App Store

Google Play

Details page - Device banner - 894x1036

Step into an infinite world of stories

Listen and read

Red Hat OpenShift

PodCTL - Enterprise Kubernetes

Show: 1

Show Overview: Brian Gracely (@bgracely) and Tyler Britten (@vmtyler) introduce the PodCTL podcast, discuss the latest news in the Kubernetes community, highlight the OpenShift 3.6 launch, and answers some frequently asked questions about Linux containers. 
 
 Show Links:

[announcement] OpenShift 3.6 GA[blog] OpenShift 3.6 - PCI Product Applicability[blog] OpenShift 3.6 - Improved Developer Experience[blog] OpenShift 3.6 - Enhanced User/Operator Experience[blog] OpenShift 3.6 - What’s New in Cluster Management[blog] OpenShift 3.6 - Service Catalog & Brokers (Tech Preview)[deadlines] CNCF Call for Papers due August 21st[trends and data] 2017 - Bitnami Container Trends[news announcement] Packet provides On-Demand Lab Resources[news announcement] AWS Joins the CNCFBitnami creates non-root containers for OpenShift
Show Notes

Topic 1: • An Introduction to the new podcast and our hosts.
Topic 2: • News and Updates from the Kubernetes and CNCF Communities
Topic 3: • What's new in OpenShift 3.6 with this week's launch?
Topic 4: • How can people learn more about OpenShift, or get hands-on experience?- Self-Paced Online Learning: 

Learning Links:

 • Free Self-Pace Online Learning - 
learn.openshift.com • Free Cloud Tier: 
OpenShift Online • Locally on your laptop: 
MiniShift • 
Topic 5: • The hosts answer some frequently asked questions about Containers, Kubernetes and OpenShift - 
Question 1: • Can you run a 3rd-party Container Registry with OpenShift? - 
Question 2: How should you run your containers • (privileged, non-privileged)?

Feedback?

 • Email: 
podctl at gmail dot com • Twitter: 
@PodCTL • Homepage: 
PodCTL.com •

3.6 Ways to Love Kubernetes

Show Description: Brian and Tyler discuss some of the use-cases that businesses have for using Kubernetes. They review several public examples of Kubernetes uses, both in web scale and Enterprise environments.
 
Show Notes:

GitHub Goes All-In on Kubernetes • (via TheNewStack)
KubeCon / CloudNativeCon CFP is Due August 21st
Segment 1 - Thank you for the great response to the initial show. Response has been very positive and we’ve already had like 8-10 people ask to be guests on the show. The challenge is to figure out what to do on show #2 or #3 since there is so much happening. So we’ve decided that for a while, we’re going to make sure that we cover all the fundamentals of containers and Kubernetes.
 
Segment 2 - News of the Week

 • GitHub announces details of how they use Kubernetes 
 • AWS does not announce a Kubernetes services at AWS Summit in NYC 
 • KubeCon CFP is due by August 21st

Segment 3 - How are companies using Kubernetes?

daemonSets • (instance on each node), 
replicaSets • (specific # is always running), 
jobs • (run to completion), 
statefulSets • (stateful apps) vs persistent 
Volumes • (stateful storage) 
Kubernetes Job Openings Customer sessions at Red Hat Summit • 
OpenShift Commons Gathering • (videos) 
Kubernetes Case-Studies • 

Segment 4 - How to Learn More

Free Kubernetes Training from CNCF • 
Kubernetes by Example • (Michael Hausenblas) 
How does the Kubernetes scheduler work? • (Julia Evans) 
Kubernetes the Hard Way • (Kelsey Hightower)

 Segment 5 - Question(s) of the Week 

 • Q1: What’s the right way to install Kubernetes? There seem like too many options. 
 • A1: 
Kubernetes: A Little Guide to Install Options 
Feedback?

 • Email: 
PodCTL at gmail dot com • Twitter: 
@PodCTL • 
 • Web: 
http://PodCTL.com

Who has a Kubernetes problem?

Show: PodCTL Basics #1

Show Overview: The basics of Kubernetes.

Show Notes:

Kubernetes ConceptsKubernetes Code on GitHub
 Segment 1 - What is Kubernetes?

 • Technology that spawned from Google’s internal “Borg” system for running application in containers. 
 • Open source project donated to the CNCF in 2015. 
 • Open source community of 1500+ engineers working on various sub-projects that make up the Kubernetes system. 

 Segment 2 - How does Kubernetes work?

