 |
VOOZH | about |
|
VOOZH | about |
We’re so glad you’re here. You can expect all the best TNS content to arrive Monday through Friday to keep you on top of the news and at the top of your game.
Check your inbox for a confirmation email where you can adjust your preferences and even join additional groups.
Follow TNS on your favorite social media networks.
Become a TNS follower on LinkedIn.
Check out the latest featured and trending stories while you wait for your first TNS newsletter.
While it is projected that production projects using Kubernetes will rise 61% in the next two years, nearly all organizations (94%) run into challenges. Many organizations begin adopting Kubernetes without a dedicated management strategy. Individual teams create their own clusters to meet specific business functions, but there is no consistent structure, policy or management practice across the enterprise. As the number of clusters and workloads grow, they are often managed and governed independently, creating cluster sprawl that prevents organizations from realizing the full value of containers and Kubernetes. This chaotic environment is rife with redundant efforts and wasted resources.
One way to help address this challenge while simultaneously improving the return on investment is by creating a multi-tenancy Kubernetes strategy. Running more applications on the same shared infrastructure means better utilization of resources and a reduction in overall operating costs.
Whether you are new to Kubernetes or your organization has adopted Kubernetes in many clusters, a multi-tenancy strategy can provide significant benefits.
One very common problem when managing a multitenancy Kubernetes deployment is the “noisy neighbor.” A noisy neighbor is defined as one party hogging shared resources in a multitenant environment — an issue that has become commonplace for IT teams.
Noisy neighbors have a severe impact on the performance of other workloads on the same cluster, sometimes preventing them from running altogether. When one application is sucking up all of the CPU or memory in a cluster, other workloads run slowly, if at all. The chronic lack of visibility into containers, coupled with a lack of uniform policies, means IT operations and technical teams may not be able to prevent a noisy neighbor issue in a multitenant environment before it happens and may be hard-pressed to mitigate it once it does.
The central element of isolation in Kubernetes is a namespace. Namespaces are the declarative regions that help organize where code runs. Proper use of namespaces can help troubleshoot and prevent noisy neighbors. Typically, every tenant — usually an application or microservice, though it can be a team or project — on a platform needs a single, dedicated namespace. Applications deployed in a namespace can leverage the powerful security and resource management constructs that Kubernetes offers to build an effective multitenant platform.
It is critical in any strategy to consider risk domains from a business perspective. This perspective includes regulatory environments, compliance objectives, and other business requirements that vary according to workload. In many organizations, these requirements justify organizing clusters according to each risk domain so that workloads can be deployed with automated controls that enforce the appropriate policy.
For example, it may be beneficial to have several clusters arranged by certain industry-specific regulations or data laws. In a proper multitenancy strategy, it’s important to arrange clusters to represent specific risk domains and to provide automatic enforcement of the required configuration for each workload to be applied at the cluster level. Then, applications can rely on the cluster infrastructure to provide these capabilities, rather than each application itself having to reinvent such enforcement independently.
As Kubernetes environments grow, so does their complexity. By stepping back and creating a streamlined multitenancy strategy, organizations can customize deployments to meet both their IT and business requirements. Through a proper strategy, any organization can optimize efforts for savings, reduce risks and increase security — regardless of the number or size of your clusters.
