã¢ã³ (kubelet ãªã©ã®ããã¯ã°ã©ãŠã³ã ããã»ã¹) ã¯ãåãããŒãã§å®è¡ãããŠããããããšéä¿¡ã§ããŸãã
- 䜿çšããããã
ãã¹ããããã¯ãŒã¯ã NAT ã䜿çšããã«ãä»ã®ãã¹ãŠã®ããŒãäžã®ä»ã®ãã¹ãŠã®ããããšéä¿¡ã§ããå¿ èŠããããŸãã ãã¹ã ãããã¯ãŒãã³ã°ã¯ Linux ãã¹ãã§ã®ã¿ãµããŒããããŠããããšã«æ³šæããŠãã ããã
ãããã¯ãŒãã³ã° ãœãªã¥ãŒã·ã§ã³ã¯ãKubernetes ã®ããªããã£ãããã³ããªã·ãŒãšç·å¯ã«çµ±åãããå¿ èŠããããŸãã IT ãªãŒããŒã¯é«åºŠãªãããã¯ãŒã¯èªååã«åªããéçºè ã«é©åãªããŒã«ãšååãªæè»æ§ãæäŸããå¿ èŠããããŸãã
- CaaS (ãµãŒãã¹ãšããŠã®ã³ã³ãããŒ) ãŸã㯠SDN (ãœãããŠã§ã¢å®çŸ©ãããã¯ãŒã¯) ã Kubernetes ãããã¯ãŒã¯ããµããŒãããŠãããã©ããã確èªããŸãã ããã§ãªãå ŽåããŸãã¯ãµããŒããäžååãªå Žåã¯ãå¿ èŠãªæ©èœãšããªã·ãŒããµããŒãããã³ã³ãããŒã® CNI (Container Network Interface) ãããã¯ãŒã¯ ã€ã³ã¿ãŒãã§ã€ã¹ã䜿çšããŠãã ããã
- CaaS ãŸã㯠PaaS (ãµãŒãã¹ãšããŠã®ãã©ãããã©ãŒã ) ããåä¿¡ãã©ãã£ãã¯ãã¯ã©ã¹ã¿ãŒ ããŒãéã§åæ£ããã€ã³ã°ã¬ã¹ ã³ã³ãããŒã©ãŒãããŒã ãã©ã³ãµãŒã®äœæããµããŒãããŠããããšã確èªããŠãã ããã ãããäžå¯èœãªå Žåã¯ããµãŒãããŒãã£ã®ãããã·ãŸãã¯ãµãŒãã¹ ã¡ãã·ã¥ã®äœ¿çšãæ€èšããŠãã ããã
- Linux ãããã¯ãŒã¯ãšãããã¯ãŒã¯èªååããŒã«ã«ã€ããŠãããã¯ãŒã¯ ãšã³ãžãã¢ããã¬ãŒãã³ã°ããŠãã¹ãã« ã®ã£ãããåæžããä¿ææ§ãé«ããŸãã
ã¢ããªã±ãŒã·ã§ã³ã®ã©ã€ããµã€ã¯ã«ã管çããæ¹æ³
èªååãããã·ãŒã ã¬ã¹ãªã¢ããªã±ãŒã·ã§ã³é ä¿¡ãå®çŸããã«ã¯ãInfrafraction as Code (IaC) 補åãªã©ã®ä»ã®èªååããŒã«ã§ã³ã³ãã ãªãŒã±ã¹ãã¬ãŒã·ã§ã³ãè£å®ããå¿ èŠããããŸãã ãããã«ã¯ãChefãPuppetãAnsibleãTerraform ãå«ãŸããŸãã
ã¢ããªã±ãŒã·ã§ã³ã®æ§ç¯ãšå±éã®ããã®èªååããŒã«ãå¿
èŠã§ã (ãããåç
§)
- ãµã€ãºãã©ã€ã»ã³ã¹ãéçºè ãã³ã³ããŒãã³ããè¿œå ã§ããæè»æ§ã«åºã¥ããŠãããŒã¹ ã³ã³ãã ã€ã¡ãŒãžã®æšæºãèšå®ããŸãã
- æ§æ管çã·ã¹ãã ã䜿çšããŠããããªãã¯ãŸãã¯ãã©ã€ããŒã ãªããžããªã«ããåºæ¬ã€ã¡ãŒãžã«åºã¥ããŠæ§æãéå±€åããã³ã³ããã®ã©ã€ããµã€ã¯ã«ã管çããŸãã
- CaaS ãã©ãããã©ãŒã ãèªååããŒã«ãšçµ±åããŠãã¢ããªã±ãŒã·ã§ã³ã®ã¯ãŒã¯ãããŒå šäœãèªååããŸãã
ãªãŒã±ã¹ãã¬ãŒã¿ãŒã䜿çšããŠã³ã³ãããŒã管çããæ¹æ³
ã³ã³ããããããã€ããããã®ã³ã¢æ©èœã¯ããªãŒã±ã¹ãã¬ãŒã·ã§ã³å±€ãšèšç»å±€ã§æäŸãããŸãã ã¹ã±ãžã¥ãŒãªã³ã°äžãã³ã³ãããŒã¯ããªãŒã±ã¹ãã¬ãŒã·ã§ã³å±€ã®èŠä»¶ã«åŸã£ãŠãã¯ã©ã¹ã¿ãŒå ã®æé©ãªãã¹ãã«é 眮ãããŸãã