 • etcd 
 • Kubernetes API 
 • Kubernetes scheduler 
 • Kubelet on each worker machine
 • Controllers

 Segment 3 - What’s the relationship between Kubernetes and Containers?

 • Containers describe what application bits run on a machine 
 • Kubernetes is the framework that places containers on machines and ensures that the containers run in a well-defined manner (start/stop, highly available, load-balanced, etc.) 

 Segment 4 - Are there alternative technologies that work similar to Kubernetes?

 • Kubernetes is ultimately a framework that schedules containers 
 • Mesos Marathon 
 • Docker Swarm 
 • Nomad from Hashicorp 
 • Lots of homegrown, DIY systems, mostly based on scripting

 Segment 5 - How can a company get Kubernetes or use Kubernetes?

 • Use the Open source software from the Kubernetes community 
 • Use commercially available distributions of Kubernetes from multiple vendors 
 • Consume Kubernetes-as-a-Service from multiple cloud providers

Feedback?

 • Email: 
PodCTL at gmail dot com • Twitter: 
@PodCTL • 
 • Web: 
http://podctl.com

PodCTL Basics - What is Kubernetes?

Show: 3

Show Description: Brian and Tyler talk with Vincent Batts (@vbatts, Principle Software Engineer in the Office of Technology for Container Architecture at Red Hat) about the state of container standards - OCI, containerd, Moby, Linux vs. Windows containers, etc.

Show Notes:

Vincent Batts on GitHubOpen Container Initiative (OCI)CRI-O: Container Runtime InterfaceRelevant XKCDA Comparison of Linux Container Images
 Segment 1 - News of the Week

Red Hat and Microsoft announce partnership around Windows Containers and OpenShift and Azure, plus much more. 
Segment 2 - An Interview with Vincent Batts

Topic 1 • - Welcome to the show Vincent. Tell us what types of things you work on in the container community.
Topic 2 • - 2yrs ago, there was docker and rkt arguing about container standards, and the OCI emerged. Can you give us an update on where container standards are today? 
Topic 3 • - What is this new concept called CRI-O, and how does it relate to Kubernetes? 
Topic 4 • - Containers always used to be Linux-specific, but we’re starting to hear more noise around Windows containers. Is this Microsoft specific, or are standards groups working on this too?

Segment 3 - Question(s) of the Week

 • Q1: What’s the difference between the Host OS and the Container OS, and do they need to be the same? 
 • A1: 
A Comparison of Linux Container Images
Feedback?

 • Email: 
PodCTL at gmail dot com • Twitter: 
@PodCTL • 
 • Web: 
http://PodCTL.com

Making Sense of Container Standards

Show: 4

Show Description: Brian and Tyler discuss the broad range of tools that are available to deploy, operate and manage Kubernetes environments. There are lots of options...

Show Notes:

PodCTL #4 - TranscribedKubernetes: A Little Guide to Install OptionsMonitoring OpenShift: Three Tools for SimplificationRolling Updates to Kubernetes - At MacQuarie Bank • [video]

Segment 1 - [News of the Week]

 • VMware, Google and Pivotal announced a packaged version of the Kubo project, called Pivotal Container Service (PKS). 
 • CNCF continues to be the center of Enterprise IT with VMware, Pivotal joining

Segment 2 - Why do Open Source Projects often end up with so many installers?
 
Segment 3 - What are some of the common types of tools for kubernetes installations?

 • Install on your laptop (e.g. Minikube, Minishift, etc.) 
 • Public Services (OpenShift Online, GKE, Azure Container Service, etc)
 • Quickstart installer on a public cloud (e.g. Heptio, DO, kops, etc.)
 • Kubernetes-specific installers (kubeadm, kubicorn, kargo, etc.) 
 • Deployment scripts and variations on “runbooks” (e.g. Ansible, Chef, Puppet, etc.)

Segment 4 - What are some of the Day 2 tools that are used with Kubernetes?

 • Upgrade tools (e.g. 1-click, Operators, etc.) 
 • Monitoring & Management (e.g. Prometheus, Datadog, New Relic, Zabbix, SysDig, CoScale) - https://blog.openshift.com/monitoring-openshift-three-tools/ 
 • Logging (e.g. EFK, Loggly, etc.) 
 • Application Frameworks - Save that for future shows!

Feedback?

 • Email: 
PodCTL at gmail dot com • Twitter: 
@PodCTL • Web: 
http://podctl.com

All the Tools in the Kubernetes Toolbox

Show Overview: Brian and Tyler discuss the basics of Linux containers.
 
