Home
Contribute Contact Us Browse all meetings
Home Contribute Contact Us Browse all meetings
Red Hat OpenShift / Detroit 2022 OpenShift Commons Gathering / 25 Oct 2022
Red Hat OpenShift / Detroit 2022 OpenShift Commons Gathering / 25 Oct 2022
Previous Meeting Next Meeting
Add meeting Rate page Subscribe
youtube image
From YouTube: OpenShift Release Update and Road Map with Karena Angell Red Hat OpenShift Commons 2022 Detroit

Description

OpenShift Release Update and Road Map
Red Hat OpenShift Commons 2022 @ Kubecon/NA
Detroit, Michigan
October 25, 2022

Speaker: Karena Angell (Red Hat)
https://commons.openshift.org/gatherings/kubecon-22-oct-25/

A

Foreign.

A

State of application delivery right. We have a crazy mix of old and new applications workloads and that you all need to run in your organization.

A

Most large Enterprises have huge existing application portfolios and that are built on traditional architectures and tradition with traditional languages, whether you're using java.net, others all right, and these are supporting both stateful and stateless workloads.

A

In addition, many of these applications are many of these organizations are building new applications with modern workloads, so you're using existing applications or new architectures, with your microservices or with new apis and newer languages and Frameworks such as quercus a spring or node.js or others.

A

Many of them are moving now to integrate more intelligence and newer models into their applications.

A

Such as analytics AIML definitely interested to hear what applications you're also using.

A

So and then some of the questions that we ask ourselves as we're going through this, are you know what applications do you have in your portfolio? Are they new they old? And what challenges are you really struggling with um in terms of serving your business with your application portfolio and then also we're thinking about your development methodologies and your processes? And and how are we going to support your applications that are developed?

A

You know whether you're using waterfall, whether you're using agile practices, whether you're implementing cicd or devops methodologies, and you need to provide a mix of skills to support these varying methodologies and your development teams have to keep pace and identify new ways to build and deploy your applications faster.

A

So, and as you're trying to run these applications that run your business, where are you doing this? Is it in the cloud? Is it on-prem? Is it on bare metal right?

A

Are you using virtual machines and then, if you're, like many of our customers, you're also running in multiple clouds, uh in addition to maybe a private cloud or on bare metal again or at the edge? So when you think about it, your infrastructure is already hybrid right and we talk about hybrid a lot and do you have an architecture that is flexible enough to support this hybrid world.

A

And for the past 10 years or so we have been talking about the open, hybrid cloud, um many of you have helped, innovate and have really helped us succeed. You know creating value for the rest of the customers and saying you know this is It's a group Journey right. It's been a long time, um so rail had to reach individual servers and real.

A

You know booted up Hardware consistency consistently, and then we extended that to the cloud and it's the constant that applications can be built to regardless of the underlying need and then with newer Cloud native Technologies applications and microservices.

A

There really was a requirement for a distributed platform and openshift fills that need for existing, as well as new applications.

A

And then we talk about Edge and I'm, looking at Frank zadarsky, because he's here he'll be talking later so Edge will require a new architecture that deals with constraints, around storage, compute network connectivity and management, and our opportunity is extend that out, extend our existing platforms to the requirements of the new architecture and where it and where that architecture is being placed now stick around for this afternoon.

A

For another talk about Edge today, like Diane said today, is just jam-packed, so red hat openshift is available today and can be consumed on any of the public clouds right as a red hat, backed SRE managed service.

A

In addition, so the self-managed openshift it offers more clouds and on premises virtual and physical infrastructures that you can run openshift on.

A

All right, so what is the red hat hybrid Cloud platform comprised of now this I know this is an eye chart and we use this a lot, but it explains a lot so at our core at the core of openshift container platform is Red Hats distribution of kubernetes built on top of red hat Enterprise Linux core OS right, and that provides automated and one-click installs and upgrades so again on a variety of public clouds where you need it to run.

A

In addition, it offers platform, developer and data tools and services. On top of that to address the needs of the application developers and data scientists, devops ml Ops I mean we have so many of you here today, and that being said, so Enterprise organizations are finding the need to accelerate and scale the development, deployment and management of these applications needed to manage securely.

