The entire idea of your infrastructure not being tied to your provider is completely lost when you are at any type of scale. I have a feeling that anyone who thinks it is easy or even usually worth it has never been part of planning a large scale migration.
At the same time, you usually end up spending more money and having worse results when you don’t go all in.
As far as why use EKS vs ECS - the “native service”? They seem to have feature parity, ECS is easier to use for the unitiated. But, there are so many people who know k8s and your knowledge is portable.
Which brings up my second point. Most software engineers don’t care about cloud mobility as much as they claim. They care about career mobility. There is a much better chance that you will leave a company and move to a company on a different provider than your company will. I’m not saying it’s a bad thing to focus on technologies that give you as an individual the most optionality.
> The entire idea of your infrastructure not being tied to your provider is completely lost when you are at any type of scale
Pretty categorical statement and I don’t find this to be true at all if you avoid using anything managed except block devices and vms themselves. That is unless “any type or scale” is tens of thousands of VMs and petabytes of storage in which case it is indeed a moot endeavor since someone who is still on public cloud at that point apparently likes to give all their money to cloud vendors anyway.
If all you’re doing is using a cloud provider to host a bunch of VMs, you’ve already lost the plot. Once you use any cloud provider as a glorified colo without changing any of your processes you’re already spending more than a colo and not getting any of the benefits of managed services.
Have you ever budgeted a project plan involving a large migration.
> Once you use any cloud provider as a glorified colo without changing any of your processes you’re already spending more than a colo and not getting any of the benefits of managed services.
So you’re saying running multi regional, burstable (metered by minutes or even seconds) VMs with redundant power and networking and without having to hire a bunch of maintenance staff is not one of the benefits? Imho it’s perfectly economical at small to medium scale.
> Have you ever budgeted a project plan involving a large migration
I’m doing one right about now. If you design your stack to be multi-regional from the get go and dont get yourself into aforementioned cloudlock it’s a simple matter of bringing up new kubernetes clusters in a new cloud region and possibly setting up some peering.
“Managed services” in cloud are a Faustian bargain.
It’s also totally untrue that you need to adopt any specific proprietary features of public cloud to change your IT processes to break the ITIL straightjacket into a sane process. It’s just an abstraction, and there are plenty to choose from that work with whatever you already have.
First of all, they’re not actually managed services as we typically expect. The support experience is much more like a “hosted service”, with very circumscribed boundaries around feature scope, mostly because it is managed entirely by the kind robots rather than having humans actually manage anything.
Secondly, they’re lock in for debatable benefit.
Third, they’re almost always the way the clouds make their margin and you’re stuck with their design decisions, and have little control plane adjustability. Running Google Cloud SQL is expensive and crappy, I would much rather run my own DB on a Kubernetes cluster via a mature and commercially supported Kubernetes operator. Because it’s automated, reliable, and if I need to, I can get into the weeds.
Because the dirty secret is that all of the managed cloud services are just software, no different from what you install, they’ve just closed source certain components to make it seem magical. And yes you can file a ticket to get them to fix it, but remember the law of outsourced availability: you still own your SLO to your customer, you still own your end to end availability. All the “managed cloud” will do is cut you a check for the wasted pennies on a bill, while your customers leave and business tanks.
If you treat cloud like a commodity player that you can fire (not likely - more “shrink investments in favor of an alternative”) every few years if their quality goes down or price goes up, you’re in a much better position for cost, performance, and reliability. Same as it always was. The “one Throat to choke” theory of outsourcing was a always business school bullshit line that never really worked, and that now has been adopted by tech experts that want to ensure their cloud-specific skills are always relevant, regardless of whether these all proprietary features are really a good idea.
Speed + having no idea what you’re doing = use all the managed services!, this seems to be the cloud pundit elevator pitch. but as with anything, if you don’t know what you’re doing, at some point you will be caught being a sucker.
The multi-cloud, open source ecosystem continues to grow over many proprietary cloud services for these reasons.
You act as if people to manage servers are free. How much time are you spending to avoid “cloud lock-in”? How much money are you spending on the extra support staff or are you making your developers do double duty? Is doing the grunt work of managing servers and services helping you win against your competitors? Is it helping you to go to market faster?
I’m not just speaking about cloud providers. Do you know how many healthcare systems are so tightly “locked in” to their EMR/EHR systems that it would make you cry?
Would you also tell hospitals not to lock themselves into their EMR/EHR? Would you tell Enterprises to get rid of their entire dependence on Microsoft and go Linux only?
Management needs to act, and locking yourself in, if it’s the only choice, go for it.
In the case of IT, composing across clouds is pretty common because it solves problems. Note I am not talking about brokerage or constant migration or other such nonsense. I’m talking about treating your clouds as a portfolio where you have levels of investment for particular reasons, and can make long run decisions about upping or lowering investment in. You compose across them. Salesforce for CRM, AWS for my front end apps, Google for my analytics, Azure and O365 for internal apps, whatever. It’s reality.
