MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode...
Transcript of MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode...
![Page 1: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/1.jpg)
M E X I C O C I T Y
![Page 2: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/2.jpg)
© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Running Containers on AWS
Christian RomeroSolutions ArchitectAWS
T E C H 3 0 4
![Page 3: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/3.jpg)
AgendaBrief introduction on containers
Containers on AWS
Amazon ECS
AWS Fargate
Amazon EKS
![Page 4: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/4.jpg)
The new normal: Companies are increasingly global and products are increasingly digital
47%of CEOs said they are being challenged by the board of directors to make progress in digital business
Source: Gartner
79%of CIOs believe that digital business is making their IT organizations better prepared to change
67% of all business leaders believe that they must pick up the pace of digitalization to remain competitive
![Page 5: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/5.jpg)
To maintain competitive advantage, digital businesses must innovate as rapidly as possible.
FeedbackIdeas
Experiment
InnovationFlywheel
![Page 6: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/6.jpg)
What changes have to be made
in this new world?
Architectural patterns
Operational model
Software delivery
![Page 7: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/7.jpg)
When the impact of change is small,release velocity can increase.
MonolithDoes everything
MicroservicesDo one thing
![Page 8: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/8.jpg)
Mobile client
Client
IoT
Microservices architectures
APIGateway
Account Database
Shipping Database
Inventory DatabaseStore FrontWeb App
AccountLookup
ShipmentQuery
InventoryQuery
![Page 9: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/9.jpg)
Isn’t all of this very hard now that we have lots of pieces to operate?
![Page 10: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/10.jpg)
AWS operational responsibility models
On Premises Cloud
Less More
Compute Virtual MachineAmazon EC2 Elastic Beanstalk LambdaAWS Fargate
Databases MySQL MySQL on Amazon EC2 Amazon RDS MySQL Amazon RDS Aurora Aurora Serverless DynamoDB
Storage StorageAmazon S3
Messaging ESBsAmazon MQ Kinesis Amazon SQS/Amazon SNS
AnalyticsHadoop Hadoop on Amazon EC2 Amazon EMR Amazon ES Athena
![Page 11: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/11.jpg)
What is serverless?
No infrastructure provisioning or management
Automatic scaling
Pay for value Highly available and secure
![Page 12: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/12.jpg)
Lambda AWS Fargate
API Gateway Amazon SNS
Amazon SQS
Step Functions
COMPUTE
DATA STORES
INTEGRATION
Aurora ServerlessAmazon S3 DynamoDB
AWS AppSync
![Page 13: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/13.jpg)
How do I develop and deploy code in a serverless microservices architecture?
![Page 14: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/14.jpg)
Microservice development lifecycleDevelopers Services
monitorreleasetestbuild
Delivery Pipelines
monitorreleasetestbuild
monitorreleasetestbuild
monitorreleasetestbuild
monitorreleasetestbuild
monitorreleasetestbuild
![Page 15: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/15.jpg)
Containers are the best on ramp towards modern applications.
![Page 16: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/16.jpg)
We all know what docker is, don't we?
Yeah. Thank you, next.
![Page 17: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/17.jpg)
© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
best placecontainers
![Page 18: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/18.jpg)
AWS container services landscape
ManagementDeployment, scheduling,
scaling, and management of containerized applications
HostingWhere the containers run
Amazon ECS Amazon ECS for Kubernetes
Amazon EC2 AWS Fargate
Image RegistryContainer image repository
Amazon ECR
![Page 19: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/19.jpg)
Amazon ECS
![Page 20: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/20.jpg)
Scheduling and Orchestration
Cluster Manager Placement Engine
ECS
![Page 21: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/21.jpg)
Amazon ECS
AMAZON EC2 INSTANCES
AMAZON ECS
AGENT
TASK
Container
TASK
Container
TASK
Container
TASK
Container AGENT COMMUNICATION SERVICE
Amazon ECS
API
CLUSTER MANAGEMENT ENGINE
KEY/VALUE STORE
TASK
Container
TASK
Container
Internet LOAD BALANCER
LOAD BALANCER
AMAZON ECS
AGENT
AMAZON ECS
AGENT
![Page 22: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/22.jpg)
Cluster of hosts on Amazon EC2
AMAZON EC2 INSTANCES
AMAZON ECS
AGENT
TASK
Container
TASK
Container
TASK
Container
TASK
Container AGENT COMMUNICATION SERVICE
Amazon ECS
API
CLUSTER MANAGEMENT ENGINE
KEY/VALUE STORE
TASK
Container
TASK
Container
Internet LOAD BALANCER
LOAD BALANCER
AMAZON ECS
AGENT
AMAZON ECS
AGENT
![Page 23: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/23.jpg)
Lightweight agent on each host
AMAZON EC2 INSTANCES
AMAZON ECS
AGENT
TASK
Container
TASK
Container
TASK
Container
TASK
Container AGENT COMMUNICATION SERVICE
Amazon ECS
API
CLUSTER MANAGEMENT ENGINE
KEY/VALUE STORE
TASK
Container
TASK
Container
Internet LOAD BALANCER
LOAD BALANCER
AMAZON ECS
AGENT
AMAZON ECS
AGENT
![Page 24: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/24.jpg)
Lightweight agent on each host
AMAZON EC2 INSTANCES
AMAZON ECS
AGENT
TASK
Container
TASK
Container
TASK
Container
TASK
Container AGENT COMMUNICATION SERVICE
Amazon ECS
API
CLUSTER MANAGEMENT ENGINE
KEY/VALUE STORE
TASK
Container
TASK
Container
Internet LOAD BALANCER
LOAD BALANCER
AMAZON ECS
AGENT
AMAZON ECS
AGENT
![Page 25: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/25.jpg)
API for launching containers on the cluster
AMAZON EC2 INSTANCES
AMAZON ECS
AGENT
TASK
Container
TASK
Container
TASK
Container
TASK
Container AGENT COMMUNICATION SERVICE
Amazon ECS
API
CLUSTER MANAGEMENT ENGINE
KEY/VALUE STORE
TASK
Container
TASK
Container
Internet LOAD BALANCER
LOAD BALANCER
AMAZON ECS
AGENT
AMAZON ECS
AGENT
![Page 26: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/26.jpg)
Container task is placed on a host
AMAZON EC2 INSTANCES
AMAZON ECS
AGENT
TASK
Container
TASK
Container
TASK
Container
TASK
Container AGENT COMMUNICATION SERVICE
Amazon ECS
API
CLUSTER MANAGEMENT ENGINE
KEY/VALUE STORE
TASK
Container
TASK
Container
Internet LOAD BALANCER
LOAD BALANCER
AMAZON ECS
AGENT
AMAZON ECS
AGENT
![Page 27: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/27.jpg)
Traffic is sent to your host
AMAZON EC2 INSTANCES
AMAZON ECS
AGENT
TASK
Container
TASK
Container
TASK
Container
TASK
Container AGENT COMMUNICATION SERVICE
Amazon ECS
API
CLUSTER MANAGEMENT ENGINE
KEY/VALUE STORE
TASK
Container
TASK
Container
Internet LOAD BALANCER
LOAD BALANCER
AMAZON ECS
AGENT
AMAZON ECS
AGENT
![Page 28: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/28.jpg)
You end up managing more than just containers.
