Book Image

Hands-On Kubernetes on Azure - Second Edition

By : Nills Franssens, Shivakumar Gopalakrishnan, Gunther Lenz
Book Image

Hands-On Kubernetes on Azure - Second Edition

By: Nills Franssens, Shivakumar Gopalakrishnan, Gunther Lenz

Overview of this book

From managing versioning efficiently to improving security and portability, technologies such as Kubernetes and Docker have greatly helped cloud deployments and application development. Starting with an introduction to Docker, Kubernetes, and Azure Kubernetes Service (AKS), this book will guide you through deploying an AKS cluster in different ways. You’ll then explore the Azure portal by deploying a sample guestbook application on AKS and installing complex Kubernetes apps using Helm. With the help of real-world examples, you'll also get to grips with scaling your application and cluster. As you advance, you'll understand how to overcome common challenges in AKS and secure your application with HTTPS and Azure AD (Active Directory). Finally, you’ll explore serverless functions such as HTTP triggered Azure functions and queue triggered functions. By the end of this Kubernetes book, you’ll be well-versed with the fundamentals of Azure Kubernetes Service and be able to deploy containerized workloads on Microsoft Azure with minimal management overhead.

Related Content you might be interested in

Current Title:

Small book image
Hands-On Kubernetes on Azure - Second Edition
Nills Franssens | Shivakumar Gopalakrishnan | Gunther Lenz
May, 2020 | 368 pages
Small book image
Hands-On Kubernetes on Windows
Piotr Tylenda
Mar, 2020 | 592 pages
Small book image
The Kubernetes Bible
Nassim Kebbani | Russ McKendrick | Piotr Tylenda
Feb, 2022 | 680 pages
Small book image
Introduction to DevOps with Kubernetes
Onur Yilmaz | Sleyman Akba
May, 2019 | 374 pages
Table of Contents (16 chapters)
Preface
Preface
About Hands-On Kubernetes on Azure, Second Edition
1
Section 1: The Basics
Section 1: The Basics
Free Chapter
2
1. Introduction to Docker and Kubernetes
1. Introduction to Docker and Kubernetes
The software evolution that brought us here
Fundamentals of Docker containers
Kubernetes as a container orchestration platform
Azure Kubernetes Service
Summary
3
2. Kubernetes on Azure (AKS)
2. Kubernetes on Azure (AKS)
Different ways to deploy an AKS cluster
Getting started with the Azure portal
Summary
4
Section 2: Deploying on AKS
Section 2: Deploying on AKS
5
3. Application deployment on AKS
3. Application deployment on AKS
Deploying the sample guestbook application
Complete deployment of the sample guestbook application
Installing complex Kubernetes applications using Helm
Summary
6
4. Building scalable applications
4. Building scalable applications
Scaling your application
Scaling your cluster
Upgrading your application
Summary
7
5. Handling common failures in AKS
5. Handling common failures in AKS
Handling node failures
Solving out-of-resource failures
Fixing storage mount issues
Summary
8
6. Securing your application with HTTPS and Azure AD
6. Securing your application with HTTPS and Azure AD
HTTPS support
Authentication versus authorization
Summary
9
7. Monitoring the AKS cluster and the application
7. Monitoring the AKS cluster and the application
Commands for monitoring applications
Readiness and liveness probes
Metrics reported by Kubernetes
Metrics reported from Azure Monitor
Summary
10
Section 3: Leveraging advanced Azure PaaS services
Section 3: Leveraging advanced Azure PaaS services
11
8. Connecting an app to an Azure database
8. Connecting an app to an Azure database
Setting up OSBA
Deploying WordPress
Exploring advanced database operations
Summary
12
9. Connecting to Azure Event Hubs
9. Connecting to Azure Event Hubs
Deploying a set of microservices
Using Azure Event Hubs
Summary
13
10. Securing your AKS cluster
10. Securing your AKS cluster
Role-based access control
Setting up secrets management
Using secrets stored in Key Vault
The Istio service mesh at your service
Summary
14
11. Serverless functions
11. Serverless functions
Multiple functions platforms
Setting up prerequisites
Creating an HTTP-triggered Azure function
Creating a queue-triggered function
Summary
15
Index
Index

10. Securing your AKS cluster

Loose lips sink ships is a phrase that describes how easy it can be to jeopardize the security of a Kubernetes-managed cluster (Kubernetes, by the way, is Greek for helmsman, as in the helmsman of a ship). If your cluster is left open with the wrong ports or services exposed, or plain text is used for secrets in application definitions, bad actors can take advantage of this negligent security and do pretty much whatever they want in your cluster.

In this chapter, we will explore Kubernetes security in more depth. You will be introduced to the concept of role-based access control (RBAC) in Kubernetes. After that, you will learn about secrets and how to use them. You will first create secrets in Kubernetes itself, and afterward create a Key Vault to store secrets more securely. You'll finish this chapter with a brief introduction to service mesh concepts, and you'll be given a practical example to follow.

The following topics will be...

Previous Section
End of Section 1
Next Section