Forcing everything on one cloud, boy I donno. For an SMB, sure.
My point is, don’t tell me how tasty and good for me the shit sandwich I am forced to eat is. Users of EPIC hate it, that’s a market opportunity.
Yes, it is helping me go to market faster. Because the biggest lie people tell themselves is that you can separate the operations of a service from its development. They’re intrinsically linked.
Netflix for example has a metric ton of OSS they’ve built to ensure smooth global operations even though they for a long time ran exclusively on AWS, and have now gone multi-cloud. I wonder why that is? Could it be that running a large service efficiently requires more than clicking some boxes and swiping a credit card?
Apple also is multi cloud and has been investing heavily in Kubernetes talent. I wonder why that is?
Handing developers the keys to the use any managed cloud service without regard to quality or price and especially when they don’t know what they’re doing operationally, hurts my go to market and risk posture when
- I get hit by hacks because they didn’t understand the security posture of the service
- I get hit by bugs that they didn’t know existed But thought that cloud magically makes software bug free
- The solution doesn’t perform or scale because the developers didn’t understand the nuances of a particular cloud’s networking or storage abstraction
- I have 15 different ways deploys of solving the same problem and nothing coordinated
- I have outages due to poor AZ or region planning
Now look, I think it’s great to avoid undifferentiated heavy lifting. I wasn’t implying that I was racking and stacking , or managing my own artisanally installed Kubernetes clusters, I have one that is automated from one of the many solutions out there.
This is purely about choosing the abstractions that I run my business on. I would rather use open and composable abstractions than proprietary dead ends... UNLESS it’s a throw away experiment or skunkworks and even then I’d be skeptical.
Tell me what staff I am saving by running a database on a Kubernetes cluster vs. RDS or Cloud SQL? I still maybe need a DBA. I still need to have someone keep an eye on upgrades , availability, and Performance across the fleet (which aren’t necessarily automagical). I still am responsible for the overall security posture.
We aren’t talking about racking and stacking servers and switches here, we are talking about administrator to server or administrator to developer ratios. And while you certainly can have a terrible ratio with Kubernetes (it’s early days) you also can get that down to a very respectable number with good practices and modern tools + abstractions.
As an aside, monolithic EMR/EHR systems are the bane of most health systems’ existence and the vendors like Cerner and EPIC know they have to change (to various degrees) or they will be changed by the market.
Multi cloud undoubtedly saves me money and risk because (a) there is no large company in existence outside of AWS, Google and Microsoft that won’t be multi cloud due to M&A and risk posture (b) I can use the right tools for the job in the particular cloud if they do have a unique offering (c) I can play them off each other when prices and quality suffer. (D) I can use the OSS that is driving the industry rather than using expensive knock offs (looking at you Kinesis!)
This belief that you can pick one outsourcing vendor and you’ll be better sticking with it for all your needs until the end of time is the height of arrogant naivety and has been historically disproven. But every generation needs to learn the hard way.
I've been in companies that used managed service and running database on premises. As long as you used some kind of configuration management software and deployed tools like barman and repmgr, there wasn't any operational work. Only exception was a hardware failure, but that doesn't happen often and when it happens you spin a new machine and invoke few commands (these tools mentioned make it really easy) and are back in business. You also have more control over how replication and failover is set up (so it's tuned to your use case) or have ability to use all available postgres extensions. The only "good" thing about RDS is that management can't pressure you to do some things. For example you can say there must be a downtime to upgrade the database and there's not much that can be done about it.
You might run into performance issues, where you might need a DBA, but RDS doesn't solve this, that part is still exactly the same, and RDS gives you less control.
BTW: I also noticed that AWS really makes things so RDS service feels less attractive. For example if you want to create a serverless postgresql, I don't think you can do it from UI. I was only able to do it from cloudformation, the only version available is 10.7. If you allow instance to be put to sleep it requires 30 minutes to spin up, and AWS Gateway has 29s (yes 29s) maximum timeout, that can't be increased.
I think AWS wants to discourage use of postgres, and encourages everyone to use DynamoDB (which doesn't have 1:1 equivalent outside of AWS). I'm wondering if it's due to introduction of logical replication in version 10. The biggest asset of most businesses is the data, and not being able to get it out without a lengthy downtime might be the reason to keep businesses from moving.
At the same time, you usually end up spending more money and having worse results when you don’t go all in.
As far as why use EKS vs ECS - the “native service”? They seem to have feature parity, ECS is easier to use for the unitiated. But, there are so many people who know k8s and your knowledge is portable.
Which brings up my second point. Most software engineers don’t care about cloud mobility as much as they claim. They care about career mobility. There is a much better chance that you will leave a company and move to a company on a different provider than your company will. I’m not saying it’s a bad thing to focus on technologies that give you as an individual the most optionality.