As Kubernetes grows, a startup ecosystem develops in its wake

Kubernetes is one of those rare cases where the industry is rallying around a technologically sound platform that emerged from the trenches, and not something that was designed to create jobs for consultants. It&#x27;s great. Right now, there&#x27;s a bunch of fairly traditional players such as Red Hat, but none of them are in a position to mess it up.<p>What I&#x27;m waiting for, though, is for a big player to do a modern, clean &quot;Kubernetes first&quot; cloud offering. We&#x27;re currently on Google Kubernetes Engine, and I&#x27;m disappointed in the lack of integration throughout Cloud Platform. GCP is great in many areas, but the Kubernetes offering is clearly an afterthought. As an example, if you create an ingress, this creates a bunch of load balancer objects (forwarding rules, URL maps, backends). But these are all given obscure names (k8s-um-production-zippediboop-f8da5e6c92f38300), and none of the Kubernetes labels transfer over. Same with disks; GCE disks don&#x27;t even have labels, so they put a bunch of JSON in the &quot;description&quot;, which of course cannot be filtered or queried. Similar things happen with VMs and other things; the &quot;mapping&quot; of Kubernetes to GCP concepts is basically either lossy or non-existent. Many other similar weaknesses exist: Cloud SQL (if you want to use Cloud SQL, you have to manually run the Cloud SQL Proxy as a sidecar), GCP service accounts (different from Kubernetes service accounts!), etc. GKE is solid, but everything seems like it&#x27;s been put together without any over-arching design; GKE is just another thing buried in a somewhat ramshackle jungle of different services.<p>There&#x27;s an opportunity for a vendor to come in and offer a platform where you <i>start</i> with Kubernetes. In particular, this means that the platform should be manageable <i>from</i> Kubernetes, through the use of CRDs and pluggable controllers. For example, I should be able to define a persistent disk using a Kubernetes manifest, instead of having to go through some web UI or CLI (&quot;gcloud compute disk create&quot; or whatever).<p>That said, it&#x27;s hard to compete with GCP at this point. Whoever wants to compete in this space have to compete not just with GKE, but with the technical awesomeness of GCP.

I didn&#x27;t realize all the pieces of the cloud stack that CNCF was working on and how each piece gives you more flexibility to move between cloud providers. Kubernetes and rkt replace servers and orchestration of course but you also have Open Policy Agent and Spire to replace IAM, Envoy and Jaeger replace X-ray, VPC, Security Groups, Rook replaces S3, etc.<p>It&#x27;s kind of interesting because Google and Microsoft have opened a new front against Amazon to counter their strategy of locking you in with services. If software from CNCF is good enough to be used in place of these services on each cloud provider then you can nullify AWS&#x27;s advantage there and Google can lure you in with ML and Microsoft with their enterprise experience.<p>But I&#x27;m not sure these projects can make progress faster than AWS can release and update their fantastic array of services. Kubernetes being the obvious exception (when is EKS GA?!?!)

Really glad to see K8 getting this level of investment. Even if it will take a month to explore all the links in the CNCF landscape ;)<p>Just want to remind anyone who hasn&#x27;t tried K8. You can run MiniKube locally right on your laptop to get a taste of its power (and complexity):<p><a href="https:&#x2F;&#x2F;kubernetes.io&#x2F;docs&#x2F;getting-started-guides&#x2F;minikube&#x2F;" rel="nofollow">https:&#x2F;&#x2F;kubernetes.io&#x2F;docs&#x2F;getting-started-guides&#x2F;minikube&#x2F;</a><p>For example, a 3-node Redis Enterprise cluster, all run locally:<p><a href="https:&#x2F;&#x2F;redislabs.com&#x2F;blog&#x2F;local-kubernetes-development-using-minikube-redis-enterprise&#x2F;" rel="nofollow">https:&#x2F;&#x2F;redislabs.com&#x2F;blog&#x2F;local-kubernetes-development-usin...</a><p>Currently using GCloud and Stackdriver monitoring, but a few of the tools I am excited about include:<p>Prometheus &#x2F; Granafa &#x2F; KSonnet<p>KubeFlow ML<p><a href="https:&#x2F;&#x2F;www.youtube.com&#x2F;watch?v=I6iMznIYwM8" rel="nofollow">https:&#x2F;&#x2F;www.youtube.com&#x2F;watch?v=I6iMznIYwM8</a><p>Istio, for programmatic routing<p><a href="https:&#x2F;&#x2F;istio.io&#x2F;" rel="nofollow">https:&#x2F;&#x2F;istio.io&#x2F;</a><p>And, Agones, for game hosting<p><a href="https:&#x2F;&#x2F;agones.dev&#x2F;" rel="nofollow">https:&#x2F;&#x2F;agones.dev&#x2F;</a>

