vmware

Blogposts:

• Introducing Project Pacific: https://blogs.vmware.com/vsphere/2019/08/introducing-project-pacific.html
• Project Pacific Technical Overview: https://blogs.vmware.com/vsphere/2019/08/project-pacific-technical-overview.html
• Project Pacific Beta Sign-Up: https://blogs.vmware.com/vsphere/2019/11/interested-in-the-project-pacific-beta.html
• Infrastructure Self-Service with Project Pacific: https://blogs.vmware.com/vsphere/2019/09/infrastructure-self-service-with-project-pacific.html
• Project Pacific Namespaces on Kubernetes: https://blogs.vmware.com/vsphere/2019/08/project-pacific-namespaces-on-kubernetes.html
• Performance Details of Native Pods: https://blogs.vmware.com/performance/2019/10/how-does-project-pacific-deliver-8-better-performance-than-bare-metal.html
• Workload Evolution in vSphere (William Lam): https://www.virtuallyghetto.com/2019/09/project-pacific-workload-evolution-in-vsphere.html
• 5 Things to know about Project Pacific (Frank Denneman): https://frankdenneman.nl/2019/08/26/5-things-to-know-about-project-pacific/
• Introduction to Tanzu Mission Control and Project Pacific (Cormac Hogan): https://cormachogan.com/2019/08/26/vmworld-2019-announcement-vmware-tanzu-portfolio/
• Project Pacific explained in AWS EC2 terms (Ryan Kelly): http://www.vmtocloud.com/project-pacific-k8s-explained-in-amazon-ec2-terms/
• What Project Pacific really means to VMware (Ryan Kelly): http://www.vmtocloud.com/what-project-pacific-really-means-for-vmware/
• [Nov 22, 2019] Project Pacific VMworld 2019 Deep-Dive Updates (Cormac Hogan): https://cormachogan.com/2019/11/22/project-pacific-vmworld-2019-deep-dive-updates/

VMworld US 2019:

• HBI4500BU – Project Pacific Technical Overview: Unifying vSphere and Kubernetes – STREAM DOWNLOAD PDF
• HBI4937BU – Introducing Project Pacific: Transforming vSphere into the App Platform of the Future – STREAM DOWNLOAD PDF
• Tech Field Day special from VMworld: https://blogs.vmware.com/vsphere/2019/09/project-pacific-at-tech-field-day-extra-at-vmworld-2019.html

VMworld Europe 2019 sessions:

• HBI1452BE – Project Pacific: Supervisor Cluster Deep Dive – STREAM DOWNLOAD
• HBI1761BE – Project Pacific 101: The Future of vSphere – STREAM DOWNLOAD
• HBI4500BE – Project Pacific: Guest Clusters Deep Dive – STREAM DOWNLOAD
• HBI4501BE – Project Pacific: Native Pods Deep Dive – STREAM DOWNLOAD
• HBI4937BE – Introducing Project Pacific: Transforming vSphere into the App Platform of the Future – STREAM DOWNLOAD
• KUB1840BE – Run Kubernetes Consistently Across Clouds with Tanzu & Project Pacific – STREAM DOWNLOAD
• KUB1851BE – Managing Clusters: Project Pacific on vSphere & Tanzu Mission Control – STREAM DOWNLOAD

Podcasts:

• vSpeaking #129: Project Pacific – https://blogs.vmware.com/virtualblocks/2019/09/20/vspeaking-podcast-project-pacific/

Labs / Hands-On:

• HOL-2013-01-SDC – Project Pacific – Lightning Lab: https://labs.hol.vmware.com/HOL/catalogs/lab/6877

Other interesting sources:

• Virtual VMUG Meeting Dec 2019 with keynote “VMware’s Kubernetes Strategy: Tanzu and Project Pacific”: https://vmugvirtualdecevent.vfairs.com/
• #vSphereChat focussed on #ProjectPacific on Twitter (Nov 12, 2019): https://twitter.com/search?q=vspherechat%20projectpacific&src=typed_query

Feel free to reach out if you are missing any interesting sessions here – happy to update this post anytime! @bbrundert

After I shared a brief overview about running Containers on vSphere, I’d like to go a little further this time and share the VMware intergration points with Kubernetes. As you are probably aware of, VMware has just released it’s own Kubernetes distribution called “Pivotal Container Service” which became generally available on Februrary 12, 2018. While this is VMware’s and Pivotal’s recommended and preferred way to run Kubernetes in an Enterprise environment, there are several options to either consume any other Kubernetes distribution or build Kubernetes solely from opensource. No matter what path you choose, VMware has a variety of solutions to offer.

