No worries…let me try to confirm my understanding. You’re saying there is a control plane for cloud native infrastructure (includes the fabric you reference below) and a control plane for deploying apps on that infra? And that the infrastructure must support multi-cloud federation. I was thinking of these as being one overall control plane, though there could be some pieces unused in specific scenarios. Example: · Deploy app consisting of N containers, with associated segmentation and storage policy in a specific container cluster · Deploy the same app across hybrid container cluster subject to security/placement/cost policy (to name a few), assuming the app is designed in such a way as to be deployable across federated clusters In the first scenario, policies related to cluster federation would be ignored. Certain control plane functions related to cluster federation may not be required in the second scenario. Thoughts? Thanks, Mark
From: NASSAUR, DOUGLAS C [mailto:dn283x@...]
Sent: Friday, July 22, 2016 12:08 PM
To: mark@...
Cc: Alexis Richardson <alexis@...>; Alan Conley <aconley@...>; cncf-toc@...; Chris Aniszczyk <caniszczyk@...>
Subject: Re: [cncf-toc] audience for "reference architecture" content Thanks Mark, got what you meant so apologies for not being clear. My primary point is that their are two separate and distinct paths which each exhibit the model-view-control reference pattern - one specific to the cloud native app fabric itself and the other for the 1-n app logic workloads under its management. Imo one can be left flexible while the other must be clearly defined in a manner which supports multi cloud federation above the infrastructure substrate.
Regards, Doug
On Jul 22, 2016, at 1:59 PM, Mark Balch <mark@...> wrote:
By data plane, I meant the application data flow itself: code, runtime, OS, app data storage, app data connectivity (i.e., networking). Models and policy are important aspects that can blur lines between data/control plane, but typically I see them more associated with the control plane because they usually direct how deployments occur in the data plane and how the data plane behaves (e.g., your segmentation scenario). There may be situations where model/policy is more closely aligned to the data plane – I’m not seeking a rigid definition. With respect to how networks are/not segmented between management and data, this is something I would expect the control plane policy model to allow for customer preference and not force either way. I agree with setting up a problem statement to define the ref arch context. However, to the extent that a problem statement becomes a dictionary definition of what we’re trying to solve, it can become a protracted charter-defining type of process. We might do both in parallel to not gate progress on the ref arch. Disconnects can be resolve as the discussion unfolds. Mark Would you consider “model” and control planes? It would be inclusive of “data” but also accommodates a larger context. Also, can we endeavor to capture the nano-segmentation aspects of container networking when differentiating the two planes? Here’s the gap I’m hoping we address – Old days (few years ago) we had completely separate networks for both, current time we vlan/segment etc. Forward looking folks believe that by mapping vnic to vlan we can maintain the separation when we know that won’t work across WAN/routed, multi-cloud and IoT oriented networks. Perhaps we can set up the problem statement via the ref architecture so the masses can see and digest it and then show how nano segmentation/CNI/CNM addresses it? Using the airport analogy, airplanes and airports are an orthogonal to air traffic control, baggage routing, etc. Back to our world, it's the difference between data and control planes. I'd like to suggest that our reference model make clear the management/control plane in addition to the data plane as depicted in the landscape doc. Craig's original diagram blended the two together, which is useful because there is much work to be done in both areas. Column 'C' has some thoughts in this area, though unfinished. CNCF can at least define the boundaries and functions users should be aware of in how the application/infrastructure stack is deployed, configured, and managed. Further, we can facilitate interoperability in the control plane. If there are no violent disagreements, I'll put up a strawman. Mark From: cncf-toc-bounces@... [mailto:cncf-toc-bounces@...] On Behalf Of Alexis Richardson via cncf-toc
Sent: Friday, July 22, 2016 10:31 AM
To: NASSAUR, DOUGLAS C <dn283x@...>; Alan Conley <aconley@...>
Cc: cncf-toc@...
Subject: Re: [cncf-toc] audience for "reference architecture" content i actually like how you think about this Doug. it is a great flag on the hill. but can it work? complete freedom for components combined with app dev productivity. On Fri, 22 Jul 2016, 18:28 NASSAUR, DOUGLAS C, <dn283x@...> wrote: Any thoughts folks?
-----Original Message-----
From: cncf-toc-bounces@... [mailto:cncf-toc-bounces@...] On Behalf Of NASSAUR, DOUGLAS C via cncf-toc
Sent: Friday, July 22, 2016 12:22 PM
To: 'Alexis Richardson' <alexis@...>; Alan Conley <aconley@...>
Cc: 'cncf-toc@...' <cncf-toc@...>
Subject: Re: [cncf-toc] audience for "reference architecture" content
The approach I've been taking on this has been from a slightly different perspective. Most definitions have started with the infrastructure and I'm starting from the application and working backwards.
Using a combination of the power company utility model and the airport "separation of concerns" model of Air traffic control and ground control, I've been defining the roles of a) An independent application or specialty platform, b) a cloud native application fabric and c) an infrastructure substrate.
The premise is that applications decompose into segments, each of which distill into a finite set of application workload patterns. These patterns align to composition, distribution and execution models which provide the characteristics and behaviors each specific pattern requires. Simply put, the jobs decompose as follows:
1) The application developer composes and describes the application
2) The app fabric recognizes the pattern, determines the best deployment pattern, transforms the workload and shops it for resources across a syndicate of infrastructure substrate providers (and technologies).