Kubernetes is cool and all, but there needs to be a lot of simplification for it to be &quot;nice to use&quot;. Essentially the problem is that it&#x27;s the &quot;opposite&quot; of Golang - the number of ways to do the same thing is massive leading to huge numbers of headaches in trying to get things done.<p>Recently, I spun up a simple pod-to-pod communication example but I found it pretty difficult. If you look up cluster networking in Kubernetes (<a href="https:&#x2F;&#x2F;kubernetes.io&#x2F;docs&#x2F;concepts&#x2F;cluster-administration&#x2F;networking&#x2F;#how-to-achieve-this" rel="nofollow">https:&#x2F;&#x2F;kubernetes.io&#x2F;docs&#x2F;concepts&#x2F;cluster-administration&#x2F;n...</a>) you&#x27;ll find a whole fire hose of different options from ingress to calico to fabric and on and on.<p>This was what it took for me to try and rubber ducky my way to getting networking to work on Kubernetes, and in the end I had to get help from a friend at work (<a href="https:&#x2F;&#x2F;stackoverflow.com&#x2F;questions&#x2F;50195896&#x2F;how-do-i-get-one-pod-to-network-to-another-pod-in-kubernetes-simple" rel="nofollow">https:&#x2F;&#x2F;stackoverflow.com&#x2F;questions&#x2F;50195896&#x2F;how-do-i-get-on...</a>). It may be better than what came before, but it&#x27;s not great.

Recently I have been playing with kubernetes through Rancher. I like how easy it is to install kubernetes through rancher, essentially I ran 2 commands: 1. on the machine that runs rancher and 2. on the first node in my cluster.<p>After a few days of playing I set up lets encrypt with load balancing, a running app (Rails). A remaining issue are persistent volumes and how truly persistent these are. I haven&#x27;t found out yet which solution I should pick for this. Longhorn is a Rancher product, which is probably what I will read more about now, but I cannot be sure. There are so many concepts and terminology that you need to figure out. Having Rancher in between is not helping me get a hang of kubernetes itself more purely of course.<p>A while back I was playing with Docker Swarm and I must say that I like Docker Swarm better in the sense that it feels closer to the source and because it is built into Docker. I get a feeling however that Kubernetes is where the future is so learning more about Docker Swarm is probably less worthwhile.

There needs to be a digitalocean or heroku for containerization. Currently to start a k8s whatever you need to go through various manual rigamaroles and spend a lot of money, or go through the big lockin providers and spend a lot of money.<p>For those of us not backed by venture capital and not charging SV ex-googler rates to our clients, we need something to say &quot;we&#x27;ll host you on this git push containerization thing, it&#x27;ll be cheap and easy, and we&#x27;ll expand when the time comes, and that&#x27;ll be cheap and easy too&quot;.

