Book Image

Kubernetes in Production Best Practices

By : Aly Saleh, Murat Karslioglu

Book Image

Kubernetes in Production Best Practices

By: Aly Saleh, Murat Karslioglu

Overview of this book

Although out-of-the-box solutions can help you to get a cluster up and running quickly, running a Kubernetes cluster that is optimized for production workloads is a challenge, especially for users with basic or intermediate knowledge. With detailed coverage of cloud industry standards and best practices for achieving scalability, availability, operational excellence, and cost optimization, this Kubernetes book is a blueprint for managing applications and services in production. You'll discover the most common way to deploy and operate Kubernetes clusters, which is to use a public cloud-managed service from AWS, Azure, or Google Cloud Platform (GCP). This book explores Amazon Elastic Kubernetes Service (Amazon EKS), the AWS-managed version of Kubernetes, for working through practical exercises. As you get to grips with implementation details specific to AWS and EKS, you'll understand the design concepts, implementation best practices, and configuration applicable to other cloud-managed services. Throughout the book, you’ll also discover standard and cloud-agnostic tools, such as Terraform and Ansible, for provisioning and configuring infrastructure. By the end of this book, you’ll be able to leverage Kubernetes to operate and manage your production environments confidently.

Preface

Who this book is for

What this book covers

To get the most out of this book

Download the example code files

Download the color images

Conventions used

Chapter 1: Introduction to Kubernetes Infrastructure and Production-Readiness

Chapter 1: Introduction to Kubernetes Infrastructure and Production-Readiness

The basics of Kubernetes infrastructure

Why Kubernetes is challenging in production

Kubernetes production-readiness

Kubernetes infrastructure best practices

Cloud-native approach

Further reading

Free Chapter

Chapter 2: Architecting Production-Grade Kubernetes Infrastructure

Chapter 2: Architecting Production-Grade Kubernetes Infrastructure

Understanding Kubernetes infrastructure design considerations

Exploring Kubernetes deployment strategy alternatives

Designing an Amazon EKS infrastructure

Further reading

Chapter 3: Provisioning Kubernetes Clusters Using AWS and Terraform

Chapter 3: Provisioning Kubernetes Clusters Using AWS and Terraform

Technical requirements

Implementation principles and best practices

Cluster deployment and rollout strategy

Preparing Terraform

Creating the network infrastructure

Creating the cluster infrastructure

Cleaning up and destroying infrastructure resources

Further reading

Chapter 4: Managing Cluster Configuration with Ansible

Chapter 4: Managing Cluster Configuration with Ansible

Technical requirements

Installing the required tools

Implementation principles

Kubernetes configuration management

Configuring the clusters

Destroying the cluster's resources

Further reading

Chapter 5: Configuring and Enhancing Kubernetes Networking Services

Chapter 5: Configuring and Enhancing Kubernetes Networking Services

Technical requirements

Introducing networking production readiness

Configuring Kube Proxy

Configuring the Amazon CNI plugin

Configuring CoreDNS

Configuring ExternalDNS

Configuring NGINX Ingress Controller

Deploying the cluster's network services

Destroying the cluster's resources

Further reading

Chapter 6: Securing Kubernetes Effectively

Chapter 6: Securing Kubernetes Effectively

Technical requirements

Securing Kubernetes infrastructure

Managing cluster access

Managing secrets and certificates

Securing workloads and apps

Ensuring cluster security and compliance

Bonus security tips

Deploying the security configurations

Destroying the cluster

Further reading

Chapter 7: Managing Storage and Stateful Applications

Chapter 7: Managing Storage and Stateful Applications

Technical requirements

Implementation principles

Understanding the challenges with stateful applications

Tuning Kubernetes storage

Choosing a persistent storage solution

Deploying stateful applications

Further reading

Chapter 8: Deploying Seamless and Reliable Applications

Chapter 8: Deploying Seamless and Reliable Applications

Technical requirements

Understanding the challenges with container images

Learning application deployment strategies

Scaling applications and achieving higher availability

Further reading

Chapter 9: Monitoring, Logging, and Observability

Chapter 9: Monitoring, Logging, and Observability

Technical requirements

Understanding the challenges with Kubernetes observability

Learning site reliability best practices

Monitoring, metrics, and visualization

Logging and tracing

Further reading

Chapter 10: Operating and Maintaining Efficient Kubernetes Clusters

Chapter 10: Operating and Maintaining Efficient Kubernetes Clusters

Technical requirements

Learning about cluster maintenance and upgrades

Preparing for backups and disaster recovery