Kubernetes ã¯ã掻çºãªã³ãã¥ããã£ãæã€äºå®äžã®ã³ã³ãã ãªãŒã±ã¹ãã¬ãŒã·ã§ã³æšæºãšãªã£ãŠãããã»ãšãã©ã®äž»èŠãªåçšãã³ããŒã«ãã£ãŠãµããŒããããŠããŸãã
- ã»ãã¥ãªãã£å¶åŸ¡ãã¢ãã¿ãªã³ã°ãããªã·ãŒç®¡çãããŒã¿æ°žç¶æ§ããããã¯ãŒãã³ã°ãã³ã³ããã®ã©ã€ããµã€ã¯ã«ç®¡çã®åºæ¬èŠä»¶ãå®çŸ©ããŸãã
- ãããã®èŠä»¶ã«åºã¥ããŠãèŠä»¶ãšãŠãŒã¹ã±ãŒã¹ã«æé©ãªããŒã«ãéžæããŠãã ããã
- Gartner ã®èª¿æ»ã䜿çšããŸã (ãããåç
§)
Kubernetes ãããã€ã¡ã³ã ã¢ãã«ã®éžææ¹æ³ ") ããŸããŸãª Kubernetes ãããã€ã¡ã³ã ã¢ãã«ã®é·æãšçæãç解ããã¢ããªã±ãŒã·ã§ã³ã«æé©ãªã¢ãã«ãéžæããŸãã - ç·å¯ãªããã¯ãšã³ãçµ±åãå ±éã®ç®¡çãã©ã³ãäžè²«ããäŸ¡æ Œã¢ãã«ãåãããè€æ°ã®ç°å¢ã«ãããäœæ¥ã³ã³ãããŒã®ãã€ããªãã ãªãŒã±ã¹ãã¬ãŒã·ã§ã³ãæäŸã§ãããããã€ããŒãéžæããŠãã ããã
ã¯ã©ãŠããããã€ããŒã®æ©èœã䜿çšããæ¹æ³
IaaS ã¯ã©ãŠãã¯ããªã³ããã³ãã®ãªãœãŒã¹æ¶è²»ãé«éãªæ¡åŒµæ§ãããã³
äž»èŠãªã¯ã©ãŠã ãããŒãžã ãµãŒãã¹ ãããã€ããŒãè¡šã«ç€ºããŸãã
ã¯ã©ãŠããããã€ããŒ
ãµãŒãã¹ã®çš®é¡
補åã»ãµãŒãã¹
ã¢ãªãã
ãã€ãã£ãã¯ã©ãŠããµãŒãã¹
Alibaba Cloud Container ServiceãAlibaba Cloud Container Service for Kubernetes
Amazon WebãµãŒãã¹ïŒAWSïŒ
ãã€ãã£ãã¯ã©ãŠããµãŒãã¹
Amazon Elastic Container Services (ECS)ãAmazon ECS for Kubernetes (EKS)ãAWS Fargate
巚倧ãªçŸ€ã
MSP
Giant Swarm ã管çãã Kubernetes ã€ã³ãã©ã¹ãã©ã¯ãã£
ã§ãã°ã€ã³
ãã€ãã£ãã¯ã©ãŠããµãŒãã¹
Google ã³ã³ãã ãšã³ãžã³ (GKE)
IBM
ãã€ãã£ãã¯ã©ãŠããµãŒãã¹
IBMã¯ã©ãŠãKubernetesãµãŒãã¹
Microsoft
ãã€ãã£ãã¯ã©ãŠããµãŒãã¹
Azure Kubernetes ServiceãAzure Service Fabric
ãªã©ã¯ã«
ãã€ãã£ãã¯ã©ãŠããµãŒãã¹
Kubernetes çš OCI ã³ã³ãã ãšã³ãžã³
Platform9
MSP
ãããŒãžãKubernetes
ã¬ããããã
ãã¹ããããµãŒãã¹
OpenShift å°çšããã³ãªã³ã©ã€ã³
ãŽã€ãšã ãŠã§ã¢
ãã¹ããããµãŒãã¹
ã¯ã©ãŠã PKS (ããŒã¿ç)
Mail.ru ã¯ã©ãŠã ãœãªã¥ãŒã·ã§ã³*
ãã€ãã£ãã¯ã©ãŠããµãŒãã¹
Mail.ruã¯ã©ãŠãã³ã³ãã
* é ãã€ããã¯ãããŸããã翻蚳äžã«ããã«èªåèªèº«ãè¿œå ããŸãã:)
