Book Image

IoT Edge Computing with MicroK8s

By : Karthikeyan Shanmugam
Book Image

IoT Edge Computing with MicroK8s

By: Karthikeyan Shanmugam

Overview of this book

Are you facing challenges with developing, deploying, monitoring, clustering, storing, securing, and managing Kubernetes in production environments as you're not familiar with infrastructure technologies? MicroK8s - a zero-ops, lightweight, and CNCF-compliant Kubernetes with a small footprint is the apt solution for you. This book gets you up and running with production-grade, highly available (HA) Kubernetes clusters on MicroK8s using best practices and examples based on IoT and edge computing. Beginning with an introduction to Kubernetes, MicroK8s, and IoT and edge computing architectures, this book shows you how to install, deploy sample apps, and enable add-ons (like DNS and dashboard) on the MicroK8s platform. You’ll work with multi-node Kubernetes clusters on Raspberry Pi and networking plugins (such as Calico and Cilium) and implement service mesh, load balancing with MetalLB and Ingress, and AI/ML workloads on MicroK8s. You’ll also understand how to secure containers, monitor infrastructure and apps with Prometheus, Grafana, and the ELK stack, manage storage replication with OpenEBS, resist component failure using a HA cluster, and more, as well as take a sneak peek into future trends. By the end of this book, you’ll be able to use MicroK8 to build and implement scenarios for IoT and edge computing workloads in a production environment.

Related Content you might be interested in

Current Title:

Small book image
IoT Edge Computing with MicroK8s
Karthikeyan Shanmugam
Sep, 2022 | 416 pages
Small book image
Certified Kubernetes Administrator (CKA) Exam Guide
Meacutelony Qin
Nov, 2022 | 322 pages
Small book image
Becoming KCNA Certified
Dmitry Galkin
Feb, 2023 | 306 pages
Small book image
kubectl: Command-Line Kubernetes in a Nutshell
Rimantas Mocevicius
Nov, 2020 | 136 pages
Table of Contents (24 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Download the color images
Conventions used
Get in touch
Share Your Thoughts
1
Part 1: Foundations of Kubernetes and MicroK8s
Part 1: Foundations of Kubernetes and MicroK8s
Free Chapter
2
Chapter 1: Getting Started with Kubernetes
Chapter 1: Getting Started with Kubernetes
The evolution of containers
Kubernetes overview – understanding Kubernetes components
Understanding pods
Understanding deployments
Understanding StatefulSets and DaemonSets
Understanding jobs and CronJobs
Understanding services
Summary
3
Chapter 2: Introducing MicroK8s
Chapter 2: Introducing MicroK8s
Introducing MicroK8s Kubernetes
Quick installation
Deploying a sample application
Enabling add-ons
Starting/stopping MicroK8s
Configuring MicroK8s to use local images
Configuring MicroK8s to use its built-in registry
Configuring MicroK8s to use private/public registries
Configuring MicroK8s services
Troubleshooting application and cluster issues
Summary
4
Part 2: Kubernetes as the Preferred Platform for IOT and Edge Computing
Part 2: Kubernetes as the Preferred Platform for IOT and Edge Computing
5
Chapter 3: Essentials of IoT and Edge Computing
Chapter 3: Essentials of IoT and Edge Computing
What is IoT?
What is edge computing?
How are IoT and the edge related?
Benefits of edge computing
What does it take to enable edge computing, edge analytics, and edge intelligence?
Summary
6
Chapter 4: Handling the Kubernetes Platform for IoT and Edge Computing
Chapter 4: Handling the Kubernetes Platform for IoT and Edge Computing
Deployment approaches for edge computing
Propositions that Kubernetes offers
Summary
7
Part 3: Running Applications on MicroK8s
Part 3: Running Applications on MicroK8s
8
Chapter 5: Creating and Implementing Updates on a Multi-Node Raspberry Pi Kubernetes Clusters
Chapter 5: Creating and Implementing Updates on a Multi-Node Raspberry Pi Kubernetes Clusters
Creating a MicroK8s multi-node cluster using 
a Raspberry Pi
Deploying a sample containerized application
Performing rolling updates to the application with a new software version
Scaling the application deployment
Guidelines on multi-node cluster configuration
Container life cycle management
Deploying and sharing HA applications
Summary
9
Chapter 6: Configuring Connectivity for Containers
Chapter 6: Configuring Connectivity for Containers
CNI overview
Communication flow from Pod 3 to Pod 6
Configuring Calico
Configuring Cilium
Configuring Flannel CNI
Guidelines on choosing a CNI provider
Summary
10
Chapter 7: Setting Up MetalLB and Ingress for Load Balancing
Chapter 7: Setting Up MetalLB and Ingress for Load Balancing
Overview of MetalLB and Ingress
Configuring MetalLB to load balance across the cluster
Configuring Ingress to expose Services outside the cluster
Guidelines on how to choose the right load balancer for your applications
Summary
11
Chapter 8: Monitoring the Health of Infrastructure and Applications
Chapter 8: Monitoring the Health of Infrastructure and Applications
Overview of monitoring, logging, and alerting options
Configuring a monitoring and alerting stack using the Prometheus, Grafana, and Alertmanager tools
Configuring a logging, monitoring, and alerting stack using the EFK toolset
Key metrics that need to be monitored
Summary
12
Chapter 9: Using Kubeflow to Run AI/MLOps Workloads
Chapter 9: Using Kubeflow to Run AI/MLOps Workloads
Overview of the ML workflow
Deploying Kubeflow
Accessing the Kubeflow dashboard
Creating a Kubeflow pipeline to build, train, and deploy a sample ML model
Recommendations – running AL/ML workloads on Kubernetes
Summary
13
Chapter 10: Going Serverless with Knative and OpenFaaS Frameworks
Chapter 10: Going Serverless with Knative and OpenFaaS Frameworks
Overview of the Knative framework
Enabling the Knative add-on
Deploying and running a sample service on Knative
Overview of the OpenFaaS framework
Enabling the OpenFaaS add-on
Deploying and running a sample function on OpenFaaS
Best practices for developing and deploying serverless applications
Summary
14
Part 4: Deploying and Managing Applications on MicroK8s
Part 4: Deploying and Managing Applications on MicroK8s
15
Chapter 11: Managing Storage Replication with OpenEBS
Chapter 11: Managing Storage Replication with OpenEBS
Overview of OpenEBS
Configuring and implementing a PostgreSQL stateful workload
Kubernetes storage best practices
Guidelines on choosing OpenEBS data engines
Summary
16
Chapter 12: Implementing Service Mesh for Cross-Cutting Concerns
Chapter 12: Implementing Service Mesh for Cross-Cutting Concerns
Overview of the Linkerd service mesh
Enabling the Linkerd add-on and running a sample application
Overview of the Istio service mesh
Enabling the Istio add-on and running a sample application
Common use cases for a service mesh
Guidelines on choosing a service mesh
Best practices for configuring a service mesh
Summary
17
Chapter 13: Resisting Component Failure Using HA Clusters
Chapter 13: Resisting Component Failure Using HA Clusters
An overview of HA topologies
Setting up an HA Kubernetes cluster
Kubernetes HA best practices
Summary
18
Chapter 14: Hardware Virtualization for Securing Containers
Chapter 14: Hardware Virtualization for Securing Containers
Overview of Kata Containers
Enabling the Kata add-on and running a sample application
Container security best practices
Summary
19
Chapter 15: Implementing Strict Confinement for Isolated Containers
Chapter 15: Implementing Strict Confinement for Isolated Containers
Overview of Snap, Snapcraft, and Ubuntu Core
Setting up Ubuntu Core on a Raspberry Pi board
Setting up MicroK8s on Ubuntu Core
Deploying a sample containerized application
Summary
20
Chapter 16: Diving into the Future
Chapter 16: Diving into the Future
How MicroK8s is uniquely positioned for accelerating IoT and Edge deployments
Looking forward – Kubernetes trends and industry outlook
Summary
Further reading
21
Frequently Asked Questions About MicroK8s
Frequently Asked Questions About MicroK8s
22
Index
Index
Why subscribe?
23
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts

Implementing Strict Confinement for Isolated Containers

In the previous chapter, we looked at how to build secure containers using Kata Containers and how to improve workload isolation with hardware virtualization technology. We also discussed the best practices for securing your production-grade cluster with containers. The MicroK8s add-on option has also made it easier to activate Kata Containers, which can significantly increase the security and isolation of your container operations.

In this chapter, we will take a look at another approach to isolation using snap confinement options to run containers in complete isolation, meaning no access to files, networks, processes, or any other system resource without requesting specific access via an interface. Confinement models describe how much access a particular snap has to a user’s machine. There are currently three choices available, as follows:

  • The strict confinement level operates in complete isolation, with access...
Previous Section
End of Section 1
Next Section