 

Compute / Cloud Provider

• vSphere Cloud Provider for Kubernetes
• Photon OS 2.0: Container-Optimized Linux Operating System
• Container Service Extension is add-on to VMware vCloud Director that helps tenants work with Kubernetes clusters
• Runtime environments: VMware vSphere, vSphere Hypervisor, Workstation, Fusion

Network & Security

• Overview: Network Virtualization and Pod-level Security with NSX-T 
  • NSX-T Reference Design Guide and Containers and Container Networking Whitepaper
• NSX Container Plugin (NCP): sits between K8s API Server and NSX Manager, reacts to changes on K8s objects and triggers NSX Manager
  • NSX-T Container Plug-in for Kubernetes and Cloud Foundry
  • NSX-T Container Plug-in for OpenShift
• NSX CNI (Container Network Interface) Plugin: Kubelet will call out to the CNI Plugin to manage the Pod network
• NSX Kube-Proxy: replaces native Kube-Proxy with Open vSwitch-based load-balancing functionality

Storage

• Project Hatchway: Persistent Storage for Cloud Native Applications
• vSphere Storage for Kubernetes: overview page on GitHub 
  • Volumes
  • Persistent Volumes & Persistent Volumes Claims
  • Dynamic Provisioning and StorageClass API
  • StatefulSets

Monitoring

• Wavefront by VMware: highly scalabe SaaS-based platform and application level monitoring (integration with K8s is done via Heapster)
• VMware vRealize Operations Management Pack for Container Monitoring: platform operations level monitoring for Kubernetes, out-of-the-box integrated with VMware vRealize Operations
• vRealize Log Insight: Intelligent Log Management & Analytics

Container Management

• Project Harbor: An Enterprise-class Container Registry Server based on Docker Distribution, embedded in Pivotal Container Service and vSphere Integrated Containers
• vRealize Automation: governance and self-service to request K8s clusters, nodes and e.g. namespaces; custom integration/blueprints required

3rd Party Documentation

• Deploying OpenShift Container Platform 3 on VMware vCenter 6
• Install Tectonic on VMware with Terraform

Inspired by a tweet by Kendrick Coleman I decided to quickly summarize the current VMware and Pivotal provided options to running containers on vSphere.

• vSphere Integrated Containers (VIC): running containers as VMs on vSphere
  • Virtual Container Host (VCH): nearly complete Docker API support, one container per Container Host VM (“Container VM”)
  • Docker Container Hosts (DCH): native Docker API support, multiple containers per Container Host VM
• Pivotal Container Service (PKS): enterprise grade K8s distribution
• Pivotal Application Service (PAS); formerly known as Pivotal Cloud Foundry (PCF): integrated Platform-as-a-Service offering based on Cloud Foundry
• VMware Integrated OpenStack with Kubernetes (VIOK): running K8s on top of OpenStack
• Photon OS: open source minimal Linux container host optimized for cloud-native applications for vSphere
• Container Service Extension for vCloud Director: a vCloud Director add-on that manages the life cycle of Kubernetes clusters for tenants.

 

In addition to these integrated solutions, you can also build or bring your own solution and leverage projects such as:

• Project Hatchway: persistent storage for Cloud Native Applications
  • vSphere Storage for Docker: vSphere Docker Volume Service (VDVS) & vFile volume plugin for Docker
  • vSphere Storage for Kubernetes: vSphere Cloud Provider (VCP) for Kubernetes allows Pods to use enterprise grade persistent storage
• NSX: software-defined networking and security for containers
  • NSX-T Container Plugin (NCP)
  • NSX CNI Plugin
  • NSX Kube-Proxy
• Project Harbor: Enterprise-class Container Registry Server based on Docker Distribution
• Project Admiral: Highly Scalable Container Management Platform
• Weathervane: application-level performance benchmark designed to allow the investigation of performance tradeoffs in modern virtualized and cloud infrastructures

Great news for all vSphere customers that are looking at ways to run Containers on vSphere. VMware’s product team just released vSphere Integrated Containers 1.1 on VMware.com.