A

You know thinking about compliance thinking about total cost of ownership right, so you also need to answer a few questions in this context, such as can I deploy, applications to multiple clusters and expose those services to my users can I monitor multiple clusters and drive updates.

A

Are my images free from vulnerabilities? How do I secure my software supply chain? That's a big buzzword lately Buzz phrase, but a very important one. So these are all the things that you have to think about um and can I store my images and connected and disconnected environments.

A

So, building on this you've probably heard about openshift platform plus so openshift platform plus is openshift container platform plus Advanced cluster manager plus Advanced cluster Security Plus Red Hat Quay. So it's all integrated together and tested together to meet your needs and again, if it's not meeting your needs, please talk to one of the product managers or your sales team.

A

Okay, now again, Red Hat really believes in open source, and we absolutely focus on Upstream first now, I put on here just a few minutes ago. Well, before I started, you'll see at the top left. There's the backstage logo. I, don't know if you saw that announcement, so red hat is contributing to Backstage and again stay for this afternoon when the fabulous Serena Nichols will be talking a little bit more about that, and you know some development work that's been going on, but for all of you that have been collaborating with us in the Upstream.

A

Thank you. I mean we're all in this together.

A

All right, the red hat Marketplace, so we have a very broad system of ecosystem partners and we have a lot of you Partners here today. So again, thank you and the red hat marketplace where you can certify and validate ISP software right um makes it easy to try and buy and deploy different capabilities.

A

um So it's very comprehensive and it's ever growing and if you are a partner- and you haven't been added to the red hat Marketplace yet but go check it out.

A

Okay, um now this this is the list of publicly referenceable Red Hat openshift customers not comprehensive, and if you're not on here, uh let's talk, but it's amazing there's over 3 000, uh openshift customers and.

A

It's even greater than that, but.

A

We're just so proud of all the value that we've brought to all these customers and I know. Some of you are here today and we're hearing you talk again and we're just so happy to have you here um all right.

A

Let's so then, as we look to the remainder of this year and Beyond uh we're really looking hard at how else we can enable our customers to accelerate the deployment of applications and hybrid clouds and the Clusters um through I mean we call it the hybrid Cloud experience and this experience is delivered through a consistent developer, Ops and subscription experience. So we're really focusing hard on consistency.

A

All right. You need consistency and deployment, consistency and management, consistency in your whole experience and then, when we're talking about the hybrid Cloud experience, we're really talking about, like I, said a unified experience, so uniformity everywhere and security everywhere, as well as platform, consistency, so I, know, I've, said consistency a lot, but that's uh really one of the major themes.

A

um And we talk about talk about those themes and then we talk about the different pillars that we've been focusing on as well, and one is our core openshift right. So.

A

In addition to our core, which is all our investments and kubernetes Linux and platform and developer tools, um in addition to get Ops and devops, so in addition to that, we also have our Telco Edge pillar, which, although it says, Telco and Edge, and all the great features that will help those customers. That also contributes to the rest of the platform.

A

So when we look at uh minimizing the openshift footprint for Edge or Telco that enhances the rest of the platform as well, but in our Telco Edge pillar, we look at a lot of container native Network functions or AIML applications that are deployed out to the edge or how do we collect data at the edge and anonymize it and clean the data for consumption at the core?

A

So we're looking at a lot of things and then our managed cloud services pillar we're bringing openshift and application services from Red, Hat and partners as a fully managed Estuary service, so that if you need that red hat will take care of it for you, so go look at Rosa and Aro.

A

And now I can just talk about whatever I want. We don't need to use the slides anymore right.

A

I guess we do see this side all right, so the future Direction.

A

For multi-cluster and hybrid cloud.

A

All right.

A

With the growth of kubernetes adoption, the whole landscape is changing, we're seeing Trends towards smaller fit for purpose clusters, uh rather than the gigantic multi-node uh clusters that are shared across teams or organizations.

A

Or geographies and then with the sprawl of clusters, many organizations have to deal with a growing number of applications in the cloud.

A

So, if you're running different kubernetes distributions, are you dealing with automation? uh Do you need to maintain consistency? Yes, consistency again at both the application, Level and the cluster level?

