Download - Big Brother: Kubernetes Edition
![Page 1: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/1.jpg)
Information presented is confidential
Container-native monitoring:Kubernetes Edition
Apurva Davé, Sysdig Specialist
![Page 2: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/2.jpg)
Information presented is confidentialInformation presented is confidential
![Page 3: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/3.jpg)
Information presented is confidentialInformation presented is confidential
![Page 4: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/4.jpg)
Information presented is confidentialInformation presented is confidential
![Page 5: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/5.jpg)
Information presented is confidentialInformation presented is confidential
Monitoring containers is different
Microservices and containers break legacy monitoring and analytics tools
Sysdig is the first and only solution that can natively monitor any infrastructure and app, including container-based ones
![Page 6: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/6.jpg)
Information presented is confidentialInformation presented is confidential
Monitoring containers is different
Legacy monitoring approaches cannot see inside containers
Running monitoring agents inside containers is not a viable solution
Yesterday’s monitoring tools don’t understand microservices architectures & container orchestration
![Page 7: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/7.jpg)
Information presented is confidentialInformation presented is confidential
Host OS
Container orchestration & tooling
Network & infrastructure
Container
CoreApp
Sysdig ContainerVision
Unique system instrumentation
Container Container
Infr.App
![Page 8: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/8.jpg)
Information presented is confidentialInformation presented is confidential
Sysdig ContainerVision
Kernel
Docker
Container1
Container2
Container3
App App rkt LXC
![Page 9: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/9.jpg)
Information presented is confidentialInformation presented is confidential
Kernel
Sysdig ContainerVision
Docker
Container1
Container2
Container3
App App rkt LXC
Kernel moduleInstrumentation
![Page 10: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/10.jpg)
Information presented is confidentialInformation presented is confidential
Sysdig ContainerVision
Kernel
Docker
Container1
Container2
Container3
App App rkt LXC
Sysdig
Docker
collection &analysis
![Page 11: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/11.jpg)
Information presented is confidentialInformation presented is confidential
New instrumentation = Better visibility
Infrastructure based monitoring & alerting
Typical infrastructure monitoring products
![Page 12: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/12.jpg)
Information presented is confidentialInformation presented is confidential
New instrumentation = Better visibility
Application- intelligent Monitoring & alerting
Trace-driven troubleshooting
Service-oriented performance management
![Page 13: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/13.jpg)
Information presented is confidentialInformation presented is confidential
Service-oriented performance management
Monitor applications & logical services (not hosts!)
Service 1 Service 2 Service 3
Computing node
Computing node Computing node
Computing node Computing node
Computing node
![Page 14: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/14.jpg)
Information presented is confidentialInformation presented is confidential
Service-oriented performance management
Monitor applications & logical services (not hosts!)
Service 1 Service 2 Service 3
What’s the response time of my Cassandra service that’s currently distributed over three data centers? What are the
slowest queries?”“
![Page 15: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/15.jpg)
Information presented is confidentialInformation presented is confidential
Service-oriented performance management
Deep, real-time understanding of orchestration metadata
![Page 16: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/16.jpg)
Information presented is confidentialInformation presented is confidential
Kubernetes Integration
1. How are my servers running kubernetes master/minions doing?
2. Graph kubernetes-specific metrics from the API
3. (The dream) monitor your services deployed with kubernetes
a) Use kubernetes API metadata to aggregate data across replication controllers, pods
b) See inside containers to track application performance… aggregate information from inside all relevant containersBack to integrations slide
![Page 17: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/17.jpg)
Information presented is confidentialInformation presented is confidential
How Sysdig-Kubernetes integration works
master
1. Sysdig monitoring each container & app
2. Sysdig agent on master auto-discovers and polls API
3. Metadata collected every few seconds
4. Now Sysdig Cloud can dynamically aggregate metrics across namespaces, replication controllers, pods or any labels
workers
![Page 18: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/18.jpg)
Information presented is confidentialInformation presented is confidential
Application Intelligent Monitoring & Alerting
Automatic DiscoveryApp discovery without plug-ins
TemplatesPre-built templates by application & service
Zero-config custom metricsStatsD & JMX – no agents inside containers
Anomaly detectionOutlier & deviation based comparisons
Developers spun up a new service based on apache and mongo last night without letting us know. We deployed sysdig, so we still see it all, without any config.”“
![Page 19: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/19.jpg)
Information presented is confidentialInformation presented is confidential
v
Application Intelligent Monitoring & Alerting
We automatically discover your appsThousands of relevant metrics without a single plug-in or YAML config
![Page 20: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/20.jpg)
Information presented is confidentialInformation presented is confidential
Trace-driven troubleshooting
“Dashboard
sCorrelate
eventsTrace file with every system
call
System Call
PID CPU USER TH VIRTRES FILE NET
303 1.5 root 3 280K 57K0 236.00
35 0.5 root 5 37K 02K 0.00
Replay the state of my system last night, when the Auth service alerts fired, 5 minutes before our app went down. Show all the system calls from the containers we destroyed.”
![Page 21: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/21.jpg)
Information presented is confidentialInformation presented is confidential
Demo
![Page 22: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/22.jpg)
Information presented is confidentialInformation presented is confidential
What we’re going to show you
Small environment, with & without orchestration
1. How to deploy a sysdig agent (yes, we will actually show you instrumentation!)
2. Service-oriented performance metrics and analytics3. A deep troubleshooting example4. Basic monitoring – creating a dashboard, set an alert
![Page 23: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/23.jpg)
Information presented is confidentialInformation presented is confidential
Product Offerings
Sysdig Cloud
Sysdig On-Premise
Sysdig Open Source
– Hosted offering– $20/mo/host – discounted for large server volume– Monthly or annual
– Run the Sysdig backend in your private cloud or AWS domain – Annual only– Minimum commitment required
– CLI-based troubleshooting tool– Used on a single host– Community support
![Page 24: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/24.jpg)
Information presented is confidentialInformation presented is confidential
Summary
Deep container visibility
Service oriented performance management
Application intelligent monitoring & alerting
Trace driven troubleshooting
Start a free trial today and see Sysdig running in your own environment!
![Page 25: Big Brother: Kubernetes Edition](https://reader037.vdocuments.site/reader037/viewer/2022102720/58f1b8361a28ab4a568b4591/html5/thumbnails/25.jpg)
Information presented is confidentialInformation presented is confidential
Thanks (that’s the end)