Validating cluster quality

Further reading

Other Books You May Enjoy

Other Books You May Enjoy

Packt is searching for authors like you

Leave a review - let other readers know what you think

Customer Reviews

5 star

0

4 star

0

3 star

0

2 star

0

1 star

0

Exploring Kubernetes deployment strategy alternatives

Kubernetes and its ecosystem come with vast choices for everything you can do related to deploying, orchestrating, and operating your workloads. This flexibility is a huge advantage, and enables Kubernetes to suit different use cases, from regular applications on-premises and in the cloud to IoT and edge computing. However, choices come with responsibility, and in this chapter, we learn about the technical decisions that you need to evaluate and take regarding your cluster deployment architecture..

One of the important questions to ask and a decision to make is where to deploy your clusters, and how many of them you may need in order to run your containerized workloads? The answer is usually driven by both business and technical factors; elements such as the existing infrastructure, cloud transformation plan, cloud budget, the team size, and business growth target. All of these aspects could affect this, and this is why the owner of the Kubernetes initiative has to collaborate with organization teams and executives to reach a common understanding of the decision drivers, and agree on the right direction for their business.

We are going to explore some of the common Kubernetes deployment architecture alternatives, with their use cases, benefits, and drawbacks:

Multi-availability-zones clusters: This is the mainstream architecture for deploying a high availability (HA) cluster in a public cloud. Because running clusters in a multi-availability zones is usually supported by all public cloud providers, and, at the same time, it achieves an acceptable level of HA. This drives the majority of new users of Kubernetes to opt for this choice. However, if you have essential requirements to run your workloads in different regions, this option will not be helpful.
Multi-region clusters: Unless you have a requirement to run your clusters in multiple regions, there is little motivation to opt for it. While a public cloud provider to lose an entire region is a rare thing, but if you have the budget to do a proper design and overcome the operational challenges, then you can opt for a multi-region setup. It will definitely provide you with enhanced HA and reliability levels.
Hybrid cloud clusters: A hybrid cloud is common practice for an organization migrating from on-premise to the public cloud and that is going through a transitional period where they have workloads or data split between their old infrastructure and the new cloud infrastructure. Hybrid could also be a permanent setup, where an organization wants to keep part of its infrastructure on-premise either for security reasons (think about sensitive data), or due to the impossibility of migrating to the cloud. Kubernetes is an enabler of the hybrid cloud model, especially with managed cluster management solutions such as Google Anthos. This nevertheless entails higher costs in terms of provision and operation.
Multi-cloud clusters: Unlike hybrid cloud clusters, I find multi-cloud clusters to be an uncommon pattern, as it usually lacks the strong drivers behind it. You can run multiple different systems in multi-cloud clusters for a variety of reasons, but deploying a single system across two or more clouds over Kubernetes is not common, and you should be cautious before moving in this direction. However, I can understand the motivating factors behind some organizations doing this, such as avoiding cloud lock-in with a particular provider, leveraging pricing models with different providers for cost optimization, minimizing latency, or even achieving ultimate reliability for the workloads.
On-premises clusters: If an organization decides not to move to the cloud, Kubernetes still can manage their infrastructure on-premises, and actually, Kubernetes is a reasonable choice to manage the on-prem workload in a modern fashion, however, the solid on-prem managed Kubernetes solutions still very few.
Edge clusters: Kubernetes is gaining traction in edge computing and the IoT world. It provides an abstraction to the underlying hardware, it is ideal for distributed computing needs, and the massive Kubernetes ecosystem helps to come out with multiple open source and third-party projects that fit edge computing nature, such as KubeEdge and K3s.
Local clusters: You can run Kubernetes on your local machine using tools such as Minikube or Kind (Kubernetes in Docker). The purpose of using a local cluster is for trials, learning, and for use by developers.

We have discussed the various clusters deployments architectures and models available and their use cases. In the next section, we will learn work on designing the Kubernetes infrastructure that we will use in this book, and the technical decisions around it..