I'm ex-developer, Software Engineer / Architect and now I work as an Infrastructure Technical Designer / Architect, therefore I know, the DevOps methodology is the best way how to develop and deliver a business application to the business owner. What matters is the final product which has to be developed in sync with the business owner, otherwise, there is a high chance you are not meeting business owner expectations. At the end of the day, it doesn't matter if you use Docker, Kubernetes, Ansible or even more traditional tools. It is worth to say that DevOps is about methodology and not the tooling. This is what Developer and DevOps admin see via Docker ClientĪnd here is the command to destroy particular VCH. If you need persistent storage for your containers, you can create volumes which are persistently stored in your enterprise infrastructure and visible not only to DevOps admin and Developer, but also to your infrastructure administrator.ĭocker -tls volume create -opt Capacity=2GB -name volume-testĭocker -tls run -name busybox -it -v volume-test:/data/volume-test busybox Specific container (nginx) visibility for vSphere Admin In the screenshot below you see what vSphere Admin has in his environment. Run NGINX and access the service directly through container network (IP address assigned staticaly)ĭocker -tls run -name nginx30 -network="container01" -ip="192.168.51.30" -d -p 80 nginx Run NGINX and access the service directly through container network (IP address assigned via DHCP)ĭocker -tls run -name nginx2 -network="container01" -d -p 80 nginx Run NGINX and access the service through NATĭocker -tls run -name nginx1 -d –p 8080:80 nginx Of course, we can use other standard docker commands to manage our docker images and containers. The output from the command looks similar to $ vic-machine-darwin create -name vch01 -container-name-convention vch01-compute-resource CLUSTER -image-store vsan-Underlay -base-image-size 8GB -bridge-network VCH01-BRIDGE -bridge-network-range 172.16.0.0/12 -public-network MGMT -dns-server 192.168.4.4 -container-network CONTAINER01:container01 -container-network-ip-range CONTAINER01:192.168.51.0/24 -container-network-gateway CONTAINER01:192.168.51.254/24 -container-network-dns CONTAINER01:192.168.4.4 -container-network-firewall CONTAINER01:published -tls-cname vch01 -certificate-key-size 2048 -no-tlsverify -user -thumbprint 64:06:CD:4E:D8:39:8B:E8:80:2D:D3:25:50:C7:B9:7D:E1:6F:8B:E9 -target .cz/SDDC -ops-user administrator Now we are ready to create our first VCH. As my workstation is Mac OS X (aka darwin), in commands below I will use ./vic-machine-darwinīefore the first VCH deployment, we have to enable the firewall rules in a particular vSphere cluster (the name of vSphere Cluster in my home lab is CLUSTER). Vic-machine tool is available for various operating systems (windows, linux, darwin). Openssl x509 -in /etc/vmware-vpx/ssl/rui.crt -fingerprint -sha1 -noout If you have self-signed certificate as I have in my lab, you need to get vCenter Thumbprint.You have to ssh to vCenter Server Appliance and get the fingerprint. When we have vic-machine available in our DevOps workstation we can start act as a DevOps engineer. We can download vic-machine from VIC appliance deployed in step 1. I will discuss roles, tooling, and RBAC for particular actors in DevOps approach in the next blog post together with the overall architecture. ![]() VCH deployment is typically done via vic-machine CLI Utility as GUI is too slow interface for DevOps approach. ![]() Let's keep architectural decisions besides at the moment and focus on testing the technology itself. You can have multiple VCH's and they can be grouped into projects. ![]() The second step is to create the first VCH (Virtual Container Host), which acts as a remote Docker server. It's pretty straight forward so I'm not going to document any details. The first step is to deploy VIC from OVF. As one of my customers is considering VIC to provide containers to their developers, I have decided to test it in my home lab.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |