We run multiple clusters for the reasons you highlight: cluster-local
failures are more readily mitigated. We’ve had networking issues affect one
cluster but not the others.
We don’t separate clusters along env lines, instead just named after
colours (currently) and state the order in which they’ll receive cluster
Product teams (the users of our clusters) can choose to run their software
how they like. Most teams deploy to a single cluster and that’s good
enough. For the more public-facing teams that have more money at stake
we’ve got some tooling to help them operate against multiple clusters
(we’re watching the progress of Federation but we’re in AWS so have had to
tie stuff together ourselves).
On Thu, 17 May 2018 at 08:55, Prys Williams <pryswilli...@gmail.com> wrote:
> Hi all,
> I'm looking for broad advice on cluster architecture, specifically around
> the pros and cons of having multiple clusters vs single cluster for Prod
> workloads. Our approach so far has been to use a single cluster with RBAC,
> namespaces, network policies etc all being used to segregate services from
> each other. We're facing arguments however to limit blast-radius of cluster
> failure or compromise and to deploy across multiple Production clusters. Is
> there any best-practice reference architecture in this space that might
> point one way or the other?
> Many thanks
> You received this message because you are subscribed to the Google Groups
> "Kubernetes user discussion and Q&A" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to kubernetes-users+unsubscr...@googlegroups.com.
> To post to this group, send email to firstname.lastname@example.org.
> Visit this group at https://groups.google.com/group/kubernetes-users.
> For more options, visit https://groups.google.com/d/optout.
You received this message because you are subscribed to the Google Groups
"Kubernetes user discussion and Q&A" group.
To unsubscribe from this group and stop receiving emails from it, send an email
To post to this group, send email to email@example.com.
Visit this group at https://groups.google.com/group/kubernetes-users.
For more options, visit https://groups.google.com/d/optout.