Post on 28-May-2020
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.© Copyright 2018 The Kroger Co.
Kroger’s Cloud-Native Journey
Jon Ravenscraft
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
About Kroger
Fifth-largest retailer in the world
Founded in 1883
430,000 employees
Headquartered in Cincinnati
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Snapshot of Kroger
2,700+ grocery retail stores across 35 states, with…
• 2,200 Pharmacies
• 270+ Fine Jewelry Stores
• 1,400+ Supermarket Fuel Centers
38 manufacturing facilities
5,000+ private label products
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Our Digital Goals
Providing technology platforms to:
• Deliver digital experiences that buildcustomer preference and loyalty
• Educate and empower Kroger employees
• Streamline operations and reduce costs
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Supporting Digital Initiatives
Lower infrastructure and operational costs
Introduce more servicesfaster to end consumers
Secure appsand data
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Technology Enablers
• Security and Auditability
• Efficiency
• Velocity
• Supportability
• Resiliency and Reliability
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
What is not virtualized is
by-design
Where We Are Today
90% of enterprise IT infrastructure
is virtualized
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Where We Are Headed
• Web – App – DB architecture
• Deployed in VMs
• Traditional app server – Websphere, Weblogic, IIS
• Microservices architecture
• Message-oriented middleware
• Cloud-native application platform – Kubernetes,Cloud Foundry
Legacy App architecture
APPOS
APPOS
APPOS
WEB
APP
DBAPPOS
APPOS
Future App architecture
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Cloud-Native Direction
Why Pivotal Cloud Foundry?
Adoption of containers
Pivotal Cloud Foundry in production 3+ Years
• Zero downtime deployments / upgrades
• Mastery isn’t a requirement to
produce great value
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Cloud-Native Apps on Multiple App Platforms
Cloud Foundry Kubernetes
Silk NetworkCF Network PolicyCF ASGs
Business App 1
Business App 2
Calico, Weave, FlannelN/w K8s Network Policy
Challenge
Build and support Cloud Foundry infrastructure for stateless cloud-native apps
Build and support Kubernetes infrastructure for data services and legacy apps as containers
No common connectivity and security tooling
Cannot segment business apps with existing native tooling
Cannot segment individual services with existing native tooling
Requirement
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Business Application is Made of Cloud-Native and Traditional Services
Physical Network & Security
Mainframe
ERP System
Cloud Foundry Kubernetes
CF Network & Security Kub. Network & Security
App Platform TeamNetworking
Security
Traditional Requirement
Challenge
Secure connectivity to traditional application servers, ERP, and mainframe systems
Be able to introduce new features in weeks
Mainframes and ERP systems are in different zones—opening firewall access is slow
Physical firewall cannot open access to a specific business app or services
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Foundation Sprawl and Segmentation
Requirement
Challenge
Support multiple environments and LOB teams
Isolation between LOB apps
Audit capabilities for isolation
Lengthy lead times to configure isolation using physical firewalls and routers
Foundation and cluster sprawl is costly
Prod Staging Dev
CF Foundation 1
Prod Staging Dev
CF Foundation 2
Prod Staging Dev
CF Foundation 3
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Load Balancing Capacity
Cloud Foundry and Kubernetes
App 1 App 2 App n
Requirement
Cost-effective load balancing solution to re-platform massive enterprise app estate
Fully automated workflows to expose service to users
Challenge
Hardware load-balancing solutions increase lead times
Greater network traffic due to microservices means higher costs
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Kubernetes Networking & Load Balancing
Requirement
Build and support Kubernetes infrastructure to support data services and legacy apps as containers
Support Kubernetes networking and load balancing solutions
Challenge
Need multiple open-source technologies to meet Kubernetes networking requirements
No troubleshooting and debugging tools to operationalize container-based
FlannelL2 only (East/West Pod Traffic)
CalicoL3/L4 (IP Tables)
NGINX/HA ProxyLoad balancing
Networking
Can
al
No VM networking integration
No end-to-end configuration & troubleshooting + new ops tools
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
•
•
•
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
│ ©
VMworld 2018 Content: Not for publication or distribution
│ ©
•
•VMworld 2018 Content: Not for publication or distribution
©
•
•
VMworld 2018 Content: Not for publication or distribution
©
•
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.© Copyright 2018 The Kroger Co.
Kroger’s Cloud-Native Journey
Jon Ravenscraft
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
• This doesn’t mean Devs must become Technology Infrastructure Architects
• This doesn’t mean Technology Infrastructure Architects must become full-time coders
Takeaways: On Culture
Operations and Development-Hybridization/ Enablement
VMworld 2018 Content: Not for publication or distribution
© Copyright 2018 The Kroger Co.
Takeaways: On Education
• Need to be practiced regularly
• Need to be documented
• Need to be communicated—more than once
Best Practices
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
©
VMworld 2018 Content: Not for publication or distribution
VMworld 2018 Content: Not for publication or distribution
VMworld 2018 Content: Not for publication or distribution