A quick reminder: the VMware product vSphere Integrated Containers references the core Engine (open source project), the Registry (aka open source project Harbor) as well as the Management Portal (aka open source project Admiral). You can pick the individual open components from GitHub and run them on your own terms (see e.g. Harbor example from a recent Golang conference in China) or use the integrated & supported product delivered by VMware.

Key highlights from the Release Notes:

• A unified OVA installer for all three components
• Upgrade from version 1.0
• Official support for vSphere Integrated Containers Management Portal
• A unified UI for vSphere Integrated Containers Registry and vSphere Integrated Containers Management Portal
• A plug-in for the HTML5 vSphere Client
• Support for Docker Client 1.13 and Docker API version 1.25
• Support for using Notary with vSphere Integrated Containers Registry
• Support for additional Docker commands. For the list of Docker commands that this release supports, see Supported Docker Commands in Developing Container Applications with vSphere Integrated Containers. (Link)

 

You can also use vic-machine upgrade to upgrade the Virtual Container Hosts. From the Upgrade Guide:

When you upgrade a running VCH, the VCH goes temporarily offline, but container workloads continue as normal during the upgrade process. Upgrading a VCH does not affect any mapped container networks that you defined by setting the vic-machine create --container-network option. The following operations are not available during upgrade:

• You cannot access container logs
• You cannot attach to a container
• NAT based port forwarding is unavailable

IMPORTANT: Upgrading a VCH does not upgrade any existing container VMs that the VCH manages. For container VMs to boot from the latest version of bootstrap.iso, container developers must recreate them.

With the release of vSAN 6.6 and vCenter 6.5d, you might want to test out VIC 1.1 in your test/lab environment and leverage it to build a great platform for your development teams. Speaking of compatibility:

 

There is also a new demo video that shows the product & the updated User Interfaces in more detail. Check out the video here:

Time to update the lab!

Only few days ago, the vSphere Integrated Containers team released the newest version 0.7 on GitHub and Bintray. I just want to summarize a few resources for tests with this release here and document some gotchas that have already been raised. Remember: this code is still a beta release so don’t deploy it to production immediately. You can also read up on the announcement of VIC as part of vSphere 6.5 in the official press release from VMworld.

Here are the links:

• The very comprehensive vSphere Integrated Containers Engine 0.7 Install Guide offers a lot of detail and has all the new flags for the installer already included. PDF for Download: https://vmware.github.io/vic/assets/files/pdf/vic_installation.pdf & as HTML page: https://vmware.github.io/vic/assets/files/html/vic_installation/index.html
• vSphere Integrated Containers Bintray download page: https://bintray.com/vmware/vic/Download/v0.7.0
• Release Notes for 0.7: https://github.com/vmware/vic/releases/tag/v0.7.0
• vSphere Integrated Containers Engine for vSphere Administrators: https://vmware.github.io/vic/assets/files/html/vic_admin/index.html
• Developing Container Applications with vSphere Integrated Containers Engine: https://vmware.github.io/vic/assets/files/html/vic_app_dev/index.html

During the installation, you can now specify a fixed IP address instead of DHCP for your Virtual Container Host (VCH) – this is one of the new features in the 0.7 release. Please make sure to use –dns-server with your vic-machine command to set the DNS server address in the VCH. Otherwise it will use the network gateway which results in some timeout errors during the installation. There is already an issue documented at https://github.com/vmware/vic/issues/3060.

If you deploy VIC in your environment and encounter any issues, please open a issue on GitHub (https://github.com/vmware/vic/issues). You can also reach out to myself via Twitter and I’ll try to get back to you as soon as possible.