Fast Track Istio Workshop
The Fast Track Istio workshop will get developers up and running with Istio on a live Kubernetes cluster. Let us begin with understanding why enterprises need Service Meshes in the first place. Organizations all over the world are in love with microservices. Teams that adopt microservices have the flexibility to choose their tools and languages, and they can iterate designs and scale quickly. However, as the number of services in the organizations continue to grow, they face challenges that can be broadly classified into two categories:
• Orchestrate the infrastructure on which the microservices are deployed.
• Consistently implement the best practices of service-to-service communication across microservices.
By adopting container orchestration solutions such as Docker Swarm, Kubernetes, and Marathon, developers gain the ability to delegate infrastructure-centric concerns to the hosting platform. With capabilities such as cluster management, scheduling, service discovery, application state maintenance, and host monitoring, the container orchestration platforms specialize in servicing layers 1–4 of the Open Systems Interconnection (OSI) network stack.
Almost all popular container orchestrators also provide some application life-cycle management (ALM) capabilities at layers 5–7, such as application deployment, application health monitoring, and secret management. However, often these capabilities are not enough to meet all the application-level concerns, such as rate-limiting and authentication.
Istio is an open-source service mesh that automatically adds the network capabilities that Microservices need without requiring developers to make any changes to the source code. Istio simplifies service to service communication, traffic ramping, fault tolerance, performance monitoring, tracking and much more.
In this workshop, participants will learn the fundamentals of Istio, its use cases, configurations, and learn how Istio can take care of almost all of the service management issues for new as well as existing applications by writing and applying configurations on the services. The workshop will cover the hands-on experience of building, deploying and managing applications with Istio on Kubernetes.
Format of the Workshop
We will use a set of simple Microservices applications that resemble real-world scenarios to explore the various nuances of Istio by deploying them to a live Kubernetes cluster. By working through the samples and exercises, the readers will get a thorough understanding of the features of Istio and its advantages. The workshop will be delivered in an easy to digest format over two days. On the first day, we will gain an understanding of the platform and its features, and deploy simple applications to Istio to understand the capabilities of the network APIs. On the second day, we will add traffic management, security policies, and monitoring capabilities to the sample applications.
Value to Developers
This workshop will help developers get familiar with the concepts of Istio and apply them to real-world scenarios. After completing the workshop, the participants will gain experience with the following:
1. The value proposition of Service meshes.
2. Manage inter-microservice communication.
3. Manage the security of microservices through the platform.
4. Configure observability of microservices.
5. Implement common microservice networking patterns.
Workshop Outline
Introduction
Use cases
Advantages of using Istio as a service mesh
Istio architecture
Istio components
Installation - Hands-on Lab
Istio deployment on K8s
Istio deployment configurations
istioctl client
Application Deployment - Hands-on Lab
Configuration using kubectl
Deploying Application
Traffic Management Patterns - Hands-on Lab
Networking API 1: Ingress gateway
Networking API 2: Service entry, destination rule, virtual service
Canary and mirror deployments
Implementing microservices patterns: timeouts, retry, circuit breakers, fault injection
Security - Hands-on Lab
Authentication: mTLS, transport authentication, origin authentication
Authorization policy
Observability - Hands-on Lab
Monitoring on Istio: metrics, traces
Target Audience
Engineers and DevOps professionals.
Hands-on Engineering leaders.
System Requirements
Laptop with network access
Software installed (see below)
Computer Setup
Windows 10 Pro with Hyper-V and Docker for Windows (with Kubernetes cluster setup)
Macs with Docker for Mac installed (with Kubernetes cluster setup)
Visual Studio Code
Supplementary Links
Docker for Windows: https://docs.docker.com/docker-for-windows/
Docker For Mac: https://docs.docker.com/docker-for-mac/
Istio: https://istio.io/
I am a self-driven technology leader with proven skills in leadership, decision-making, and quick learning. I have over 13 years of hands-on experience in cloud and web technologies. I apply emerging technologies and processes to bring efficiency to enterprise technology operations. As a leader, I have successfully established and led engineering teams and designed enterprise applications to solve organizational challenges. I foster innovation, collaboration and bring improvement to engineering teams.
I have authored three books and a free workshop on Microservices orchestrators and Service Mesh: Azure Service Fabric- Microservices with Azure, by Packt, Kubernetes- Kubernetes Succinctly, Istio- Istio Succinctly, by Syncfusion, and Fast Track Istio Workshop on Katacoda. I am an active Microsoft MVP (Most Valuable Professional), and DZone MVB (Most Valuable Blogger). You can connect with me through my blog: https://thecloudblog.net.
Tarun works as a Solution Architect in Sydney, Australia with over fifteen years of work experience. He has extensive experience working as a Cloud Architect with various MNCs throughout the world.
As a Cloud Architect, he worked on large-scale and complex IT engagements for enterprises and helped them build new applications and migrate existing applications to the Cloud. He worked for over four years with Microsoft, where he was primarily working on Microsoft Azure solutions. He has also worked with an Augmented Reality startup, Foyr.com, to build an Automated Interior Designer product for Real Estate Developers. He has worked extensively on cloud computing and IoT applications and has extensive experience working on cloud platforms including Microsoft Azure, AWS, and GCP.
Tarun has authored two books on Kubernetes and Istio.