A

um And again we talk a lot about scale so to address these challenges of Fleet Management. We've just shifted our thinking about how we manage the fleet right. So we've embraced this Hub and spoke pattern.

A

um You know as our approach to managing and operating fleets of kubernetes clusters, so the Hub is the infrastructure cluster. So it's the or the management cluster and then at the spokes.

A

We provide all the tools or so the Hub rephrasing it all right. So at the Hub we have our management and our infrastructure cluster right and so all the spoke clusters can be different teams right, the smaller clusters and maybe host different types of workloads, and it just provides a modular approach to repeatedly repeatable deployments of the same workload. So some examples are your Dev test clusters or user acceptance, testing staging production, and then these spoke clusters can also segregate and enable different groups within one's organization.

A

And with this approach you can minimize your redundancy and simplify your management and then reduce again reduce your total cost of ownership by using the shared cluster to support the multiple spoke clusters.

A

All right so, with your Fleet Management, it becomes vital to have a single, hybrid Cloud platform to build, deploy and run manage your application uh with Comprehensive security at scale to support your digital transformation. Journey.

A

Our solution to address these set of challenges is mentioned. It already Red Hat, openshift platform plus. So it's the comprehensive portfolio.

A

So again you have your multi-cluster management, your container registry, which is Red Hat Quay and your multi-cluster security and then also storage,.

A

So we're going to look through these layers we're going to talk about networking, storage.

A

um But before we do that, I wanted to mention really quickly about some innovation. So Aaron talked a lot about different things that are happening in emerging Tech and different Innovations, but some of the things we're also looking at are.

A

Maybe we've talked about it, some kcp and hypershift so and stick around later, when we have a future of kubernetes control. Planes talk but with kcp we're looking at logical clusters and then with hypershift we're looking at physical or logical control planes and then we're looking at physical control planes.

A

So these areas both of these Innovations Target different areas and so with kcp, which stands for kubernetes control plane. uh We think about we're we're looking at exploring the ReUse of kubernetes apis can at the higher level in order to orchestrate many different application workloads as well as Services across the hybrid cloud and then with hypershift.

A

It enables administrators to manage openshift as a control plane at scale. So that's more of a middleware layer. um Stick around 11 o'clock, you'll hear more in depth about kcp and hypershift.

A

Let's talk about Advanced cluster management.

A

So now, operation teams can look at a to drive their clustered deployments on premises as well as in the cloud now who here has been using ACM.

A

Okay, awesome.

A

So right now we're looking to include cost-effective management capabilities around cluster hibernate I know a lot of people are interested in being able to hibernate your clusters as well as cluster pools in order to more easily and quickly deploy your clusters and then also looking around capabilities into the managed openshift clusters, so all from the same Central Hub. Now we talked about that Hub and spoke model and then also we're really interested in driving um desired. State policy, driven governance and compliance. So a lot of banks right, Financial, others.

A

Compliance is important, so we're looking more into that as well, um and then integration with Advanced cluster security in order to deploy their sensors as well and then looking into application life cycle, um we're continuing to support customer investments in openshift, app, free, app resources, Argo CD, Helm charts and then ensuring a get Ops, driven, workflow and I. Think Andy block is here so remember to go to helm, talk on Thursday.

A

um All right and then we're also looking at flux and azure devops, so really looking um to continue to provide application. Health and Status signals from a single console. So again, if, if you're looking for enhancements and you're looking for additional capabilities, please reach out to the teams, because we're looking at all of that now.

A

And then also big is observability and we're planning planning to bring the cluster Health metric support for the non-openshift Clusters into ACM.

A

So right now there's been success with the gke sending metrics and so looking further into the other kubernetes distributions. If the organizations have a mixed mixed clusters and then lastly, looking at enabling export of the Hub metrics, so that has also been really asked for frequently so operation teams can use third-party tools to more deeply look into their Analytics.

A

Okay, now Advanced cluster security.

A

Who here is using ACS.

A

Not many, okay, so with Advanced cluster security. Again, it's one of the core components of openshift platform. Plus um now we really have been focusing on securing the end-to-end application life cycle and we're focusing on six areas so looking at how to reduce the whole. Your whole security program costs by enabling teams to shift security left um so into your pre-production processes.