ãããªã㯠ã¯ã©ãŠã ãããã€ããŒãæ°ããæ©èœãè¿œå ãããªã³ãã¬ãã¹è£œåããªãªãŒã¹ããŠããŸãã è¿ãå°æ¥ãã¯ã©ãŠã ãããã€ããŒã¯ãã€ããªãã ã¯ã©ãŠããšãã«ãã¯ã©ãŠãç°å¢ã®ãµããŒããéçºããã§ãããã
- é©åãªããŒã«ãå°å ¥ããŠç®¡çããçµç¹ã®èœåã客芳çã«è©äŸ¡ãã代æ¿ã®ã¯ã©ãŠã ã³ã³ãã管çãµãŒãã¹ãæ€èšããŸãã
- ãœãããŠã§ã¢ã¯æ éã«éžæããå¯èœãªå Žåã¯ãªãŒãã³ãœãŒã¹ã䜿çšããŠãã ããã
- ãã§ãã¬ãŒããã ã¯ã©ã¹ã¿ãŒãäžç»é¢ã§ç®¡çã§ãããã€ããªããç°å¢ã§å ±éã®éçšã¢ãã«ãåãããããã€ããŒãšãIaaS ã®èªå·±ãã¹ãã容æã«ãããããã€ããŒãéžæããŠãã ããã
- ããã«é«å¯çšæ§ããµããŒããããã£ã¹ããªãã¥ãŒã·ã§ã³ãæ¢ã䟡å€ããããŸãã ããã«ã¯ãè€æ°ã®äž»èŠãªã¢ãŒããã¯ãã£ãé«å¯çšæ§ã® etcd ã³ã³ããŒãã³ããããã¯ã¢ãããšãªã«ããªã®ãµããŒããå«ãŸããŸãã
- Kubernetes ç°å¢ã®ã¢ããªãã£ã確ä¿ããã«ã¯ããªã³ãã¬ãã¹ãããã€ããªããããã«ãã¯ã©ãŠããŸã§ãå¹ åºãå±éã¢ãã«ããµããŒãããã¯ã©ãŠã ãããã€ããŒãéžæããã®ãæåã§ãã
- ãããã€ããŒã®è£œåã¯ãã»ããã¢ãããã€ã³ã¹ããŒã«ãã¯ã©ã¹ã¿ãŒäœæã®å®¹æãã«å ããŠãæŽæ°ãç£èŠããã©ãã«ã·ã¥ãŒãã£ã³ã°ã«ãåºã¥ããŠè©äŸ¡ããå¿ èŠããããŸãã åºæ¬çãªèŠä»¶ã¯ãããŠã³ã¿ã€ã ãªãã§å®å šã«èªååãããã¯ã©ã¹ã¿ãŒæŽæ°ããµããŒãããããšã§ãã éžæãããœãªã¥ãŒã·ã§ã³ã§ã¯ãæŽæ°ãæåã§å®è¡ã§ããå¿ èŠããããŸãã
- ID ãšã¢ã¯ã»ã¹ã®ç®¡çã¯ãã»ãã¥ãªãã£ãšã¬ããã³ã¹ã®äž¡æ¹ã®èŠ³ç¹ããéèŠã§ãã éžæãã Kubernetes ãã£ã¹ããªãã¥ãŒã·ã§ã³ããå éšã§äœ¿çšããèªèšŒããã³èªå¯ããŒã«ãšã®çµ±åããµããŒãããŠããããšã確èªããŠãã ããã RBAC ãšãã现ããã¢ã¯ã»ã¹å¶åŸ¡ãéèŠãªæ©èœã»ããã§ãã
- éžæãããã£ã¹ããªãã¥ãŒã·ã§ã³ã«ã¯ãããŸããŸãªã¢ããªã±ãŒã·ã§ã³ãã€ã³ãã©ã¹ãã©ã¯ãã£ã®èŠä»¶ãå¹ åºãã«ããŒãããã€ãã£ãã®ãœãããŠã§ã¢å®çŸ©ãããã¯ãŒãã³ã° ãœãªã¥ãŒã·ã§ã³ãåãã£ãŠããããFlannelãCalicoãkube-routerãOVN ãªã©ã®äžè¬ç㪠CNI ããŒã¹ã®ãããã¯ãŒãã³ã°å®è£ ã®ããããããµããŒãããŠããå¿ èŠããããŸãã
ã«é¢ãã調æ»çµæãããåããããã«ãçç£çŸå Žãžã®ã³ã³ããå°å
¥ãäž»æµã«ãªãã€ã€ãããŸãã
ã芧ã®ãšãããåçè
ã® 27% ããã§ã«ä»äºã§ã³ã³ãããŒã䜿çšããŠããã63% ã䜿çšããäºå®ã§ãã
Ð
ã¯ã©ãŠããã©ãããã©ãŒã ããŒã ãäœæããèšäº
ãã®ãããã¯ã«é¢ããŠä»ã«äœãèªãã¹ãã:
DevOps ã®ãã¹ã ãã©ã¯ãã£ã¹: DORA ã¬ããŒã .èäœæš©äŸµå®³ã®ç²Ÿç¥ãåãã Kubernetes ãšå®è£ çšã®ãã³ãã¬ãŒã .Kubernetes ã®ãããã€ãšå°å ¥ã«åœ¹ç«ã€ 25 ã®ããŒã« .
åºæïŒ habr.com