3) The infrastructure substrate executes the workload reliably at a local provider level
The fundamental shift notes that a cloud native app fabric scales business and technical functions implemented via software. As such, it can recognize demand using higher order indicators specific to functionality as opposed to traditional CPU, memory etc. As such, we align resource needs and utilization to meaningful business transactions and "right-size" supply with demand at the functional level.
If we take the technology, vendor and project names out of the picture and focus on capabilities we can describe this ecosystem in terms of enablers. Once we define these enablers and their roles in each of the three layers above we see pretty clearly that concepts like policy, orchestration etc. actually occur in several places and can draw the following parallels...
1) A baggage handler in New York has no need to know what a baggage handler in Atlanta is doing. Each does need to coordinate with their respective (and local) air traffic controller.
2) Air traffic control in Atlanta does need to be aware of what the ATC in New York is doing.
3) The blender Alexis uses to make us coctails does not care if the power it uses came from Georgia Power, Alabama Power or Florida power, nor does it care if it was generated using Coal, Hydro, Nuclear etc. power...
4) Georgia power does not sit in design meetings with the Xbox engineering team.
5) The system to generate power, handle luggage, load meals on planes etc. is free to innovate and be adopted independently from the ability to fly people around reliably.
My hopes for the CNCF reference model is that we show this reference model inclusive of the OCF and DAB and independent of the technologies, projects and products which can be used to enable the behaviors. I also hope that ongoing we maintain the list of these players and where they play when they implement according to the reference architecture.
Thoughts? Have I completely lost my mind?
-----Original Message-----
From: cncf-toc-bounces@... [mailto:cncf-toc-bounces@...] On Behalf Of Alexis Richardson via cncf-toc
Sent: Friday, July 22, 2016 11:50 AM
To: Alan Conley <aconley@...>
Cc: cncf-toc@...
Subject: Re: [cncf-toc] audience for "reference architecture" content
Alan,
Thank-you.
"anyone assembling a container management solution (orchestrator,
control plane etc.) and anyone attempting to build a functional
component that would fit within that architecture. Pretty much every
company I've spoken with is currently rolling their own from a select
set of open source projects and developing their own glue to fill gaps
and stitch the pieces together"
Does this mean:
- large enterprises
- vendors
- other..?
a
On Fri, Jul 22, 2016 at 4:44 PM, Alan Conley <aconley@...> wrote:
> I think this goes back to what is the charter of the CNCF.
>
>
> Taking a few short cuts in this narrative and avoiding some of the politics.
> Containers became mainstream when docker "standardized" their use. The
> industry saw this rapid adoption and suggested a forum should "govern" these
> standards which resulted in the OCP->OCI. From the OCI charter,
> "...industry participants may easily contribute to building a
> vendor-neutral, portable and open specification and runtime...". So we have
> both a spec and working code.
>
>
> What was missing, was the equivalent for container management (orchestrator,
> control plane, monitoring) solutions. I believe this was the genesis of the
> CNCF, originated by Craig and why k8s was the initial project. The original
> reference architecture provided a simple view of these functional
> components. BTW, most would see the similarities between this and OpenStack
> for VMs. I personally have no interest in seeing the CNCF focused on one
> implementation.
>
>
> Assuming I'm not completely off the path, the target audience for the ref
> arch is anyone assembling a container management solution (orchestrator,
> control plane etc.) and anyone attempting to build a functional component
> that would fit within that architecture. Pretty much every company I've
> spoken with is currently rolling their own from a select set of open source
> projects and developing their own glue to fill gaps and stitch the pieces
> together. (My company is doing that for our own SaaS solutions.) There are
> a few of us interested in extending what we see as one of the needed
> functional components. However, we are unclear on how others see that
> interfacing with other components and in some cases see overlapping
> capabilities. We can certainly just put it out there and see if there is
> adoption, but then that begs the question as to what value does the CNCF
> actually provide other than marketing.
>
>
> I'll stop before this becomes too much of a ramble, for comments.
>
>
> Alan
>
>
>
>
>
> ________________________________
> From: Alexis Richardson <alexis@...>
> Sent: Thursday, July 21, 2016 4:54 AM
> To: cncf-toc@...
> Subject: audience for "reference architecture" content
>
> Hi all,
>
> Yesterday we had our 2nd discussion about the 'marketecture' stack that Ken
> and I put out. One piece of feedback, from Doug Davis by email, and then eg
> from Alan Conley on the call, was that much more detail could help.
>
> I believe this is a "target audience" issue. We may need different material
> for different audiences even if those audiences are all "technical". For
> example - I argued that for developer end users, less detail is good.
>
> It would be very helpful to hear from the people advocating for more detail,
> regarding their target audience.
>
> alexis
>
>
>
_______________________________________________
cncf-toc mailing list
cncf-toc@...
https://lists.cncf.io/mailman/listinfo/cncf-toc
_______________________________________________
cncf-toc mailing list
cncf-toc@...
https://lists.cncf.io/mailman/listinfo/cncf-toc
|