 Show Notes:

 • [TRANSCRIPTION] 
PodCTL Basics - Linux ContainersAn Introduction to Container TerminologyArchitecting Containers: User Space vs. Kernel Space
 Segment 1 - What is a Linux Container?

Filesystem + Metadata (JSON) • 

Segment 2 - How do Linux hosts interact (and isolate) Linux Containers?

 • Host OS vs. Container OS
 • Container isolation 
 • Container security 101

Segment 3 - How does a container interact with Networking and Storage?

 • Pass-thru host details
 • CNI - Container Native Interface
 • Native container networking
 • Storage Volumes (static & dynamic)

Segment 4 - Can any Application run in a Linux Container? Does it have to be modified?

 • User namespace vs root
 • Resource requirements 

Feedback?

 • Email: 
PodCTL at gmail dot com • Twitter: 
@PodCTL • 
 • Web: 
http://podctl..com

PodCTL Basics - Linux Containers

Show: 5

Show Overview: Brian and Tyler talk with Chris Aniszczyk (@cra, CTO/COO of CNCF, Executive Director of OCI) about the Cloud-Native Ecosystem, if there is a CNCF "stack", the CNCF process for project acceptance, and the growth vs. hype of Kubernetes. 
 
 Show Notes:

 • [TRANSCRIPTION] 
PodCTL #5 - Understanding the Cloud-Native EcosystemCloud Native Computing Foundation (CNCF) HomepageCNCF LandscapeOpen Containers Initiative (OCI) HomepageKubeCon & CloudNativeCon • - Austin, TX (Dec.6-8)

 News of the Week 

Mesosphere adds Kubernetes support to DC/OSMirantis claims that Kubernetes is OpenStack 2.0
 Interview with Chris Aniszczyk 
 Topic 1 - Welcome to the show. What hats do you wear at both the CNCF and OCI? 
 Topic 2 - How do the CNCF projects and OCI projects work together? (example: why is rkt or containerd in the CNCF and not OCI?) 
 Topic 3 - What is the role of the CNCF? 

Is there a CNCF stack?

Can you talk about how projects get engaged with CNCF and the process of “official” vs. “incubation”, etc?

Will it ever make sense to have a “certification” program for CNCF-associated offerings, or does that create too much overhead?

Topic 4 - With so many projects being created, in different parts of the stack, where do you potentially see the next “official” projects coming from? 
 Topic 5 - Can you give us your perspective on some of the noise recently around Kubernetes?
 
 Community Question of the Week: 
 Q: My company runs mostly pre-packed Windows applications. Is there anything that we can do with Containers or Kubernetes to help them?

Feedback?

 • Email: 
PodCTL at gmail dot com • Twitter: 
@PodCTL • 
 • Web: 
http://podctl.com

Understanding the Cloud Native Ecosystem

Show Overview: Brian and Tyler discuss the basics of how an application gets into a container, how to layer OS + applications + dependencies, how a container interacts with a container registry, and how container files different from Kubernetes manifests.
 
Show Notes:

 • [TRANSCRIPTION] 
PodCTL Basics - How to Containerize an ApplicationSetting up a DockerfileBuilding an OCI-compliant container with "Buildah"Deploying with Kubernetes Manifests
Topic 1 - How does a Container know what application to run?

 • Metadata
 • Image Layers

Topic 2 - Can any Application run in a Container? Does it have to be modified?

 • User namespace vs. Root
 • Resource requirements

Topic 3 - How does a Container interact with a Container Registry?
 
 Topic 4 - How does a Container tell Kubernetes about it’s Application needs (HA, Static IP, Storage, etc.)?

 • Pods and Manifests

Topic 5 - Can a Containerized Application interact with other applications? How?

 • Within a Cluster
 • DNS Services / Networking
 • Kubernetes Services
 • Service Discovery frameworks

 Feedback?

 • Email: 
PodCTL at gmail dot com • Twitter: 
@PodCTL • 
 • Web: 
http://podctl.com

PodCTL Basics - How to Containerize an Application

Show: 6

Show Overview: Brian and Tyler talk about the technologies in “core” Kubernetes and the additional elements needed to evolve it into a more complete application platform. 
 
Show Notes:

 • [TRANSCRIPTION] - coming soon 
PodCTL #4 - All the Tools in the Kubernetes Toolbox PodCTL #3 - Making sense of container standards (including OCI)Kubernetes by Example
News of the Week:

 • Oracle joins the CNCF
Heptio takes Series B round of VC funding • Jaeger (
@JaegerTracing • ) and Envoy (
@EnvoyProxy • ) become official CNCF projects.