Amazon EC2 Instance
Amazon ECS
Agent
Docker AgentOS
![Page 29: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/29.jpg)
Managing instance fleets is hard work, too
Patching and Upgrading OS, agents, etc.
Scaling the instance fleet for optimal utilization
![Page 30: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/30.jpg)
Amazon ECS
Agent
Docker AgentOS
Amazon EC2 Instance
Amazon ECS
Agent
Docker AgentOS
Amazon EC2 Instance
Amazon ECS
Agent
Docker AgentOS
Amazon EC2 Instance
Amazon ECS
Customers wanted to run containers without having to manage Amazon EC2 instances
![Page 31: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/31.jpg)
Your containerized applications
ServerlessNo Amazon EC2 Instances to provision, scale, or manage
ElasticScale up and down seamlesslyPay only for what you use
Integratedwith AWS: Amazon VPC Networking, Elastic Load Balancing, IAM permissions, CloudWatch, and more
AWS Fargate
![Page 32: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/32.jpg)
Amazon EC2 AWS Fargate
Managed by Customer AWS
Storage Ephemeral or persistent Only ephemeral
Sidecar pattern Yes Yes
Network mode Bridge or VPC mode VPC mode
Daemons Yes No
SSH into host Yes No
Privileged containers
Yes No
Amazon ECS/Amazon EC2 vs. Amazon ECS/AWS Fargate
![Page 33: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/33.jpg)
Open source container management platform
Helps you run containers at scale
Gives you primitives for building modern
applications
What is Kubernetes?
![Page 34: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/34.jpg)
Community, contribution, choice
![Page 35: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/35.jpg)
3x Kubernetes masters for HA
Kubernetes on AWS
![Page 36: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/36.jpg)
API server
Cloud controller
Controller manager
Scheduler Add-onsKubeDNS
Kubernetes master
![Page 37: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/37.jpg)
Availability Zone 1
Etcd
Master
Etcd
Master
Etcd
Master
Availability Zone 2
Availability Zone 3
![Page 38: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/38.jpg)
Availability Zone 1
Etcd
Master
Etcd
Master
Availability Zone 2
Availability Zone 3
Etcd
Master
![Page 39: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/39.jpg)
© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
![Page 40: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/40.jpg)
How much do you want to manage?
Your container
Worker nodes
Masters State store
![Page 41: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/41.jpg)
Amazon EKS
![Page 42: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/42.jpg)
mycluster.eks.amazonaws.com
EKS Workers
Kubectl
Amazon EKS
AZ 1 AZ 2 AZ 3
Your AWS account
![Page 43: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/43.jpg)
VPC
Amazon EKS control plane
Highly available and single tenant infrastructure
All “native AWS” components
Fronted by an NLB
NLB Amazon EKS
Availability Zone 1 Availability Zone 2 Availability Zone 3
ELB
etcd ASG
API Servers ASG
![Page 44: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/44.jpg)
WorkerNodes
Auto Scaling Group
Managed Node Groups
Auto Scaling Group
Amazon EKS data plane options
Pod 3 Pod 2 Pod 1Pod 3 Pod 3
AWS Fargate
Amazon EKS
![Page 45: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/45.jpg)
Fargate Managed nodes Unmanaged nodes
Units of work Pod Pod and Amazon EC2 Pod and Amazon EC2
Unit of charge Pod Amazon EC2 Amazon EC2
Host lifecycle There is no visible host AWS (SSH is allowed) Customer
Host AMI There is no visible host AWS vetted AMIs Customer BYO
Host: Pods 1:1 1:many 1:many
AWS Fargate vs. (un)managed nodes
![Page 46: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/46.jpg)
Thank you!
© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
![Page 47: MEXICO CITY WWPS Summit Assets...Sidecar pattern Yes Yes Network mode Bridge or VPC mode VPC mode Daemons Yes No SSH into host Yes No Privileged containers Yes No Amazon ECS/Amazon](https://reader034.fdocuments.us/reader034/viewer/2022042219/5ec5603d67ccba06050c0c39/html5/thumbnails/47.jpg)
© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.