Docker?!?! But I'm a SysAdmin
-
Upload
docker-inc -
Category
Technology
-
view
473 -
download
0
Transcript of Docker?!?! But I'm a SysAdmin
Docker?!?!But, I’m a SysAdmin!MikeColeman@mikegcoleman
Technology Evangelist - Docker
1st half of my career was in IT \ Networking admin (Intel, HP)
2nd half of my career has been in product management \ marketing for Docker, Puppet, VMware, and Microsoft.
Definitely more IT pro than developer
@mikegcoleman
Who Am I?
Docker containers are NOT VMs• Easy connection to make
• Fundamentally different architectures
• Fundamentally different benefits
Containers are Not VMs?
VMs Containers
They’re different, not mutually exclusive
Variables to Consider! Performance
! Scalability
! Costs
! Security
! Existing Skillsets
! Etc.
http://people-equation.com/do-your-words-encourage-or-deflate/math-equation_chalkboard/
US Infrastructure Reduction Forecast
10% Of the total portfolio
+ +-70%VMs
-67%Cores
=10xAverage CPU
Utilization
-66%Cost Reduction
593 Applications
ConsiderationsDocker containers increase performance and flexibility
12
3
Plan for Higher Density
Bare Metal or Bigger VMs
Tune To Optimize
Security is not just isolation
• Where did those images come from?
• Are they up to date?
• Who can access your resources?
• How do I deal with sensitive data / passwords?
• Are you communication channels secure
What is Container Security
Usable Security
Secure defaults with tooling that is native to both devand ops
10
The Key Components of Container Security
Infrastructure Independent
Trusted Delivery
Safer Apps
Everything needed for a full functioning app is delivered safely and guaranteed to not be tampered with
All of these things in your system are in the app platform and can move across infrastructure without disrupting the app
Usable Security
Integrated Security with Docker Datacenter
Infrastructure Independent
Trusted Delivery
Safer Apps
Image Scanning
TLS EncryptionEncryption at Rest
App Secrets
Image Signing & Verification
Public CloudVirtualizationPhysical
Users & RBAC
Dev/Ops Workflow
Secure by default runtime
• Meet the teams where they live
• Developers
• Docker for Mac• Docker for Windows• Native Linux
• Ops
• Docker for AWS• Docker for Azure
Leveraging Existing Skillsets
Docker For AWS
Demo
One platform and one journey for all applications
1 Traditional apps in containersGain portability, efficiency and security
2
3
Transform to MicroservicesLook for shared services to transform
Accelerate New ApplicationsGreenfield innovation
Modernize Traditional Apps
ExistingApplication
Modern Methodologies
Integrate to CI/CDand automation
system
Convert to a container
with Docker EE
Modern Infrastructure
Built on premise, in the cloud, or as part of a hybrid environment.
Modern Microservices
Add new services or start peeling off
services from monolith code base
App
Modernizing a Traditional Application
Demo
• Involve all the people• Dev • Ops• Security• Exec• Perf
• Choose the right partners• Define your guardrails• You will make mistakes, be flexible• Sweat the small stuff
Key Customer Cultural Learnings
• Start small• MTA or Microservices: Your call• What’s your plan for:
• Static port mappings• Per environment configs• Persistent data
• Adapt your processes
Picking the right Project
Thank YouWhat to do next:• Test drive the tech at our hands on labs• Great customer sessions• Pick a pilot project, and get your hands dirty• Share your knowledge and your missteps
@mikegcoleman #dockercon
Interested in MTA! Stop by the booth (MTA pod)
! Download the kit www.docker.com/mta
! Look for a MTA Roadshow near you
! Contact your Account Team
Docker EEHosted Demo
● Free 4 Hour Demo
● No Servers Required
● Full Docker EE Cluster Access
docker.com/trial
@@mikegcoleman #dockercon
Please Rate the
Session!
PLEASE provide feedback