A

So there's continued improvements in vulnerability, management and compliance workflows. Your developers can address your security risks much earlier in the life cycle, which again reduces your total cost of ownership. Total risk assessment um is decreased as you're catching these security issues early um we're also looking at enabling effective, prioritization workflows um so providing security teams with the information to prioritize the issues that they're seeing.

A

And third, providing Best in Class openshift support across all the platforms, so openshift dedicated openshift on AWS openshift on azure, so making all of these security features a first-class citizen, an openshift and then as you're aware of how to on the big slide with all the the logos uh stack rocks.

A

um Acs is based on stock rocks. Now stock rocks was an acquisition, it was proprietary software, and so we open sourced it and continuing to work with Upstream communities in improving that and there's a talk later I know: Doran is here talking about ACS, so looking forward to that a deeper dive into the ACs roadmap.

A

So also focusing on an advanced security workflows for kubernetes, and the last Focus area um is for security teams that want to also track their kpis, so their key performance indicators for security, um so we're working to gather kpis for programs.

A

um How.

A

For how to make recommendations around actions that security teams want to take and really delivering on their Roi, their return on investment.

A

And next talk about red hat Quay, so don't worry we're almost done and the Really brief overview.

A

So red hat Quay is continues to be our distributed and highly available container image registry we're still and continue to invest in container builds security scanning, geo-replication and Quay will continue to get aligned with the rest of the look and feel of openshift. So there's going to be a completely new UI um and um so getting a new UI. So just look out for that and so over time it's going to be integrated into console.redhot.com.

A

So if you're using console, so you can see your current content from that perspective and manage your Quay IO quay.io billing from there, if you're, using kuwait.io billing um through the red hat Marketplace, so many many customers has have asked for being able to use, purchase, orders right or pay as you go using a credit card. So it gives you flexibility.

A

um It's on the security front, Quay image scanning so is going to be aligned with Advanced cluster Securities uh image scanning component, so Java packages and images that are stored in the query registry. It's going to be extended to that. So that's!

A

um It really increases the security scanning coverage to the level of the programming language, so those package managers and it allows you to get alerted about security vulnerabilities before the image gets pulled so again earlier in the life cycle.

A

All right giving a you're getting the I got my timer, but she's cutting me off. Okay,.

A

All right, let's take a quick look at networking, um so our plans for networking uh expand, include single net single node, openshift and so hypershift again talking about hyperships after the break multi-cluster, hybrid cluster and globally, unified networking and again we're looking to unify how we handle traffic. So against consistency, unify hearing some themes around making making sure that we're consistent across the portfolio and then we continue to work with a Submariner to provide enhanced multi-cluster networking capabilities so again, if you're working, Upstream, Submariner and then also for your layer, 3 and layer four.

A

But then we also mentioned Scupper for your layer, 7 networking all right. So if you're also working Upstream with Scupper all right so again, key takeaway unifying traffic in and out between clusters across the hybrid Cloud provide providing a unified experience.

A

Really that secure and consistent across the platforms.

A

All right, this is the last slide. Sorry Diane. Sorry, all right. So on the storage front, uh not going to talk about the announcement, but we will talk about that. You know we continue to use um odf and an open shift storage.

A

Let me briefly mention that so the container storage interfaces, so your csi's um have it across the platforms across the clouds and we'll continue to support additional csis and then we're working on migrating, the kubernetes entry storage plugins to csis and eventually uh the will remove the entry storage plugins so remember if you're using them migrate to the csis to make it seamless- and so you don't run into issues later, um also should highlight the CSI and line ephemeral volumes.

A

A lot of people have been asking for the ephemeral volumes, so um that is that's currently out right now and we're planning on adding capability to transfer your PVCs between name spaces and then that's that would apply to snapshots as well. So, look for that too um and then odf openshift data foundation, so it's integrated into the openshift console um you'll, see dashboard alerts configuration so if you're using file block or object and then now you have the choice of encryption, your data at rest either for the entire cluster or at the PB level.

A

So your persistent volume level.