Procedure for migrating DELIS Cloud platform services into the K3S environment of the FLUIDOMOS project
This procedure describes how the DELIS Cloud services migration was performed to obtain the service images, which were containerized and deployed in FLUIDOMS's cluster infrastructure.
The main steps of the migration process are the following:
- How to build the docker images
- Build multi-platform docker image (to enable services execution on Edge architecture)
- Migrating to Kubernetes
- Vemar Sas repository
A Dockerfile will be used, which is a text file containing the necessary instructions to create the Docker image.
Ensure that Docker is installed on the machine. Follow the specific installation instructions depending on the operating system. To check if Docker is installed, open a terminal and type:
docker \--versionCreate a well-structured directory architecture for the application.
The Dockerfile describes how to create the application’s image. Below is a basic example for different types of Python applications:
- Create the Dockerfile in the root directory of the project.
- Write the following instructions:
\# Use an official Python base image
FROM python:3.9
\# Set the working directory
WORKDIR /usr/src/app
\# Copy the dependency file
COPY requirements.txt ./
\# Install dependencies
RUN pip install \--no-cache-dir \-r requirements.txt
\# Copy the source files
COPY . .
\# Expose the port if necessary (e.g., 5000 for Flask)
EXPOSE 5000
\# Command to start the application
CMD \["python", "app.py"\]For other platforms or languages: The Dockerfile varies depending on the language and framework used. Generally, the logic is:
- Choose a base image (e.g., Java, PHP, Go).
- Install dependencies.
- Copy the files.
- Expose the necessary ports.
- Define the startup command.
The .dockerignore file works similarly to .gitignore, excluding certain files or directories from the Docker build process. Create a .dockerignore file in the root directory of the project and add lines like:
node\_modules
\*.log
.git
.envWhen the Dockerfile is ready, it is possible to build the image. Open a terminal in the main application directory and run the command:
docker build \-t your-app-name .Explanation:
- -t your-app-name: Specifies the name of the image.
- .: Indicates that Docker should use the Dockerfile and the build context in the current directory.
After creating the image, run a container based on that image with the following command:
docker run \-p 3000:3000 your-app-nameExplanation:
- -p 3000:3000: Maps the container’s port 3000 to port 3000 of the host system (adjust the numbers according to the application).
- your-app-name: The name of the Docker image.
Open a browser and navigate to:
http://localhost:3000 (or the exposed port).
The application should be running.
The image can be uploaded to Docker Hub to make it available to others. Log in from the terminal using the command:
docker login
Tag the image:
docker tag your-app-name your-dockerhub-username/your-app-namePush the image to Docker Hub:
docker push your-dockerhub-username/your-app-name- Prepare the files and create a Dockerfile.
- Use a suitable base image for application.
- Install dependencies and copy source files.
- Build the Docker image.
- Run the app in a container.
- Optionally publish to Docker Hub.
Creating Docker images that support both ARM and AMD (x86_64) platforms requires a few steps to ensure compatibility across architectures. Using Docker Buildx, it is possible to create multi-architecture images that work on both ARM devices (like Raspberry Pi) and AMD/Intel processors.
Following the steps to create separate Docker images for ARM and AMD.
First, it needs a common Dockerfile that defines the application. This file should be written to be architecture-agnostic, without depending on a specific architecture. (See the example in the previous paragraph) This Dockerfile works on both ARM and AMD architectures, as long as the base image supports both architectures.
A. For AMD architecture (x86_64):
Working on an AMD machine, simply build the image with the standard command:
docker build \-t your-app-name:amd64 .Working on an ARM machine and want to force the build for AMD, specify the platform:
docker build \--platform linux/amd64 \-t your-app-name:amd64 .B. For ARM architecture (arm64):
Using an ARM machine or want to build for ARM: Build the image for ARM:
docker build \--platform linux/arm64 \-t your-app-name:arm64 .
Docker Buildx is a Docker extension that allows you to build images for multiple platforms at the same time. This is useful for creating multi-architecture images that can run on both ARM and AMD.
A. Enable Docker Buildx
Docker Buildx is included in Docker Desktop and Docker for Linux, but it may need to be activated. To check if Buildx is active, run:
docker buildx versionWith Docker Desktop or an updated Docker on Linux, Buildx will already be enabled. Otherwise, follow the installation instructions.
B. Create and use a multi-architecture builder
Create a new builder that supports multi-architecture builds:
docker buildx create \--name mybuilder \--useStart the builder:
docker buildx lsVerify the platforms supported by the builder:
docker buildx lsThis will show the platforms that the builder currently supports.
C. Build the multi-architecture image
Now that Buildx is set up, build the image for multiple architectures simultaneously.
Run the docker buildx build command with the desired platforms:
docker buildx build \--platform linux/amd64,linux/arm64 \-t your-username/your-app-name:latest \--push .
- --platform linux/amd64,linux/arm64: Specifies the platforms desired to build the image for.
- -t your-username/your-app-name
: Tags the image (e.g., latest). - --push: This directly uploads the image to a Docker registry (e.g., Docker Hub).