I&#x27;m curious: how does containerization work for systems that utilize kernel-bypass? Is it even possible?<p>I did a (admittedly short) search for kubernetes and kernel bypass, and the only thing that seem remotely relevant was [0], however it didn&#x27;t indicate whether they work together.<p>For background, I work for a Dark Pool Alternative Trading System, and we currently utilize kernel bypass for all of our networking using Solarflare NICs &amp; openonload [1].<p>In the same vein, curious how containers work with CPU shielding and pinning threads to specific cores. Is it possible, and how do multiple containers on the same box interact in that regard. Do they need to be quasi-aware of each other so as to not pin a thread to the same core?<p>I&#x27;d greatly appreciate if anyone with experience with containers can answer these questions. I&#x27;m genuinely curious, but it&#x27;s not worth researching further if there&#x27;s no solution that can handle these strict requirements (e.g. it&#x27;s a non-starter if containers increase latency).<p>[0] <a href="https:&#x2F;&#x2F;thenewstack.io&#x2F;life-post-container-world&#x2F;" rel="nofollow">https:&#x2F;&#x2F;thenewstack.io&#x2F;life-post-container-world&#x2F;</a> [1] <a href="http:&#x2F;&#x2F;openonload.org&#x2F;" rel="nofollow">http:&#x2F;&#x2F;openonload.org&#x2F;</a>

This is true for startups new and old.<p>At Datica (where I work), we started in 2014 with a bespoke container orchestration layer. This powered our HITRUST certified Platform. Think Heroku for regulated industries (like Healthcare). After years of hardship trying to keep up with the market we finally decided to go all in on K8s.<p>Kubernetes gives us the flexibility and community to focus on the compliance and security layer, while not having to build a Platform in house. Until now, no other open source solution had given us this type of flexibility. We&#x27;re still working toward a GA release, but the speed at which we&#x27;ve been able to move has been incredible.

It’s always nice when there is some sort of consensus in the industry, however, there is one thing I worry about.<p>Now that there is a usable solution for complex orchestration, many newcomers will consider it the goto solution, regardless of scale. You need nginx and some python scripts? Kubernetes! You have 100 daily visitors? Kubernetes!<p>It’s not really their fault, it’s just a sad consequence of a convenient cloud solution.

Does anyone knows a very good CD for k8s?<p>I found that only bitbucket deployments is a good one in terms of simplicity of managing deployments (just like Heroku). Most vendors forces me to use their crappy CI solution for doing CD. Why they want me to migrate to your (very limited) build system? I can pay you for a fancy dashboard, but please, allow me to use whatever i need to build my software. There are many options on the market for CI and you just can&#x27;t build them for everybody. But good CD is a way to go and easier to manage. Just give me a hook for registering for a new build (say docker image versions) and help me manage this stuff. I have tried Spinnakle, but it is too fragile for me - there are no simple way to install it (k8s even easier!) and UI is too bad for a small project.<p>Good CD is still missing in k8s ecosystem.

I think the real advantage of k8s is the ease to scale bare metal. This just isn&#x27;t that important for the next 5 years or so. On the other hand, azure and gke make k8s easy enough if you are already using docker. Containers on the hand, the developer experience is still very mixed. OSX still doesn&#x27;t have great container support and I honestly can only guess how well windows can handle my docker-compose workflow.<p>One great k8s tool I like is kompose. It allows our devs a very similar interface around secrets, networks, volumes, etc.

<a href="https:&#x2F;&#x2F;techcrunch.com&#x2F;2018&#x2F;05&#x2F;07&#x2F;mesosphere-hauls-in-125-m-series-d-investment&#x2F;" rel="nofollow">https:&#x2F;&#x2F;techcrunch.com&#x2F;2018&#x2F;05&#x2F;07&#x2F;mesosphere-hauls-in-125-m-...</a> seems apt and got very little attention in <a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=17012856" rel="nofollow">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=17012856</a>, given the size of the round.

Honestly, the K8S ecosystem is so wide now I&#x27;d love to see an up-to-date explainer piecing it all together. What folks need, what they don&#x27;t, etc.

How do you pronounce Kubernetes?

Does anyone know if Apple uses Kubernetes in their cloud?