Nomad v1.0 release – workload orchestration

Nomad v1.0 release – workload orchestration(github.com)

71 points by jrnkntl 5 years ago | 26 comments

schmichael 5 years ago |

There's a blog post as well. I'm unsure what makes for the most relevant link: https://www.hashicorp.com/blog/announcing-general-availabili...

I'm the Nomad Team Engineering Lead and would be happy to answer any questions people might have.

jrnkntl 5 years ago | |

Ah, I've submitted this as soon as I saw the notification of the new release on Github, maybe the blog post was indeed more relevant.

Congratulations on this milestone release, we're using Nomad since March this year on a single 'bare-metal' server and it serves our needs perfectly. We set it up with a simple gorilla/mux API in front and use the Nomad API to submit jobs from all our other applications and it works flawlessly.

With regards to 1.0's features:

HCL2 is a welcome addition for us since we had a lot of repetition in our job files using artifacts for tasks.

Also the addition of the PostStop lifecycle couldn't come at a better time, we were discussing workarounds for this recently.

One area of potential improvement would be the behaviour of file/directory permissions through different task drivers, I know this is totally dependent of the different drivers we can use with Nomad but more than once we bumped into this while setting up our jobs (and others too [1][2])

[1] https://github.com/hashicorp/nomad/issues/2625 [2] https://github.com/hashicorp/nomad/issues/8892

Thanks for all the work your team did. I am a big fan of the Hashicorp ecosystem.

schmichael 5 years ago | | |

> One area of potential improvement would be the behaviour of file/directory permissions through different task drivers, I know this is totally dependent of the different drivers we can use with Nomad but more than once we bumped into this while setting up our jobs (and others too [1][2])

Thanks for mentioning these. Everyone interested should definitely +1 them as we do use reaction emoji during prioritization.

The task driver dependent nature does make this tricky, but since the Nomad agent is usually run as root and controls the allocation/task directory tree we should have some options here.

gavinray 5 years ago | |

I'm a big fan conceptually of Nomad, and I love the streams that the Nomad team does to talk about development and answer questions.

My only comments would be:

I wish there was more content available (maybe on HashiCorp Learn Nomad) for working with single-instance Nomad clusters.

And a demo of realworld dev-to-prod workflow. Something like "Okay here's a local Docker Compose setup with Postgres, a backend API, and a frontend web app, and here's the workflow for getting it into production with Nomad."

schmichael 5 years ago | | |

Thanks that's great feedback and you're not alone in that desire.

We do "small" users a pretty big disservice by effectively dismissing single-server deployments and jumping straight to "real" production deployments (3+ servers distinct from the nodes that run workloads).

We have people who use Nomad locally as a systemd alternative. We have people who use single-scheduler-multiple-nodes clusters at home or at work, and it works quite well! If the scheduler crashes, work continues to run uninterrupted, so there's little reason not to start small and scale up.

The problem is largely that it's tricky to separate out and accurately address these various personas. People looking for a systemd alternative are obviously highly technical and will likely figure everything out through experimentation. However, "small" cluster users need to be carefully educated on the differences between an HA cluster (3+ schedulers) and a single scheduler cluster.

Not only that, but we would need to automate testing for each of these recommendations to ensure changes don't break an official recommendation.

cs-szazz 5 years ago | |

First off, very cool. I'm a big Hashicorp fan, and have been following Nomad for a while, so it's exciting you hit 1.0!

It seems to me one of the advantages K8s has is that there are multiple "Kubernetes as a Service" services out there, such as EKS on AWS, Google Cloud's offering, even Digital Ocean.

Are there any plans to make Nomad Enterprise more accessible? It seems a managed Nomad hits the sweet spot of simple scheduling, which removes a lot of the K8s bloat for many people.

schmichael 5 years ago | | |

Thanks! I think you really hit the nail on the head. In a twitter thread I talk about how Nomad 1.0 represents us implementing the "table stakes", the base foundation, for an orchestrator. However, I think what you're noticing is how the table stakes have changed from 5 years ago: orchestrators need hosted options. k8s has push-button support from every major cloud. We can't just ignore that.

And we aren't ignoring that. I have no idea what I can say publicly, so I'll just link to what our cofounder/CTO has already said:

> And hosted Nomad clusters are on the way

https://twitter.com/mitchellh/status/1334198278225682434

mike1o1 5 years ago |

I really like the idea of Nomad as a simpler alternative to Kubernetes. The documentation is great and provides a lot of examples, but I wish I could find a starter guide on how to deploy a complete application with it and Consul. Something like, here’s how to deploy a Rails app with Sidekiq workers and database migrations.

This along with Waypoint seems like a great solution for smaller side projects.

ofrzeta 5 years ago | |

I like it, too, but with the integration of CNI it's no longer so much simpler than Kubernetes. Where Kubernetes has etcd Nomad requires Consul which arguably might be simpler.

To compete with Kubernetes Nomad will most likely acquire more features (e.g. storage) until it's as complex as Kubernetes because it's just what some businesses seem to want.

On the other hand Kubernetes gets simpler with projects like k3s or k0s.

schmichael 5 years ago | | |

Nomad has supported CSI for storage since 0.11. It is definitely a challenge since despite being an orchestrator agnostic standard, storage vendors often assume k8s and only support it.

That being said Nomad's CSI support doesn't impact clusters that don't optin to use it. Jobs that use host volumes or ephemeral volumes still work. Only using Nomad for stateless workloads still works. We try very hard to introduce new features in a way that only impacts people who use them.

While the principle is the same for CNI, our migration to group networks ("groups" in Nomad are like "pods" in k8s) and away from task networks has been more painful than we had hoped. Existing jobs should still work with task networks and we're rapidly trying to fix differences in the two approaches.

Nomad's Consul dependency does introduce complexity. The migration to group networks actually included a change that made service addressing available to servers in such a way that Nomad could offer native service discovery. It's still being discussed whether we want to pursue that since offering multiple solutions has obvious downsides as well.

khimaros 5 years ago | | |

Podman can also deploy from Kubernetes config https://github.com/containers/podman/blob/master/docs/source...

hedwall 5 years ago | | |

There's no requirement on Consul for deploying Nomad, and storage support is in Beta right now.

hypnotist 5 years ago |

It is an opportunity for someone/something to take docker swarm place since complexity of Kubernetes might scare lots of people

tpetry 5 years ago |

Moving namespaces from enterprise to open source is a big step forward, kudos! In the past many discussions ended with just choosing kubernetes because isolating containers was not possible within nomad.

mt42or 5 years ago |

You do not need Nomad too!