Topics 1 - What's included in Kubernetes (by default)?
 We’ve seen quite a bit of survey data recently that shows usage of Kubernetes is growing quite rapidly. If somebody says they are “using Kubernetes”, by default, what functionality do they have available to them?

Topic 2 - What core “platform” elements aren’t included with Kubernetes? 

 • Container Runtime (e.g. docker, rkt, oci)
 • Container Registry
 • Advanced Networking
 • Persistent Storage
 • Monitoring, Logging
 • Backup tools for Kubernetes or the applications running in Pods.

Topic 3 - What are some of the standard ways to plug in those pieces?

 • Container Runtime - CRI (Container Runtime Interface)
 • Registry - Many 3rd-party options
 • Networking - CNI (Container Network Interface) 
 • Storage - CSI (Container Storage Interface)
 • Logging / Monitoring - Sidecar Containers

Topic 4 - What does a company get with a "distribution" vs. "platform" vs. "public cloud service"?

 • Tectonic (example)
 • OpenShift (example)
 • Google Container Engine (example)

Question of the Week:

Q: What is "pure" Kubernetes?

Feedback?

 • Email: 
PodCTL at gmail dot com • Twitter: 
@PodCTL • 
 • Web: 
http://podctl.com

What's included with Kubernetes?

Show: 7

Show Overview: Brian and Tyler talk with Clayton Coleman (@smarterclayton, Lead Kubernetes Architect) and Derek Carr (@derekwaynecarr, Kubernetes Lead Engineer) about the Kubernetes development process, the role of SIGs, the process for deciding what gets included in a release, as well as an in-depth discussion about the extensibility of Kubernetes 1.8
 
 Show Notes:

The early days of KubernetesContributing to KubernetesKubernetes 1.8 featuresKubernetes 1.8 features (tracking spreadsheet)An Overview of Project "Istio"
Topic 1 - Welcome to the show. Both of you are top contributors to Kubernetes, both also lead (or co-lead) some of the SIG/Working group. Can you give us a sense of your community involvement from a contributor and leader perspective?
 
 Topic 2 - Derek, you're on the nomination list for the Kubernetes Steering Committee. Chris Aniszczyk mentioned it a couple weeks ago, but what does that group do that’s different than SIGs? 
 
 Topic 3 - When there are 100s of contributors and many different focus areas, what is the process for deciding what’s included or prioritized or dropped from a specific release?
 
Topic 4 - Kubernetes 1.8 has a mix of Alpha, Beta and Stable features. What do you see as the key focus areas in this release? (e.g. RBAC, CRI-O, etc.)
 
Topic 5 - How does Kubernetes look at the explosion of “tools” around core Kubernetes (deployers, application templates, application frameworks) and when to make those parts of the project or keep them separate?

Feedback?

 • Email: 
PodCTL at gmail dot com • Twitter: 
@PodCTL • Web: http://podctl.com

Digging into Kubernetes 1.8

Show: 32

Show Overview:Tyler and Aaron Delp talk with Liz Rice (@lizrice, Technology Evangelist @AquaSecTeam) about what's easy—and what's not—about finding and patching security vulnerabilities in containers. This is a cross-over show with @TheCloudcastNet podcast.
 
 Show Notes:

Liz’s talk at Velocity Conf - “What’s so hard about container vulnerability scanning?” • Use code 
CLOUD • to get 20% off Velocity or OSCON tickets
Aqua Security HomepageLiz Rice’s Blog[Video] Kubernetes, Metadata and You (KubeCon 2017 Austin)
Topic 1 - Welcome to the show Liz. Tell us a little bit about your background and the types of things that you’re working on these days.

Topic 2 - Let’s start with the basics. A container is defined by a file (e.g. Dockerfile) that the user/developer/operator defines. How can a vulnerability get into that file?

Topic 3 - Is it up to the CI/CD system or host OS (where the container runs) or container orchestrator (e.g. Kubernetes) or container registry to figure out if a vulnerability exists?

Topic 4 - How do most container registries today manage vulnerability lists, container scanning and potential mitigations? What are the difficult parts of those tasks?

Topic 5 - Most containers today are Linux containers. Are you seeing anything happening (yet) around how to manage Windows containers vulnerabilities? Is the assumption that Microsoft will fix this through one of their existing tools, or are things happening in the open source community as well? 

Feedback?

 • Email: 
PodCTL at gmail dot com • Twitter: 
@PodCTL • 
 • Web: 
http://podctl.com

Container Vulnerability Scanning

Listen and read

Other podcasts you might like ...