To build the image locally without pushing it to a registry, omit the --push option:
docker buildx build \--platform linux/amd64,linux/arm64 \-t your-username/your-app-name:latest \--output type=docker .This command will allow the multi-architecture image available locally.
D. Verify the multi-architecture image
Once the image is built and pushed to Docker Hub or a private registry, verify that the image supports multiple architectures with the following command:
docker buildx imagetools inspect your-username/your-app-name:latestThis command will display the different architectures supported by the image (something like linux/amd64 and linux/arm64).
With a multi-architecture Docker image available on Docker Hub or another registry, It is possible to run the container on different platforms.
A. On an ARM device (e.g., Raspberry Pi):
docker run your-username/your-app-name:latestB. On an AMD machine (e.g., a laptop or x86_64 server):
docker run your-username/your-app-name:latest- Create an architecture-agnostic Dockerfile.
- Enable Buildx with the
docker buildx createcommand. - Build a multi-architecture image with
docker buildx build --platform linux/amd64,linux/arm64. - Push the image to a registry with --push.
- Verify the multi-architecture image with
docker buildx imagetools inspect.
With this approach, it is possible to create a single Docker image that works on both ARM and AMD platforms, optimizing application deployment across a wide range of devices.
Migrating a Docker image for use in a Kubernetes environment requires several steps to integrate the image into a Kubernetes cluster. Below is a step-by-step guide on how to perform the migration.
For Kubernetes to access the Docker image, it must be uploaded to a container registry (such as Docker Hub or a private registry like registry.vemarsas.it).
If needed, log in to Docker Hub:
docker loginThen tag the image:
docker tag your-app-name your-dockerhub-username/your-app-name:v1Finally, push the image to Docker Hub:
docker push your-dockerhub-username/your-app-name:v1Within Kubernetes, the repository of usable Docker images is the public Docker Hub. To use our private registry containing the Delis project images prepared for Kubernetes, it needs to integrate a secret into Kubernetes to be specified during image deployment. The following command was used to work with the private registry (registry.vemarsas.it) that contains the images (the_username and the_password are placeholder) :
kubectl create secret docker-registry regcred \--docker-server=registry.vemarsas.it \--docker-username=the_username \--docker-password=the_password \-[email protected] During deployment, add the following lines to the yaml files:
imagePullSecrets:
name: regcredThe kubectl command to create the secret only needs to be run once within the control plane of the consumer cluster.
Once the image is uploaded to a registry, it needs to create YAML manifests to manage the deployment of the application on Kubernetes. The essential components are:
-
Deployment: Defines the number of application replicas and the Docker image to use.
-
Service: Exposes the application within or outside the Kubernetes cluster by mapping ports.
Create a YAML file, for example, deployment.yaml, with the following content:
apiVersion: apps/v1
kind: Deployment
metadata:
name: your-app-name
spec:
replicas: 3 \# Number of replicas
selector:
matchLabels:
app: your-app-name
template:
metadata:
labels:
app: your-app-name
spec:
containers:
\- name: your-app-name
image: your-dockerhub-username/your-app-name:v1
ports:
\- containerPort: 3000 \# Change if app uses a different portExplanation:
-
replicas: Specifies how many instances of the app intended to deploy.
-
image: The Docker image uploaded to the registry.
-
containerPort: The port exposed by the app inside the container (used previously in the Dockerfile).
The Service maps the Kubernetes cluster’s ports to those exposed by the application. Create a file called service.yaml with this content:
apiVersion: v1
kind: Service
metadata:
name: your-app-name-service
spec:
type: LoadBalancer \# Use "NodePort" if testing on minikube or a local cluster
ports:
\- port: 80 \# Port exposed by the service
targetPort: 3000 \# Port inside the container
selector:
app: your-app-nameExplanation:
- type: LoadBalancer: Distributes external traffic to the container. Use NodePort for local or test clusters.
- port: The port accessible from outside.
- targetPort: The port inside the container (as in the Dockerfile).
Once the deployment.yaml and service.yaml files are created, it is ready to deploy the application to the Kubernetes cluster.
**A. Connect to the Kubernetes cluster**
Ensure it is connected to the correct Kubernetes cluster.
**B. Apply the Deployment and the Service**
Once connected to the cluster, apply the YAML manifests using the kubectl command:
kubectl apply \-f deployment.yaml
kubectl apply \-f service.yamlTo check if the deployment was successful and if the pods are running correctly, use the following commands:
kubectl get deployments
kubectl get podsTo verify the service and obtain the public IP address (if using a LoadBalancer type service):
kubectl get services- Push the Docker image to Docker Hub or a private registry.
- Create the YAML manifests for the Deployment and the Service.
- Apply the manifests to the Kubernetes cluster.
- Verify the status of the pods and the service.
- Access the application through the Kubernetes service IP.
To use our private repository containing the Delis project images, it is possible to reach it at the following link
https://registry.vemarsas.it/home
This registry contains the Delis services images for Fluidomos:
