Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Rancher Deep Dive
  • Table Of Contents Toc
Rancher Deep Dive

Rancher Deep Dive

By : Matthew Mattox
4.4 (7)
Buy this Book
close
close
Rancher Deep Dive

Rancher Deep Dive

4.4 (7)
By: Matthew Mattox
Buy this Book

Overview of this book

Knowing how to use Rancher enables you to manage multiple clusters and applications without being locked into a vendor’s platform. This book will guide you through Rancher’s capabilities while deepening your understanding of Kubernetes and helping you to take your applications to a new level. The book begins by introducing you to Rancher and Kubernetes, helping you to learn and implement best practices. As you progress through the chapters, you’ll understand the strengths and limitations of Rancher and Kubernetes and discover all the different ways to deploy Rancher. You’ll also find out how to design and deploy Kubernetes clusters to match your requirements. The concluding chapters will show you how to set up a continuous integration and continuous deployment (CI/CD) pipeline for deploying applications into a Rancher cluster, along with covering supporting services such as image registries and Helm charts. By the end of this Kubernetes book, you’ll be able to confidently deploy your mission-critical production workloads on Rancher-managed Kubernetes clusters.
Table of Contents (25 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Download the color images
Icon
Download the example code files
Icon
Conventions used
Icon
Get in touch
Icon
Share Your Thoughts
1
Part 1 – Rancher Background and Architecture and Design
Icon
Part 1 – Rancher Background and Architecture and Design
Lock Free Chapter
2
Chapter 1: Introduction to Rancher and Kubernetes
Icon
Chapter 1: Introduction to Rancher and Kubernetes
Icon
The history of Rancher Labs as a company
Icon
Rancher's earlier products
Icon
What is Rancher's core philosophy?
Icon
Where did Kubernetes come from?
Icon
What problem is Kubernetes trying to solve?
Icon
Comparing Kubernetes with Docker Swarm and OpenShift
Icon
Summary
3
Chapter 2: Rancher and Kubernetes High-Level Architecture
Icon
Chapter 2: Rancher and Kubernetes High-Level Architecture
Icon
What is the Rancher server?
Icon
What are RKE and RKE2?
Icon
What is K3s (five less than K8s)?
Icon
What is RancherD?
Icon
What controllers run inside the Rancher server pods?
Icon
What do the Cattle agents do?
Icon
How does Rancher provision nodes and clusters?
Icon
What are kube-apiserver, kube-controller-manager, kube-scheduler, etcd, and kubelet?
Icon
How do the current state and the desired state work?
Icon
Summary
4
Part 2 – Installing Rancher
Icon
Part 2 – Installing Rancher
5
Chapter 3: Creating a Single Node Rancher
Icon
Chapter 3: Creating a Single Node Rancher
Icon
What is a single-node Rancher installation?
Icon
Requirements and limitations
Icon
Rules for architecting a solution
Icon
Installation steps
Icon
Migration to an HA setup
Icon
Summary
6
Chapter 4: Creating an RKE and RKE2 Cluster
chevron up
Icon
Chapter 4: Creating an RKE and RKE2 Cluster
Icon
What is an RKE cluster?
Icon
What is an RKE2 cluster?
Icon
What is RancherD?
Icon
Requirements and limitations
Icon
Rules for architecting a solution
Icon
Install steps (RKE)
Icon
Install steps (RKE2)
Icon
Configuring an external load balancer (HAProxy)
Icon
Configuring MetalLB
Icon
Summary
7
Chapter 5: Deploying Rancher on a Hosted Kubernetes Cluster
Icon
Chapter 5: Deploying Rancher on a Hosted Kubernetes Cluster
Icon
Understanding hosted Kubernetes clusters
Icon
Requirements and limitations
Icon
Rules for architecting a solution
Icon
Creating a hosted Kubernetes cluster
Icon
Installing and upgrading Rancher
Icon
Rancher-Backup-Operator
Icon
Summary
8
Part 3 – Deploying a Kubernetes Cluster
Icon
Part 3 – Deploying a Kubernetes Cluster
9
Chapter 6: Creating an RKE Cluster Using Rancher
Icon
Chapter 6: Creating an RKE Cluster Using Rancher
Icon
What is a Rancher-managed cluster?
Icon
Requirements and limitations
Icon
Rules for architecting a solution
Icon
Preparing for nodes to join Rancher
Icon
Prepping the infrastructure provider
Icon
The steps for creating an RKE cluster using Rancher
Icon
Deploying a cluster using node pools
Icon
Ongoing maintenance tasks
Icon
Summary
10
Chapter 7: Deploying a Hosted Cluster with Rancher
Icon
Chapter 7: Deploying a Hosted Cluster with Rancher
Icon
How can Rancher manage a hosted cluster?
Icon
Requirements and limitations
Icon
Rules for architecting a solution
Icon
Prepping the cloud provider
Icon
Installation steps
Icon
Ongoing maintenance tasks
Icon
Summary
11
Chapter 8: Importing an Externally Managed Cluster into Rancher
Icon
Chapter 8: Importing an Externally Managed Cluster into Rancher
Icon
What is an imported cluster?
Icon
Requirements and limitations
Icon
Rules for architecting a solution
Icon
How can Rancher access a cluster?
Icon
Summary
12
Part 4 – Getting Your Cluster Production-Ready
Icon
Part 4 – Getting Your Cluster Production-Ready
13
Chapter 9: Cluster Configuration Backup and Recovery
Icon
Chapter 9: Cluster Configuration Backup and Recovery
Icon
What is an etcd backup?
Icon
Why do I need to back up my etcd?
Icon
How does an etcd backup work?
Icon
How does an etcd restore work?
Icon
When do you need an etcd restore?
Icon
What does an etcd backup not protect?
Icon
How do you configure etcd backups?
Icon
How do you take an etcd backup?
Icon
How do you restore from an etcd backup?
Icon
Setting up a lab environment to test common failure scenarios
Icon
Summary
14
Chapter 10: Monitoring and Logging
Icon
Chapter 10: Monitoring and Logging
Icon
What is Prometheus and Grafana?
Icon
Deploying Rancher's monitoring stack
Icon
Adding custom application metrics to Prometheus
Icon
Creating alert rules in Prometheus
Icon
Creating a Grafana dashboard
Icon
What is the Banzai Cloud Logging operator?
Icon
What is Fluent Bit and Fluentd?
Icon
Deploying Rancher logging
Icon
Filtering application logs
Icon
Writing logs to multiple log servers
Icon
Summary
15
Chapter 11: Bringing Storage to Kubernetes Using Longhorn
Icon
Chapter 11: Bringing Storage to Kubernetes Using Longhorn
Icon
What is persistent storage and why do we need it in Kubernetes?
Icon
What is Longhorn?
Icon
How does Longhorn work?
Icon
Pros and cons of Longhorn
Icon
Rules for architecting a Longhorn solution
Icon
Installing Longhorn
Icon
How do Longhorn upgrades work?
Icon
Critical maintenance tasks for keeping Longhorn at 100%
Icon
Troubleshooting common Longhorn issues
Icon
Summary
16
Chapter 12: Security and Compliance Using OPA Gatekeeper
Icon
Chapter 12: Security and Compliance Using OPA Gatekeeper
Icon
Why should I care about security in Kubernetes?
Icon
How do I enforce standards and security policies in Kubernetes?
Icon
What is OPA Gatekeeper?
Icon
How to install OPA Gatekeeper from the marketplace
Icon
Best practices and standard policies
Icon
How do I scan my cluster for security issues?
Icon
How do I lock down my cluster?
Icon
Deploying Rancher CIS scan
Icon
Additional security tools for protecting a cluster
Icon
Summary
17
Chapter 13: Scaling in Kubernetes
Icon
Chapter 13: Scaling in Kubernetes
Icon
What is an HPA?
Icon
What is a VPA?
Icon
What is Kubernetes Node Autoscaler?
Icon
Summary
18
Chapter 14: Load Balancer Configuration and SSL Certificates
Icon
Chapter 14: Load Balancer Configuration and SSL Certificates
Icon
Why do we need an external load balancer to support a Kubernetes cluster?
Icon
Rules for architecting a solution
Icon
Configuring F5 in TCP and HTTP mode
Icon
Configuring HAProxy to work with Kubernetes
Icon
Installing and configuring MetalLB
Icon
What is ingress in Kubernetes?
Icon
How to add an SSL certificate to an ingress
Icon
Summary
19
Chapter 15: Rancher and Kubernetes Troubleshooting
Icon
Chapter 15: Rancher and Kubernetes Troubleshooting
Icon
Recovering an RKE cluster from an etcd split-brain
Icon
Rebuilding from an etcd backup
Icon
How to resolve Pods not being able to be scheduled due to OPA Gatekeeper
Icon
A runaway app stomping all over a cluster
Icon
Can rotating kube-ca break my cluster?
Icon
How to fix a namespace that is stuck in terminating status
Icon
General troubleshooting for RKE clusters
Icon
Summary
20
Part 5 – Deploying Your Applications
Icon
Part 5 – Deploying Your Applications
21
Chapter 16: Setting Up a CI/CD Pipeline and Image Registry
Icon
Chapter 16: Setting Up a CI/CD Pipeline and Image Registry
Icon
What is a CI/CD pipeline?
Icon
Rules for architecting a solution
Icon
How to deploy Drone and its runners in Kubernetes with Rancher
Icon
Injecting secrets into a pipeline
Icon
What an image repository is and the rules for architecting a solution
Icon
How to deploy Harbor in Kubernetes
Icon
Integrating a private registry into a Kubernetes cluster
Icon
Summary
22
Chapter 17: Creating and Using Helm Charts
Icon
Chapter 17: Creating and Using Helm Charts
Icon
What is a Helm chart?
Icon
How does Helm work?
Icon
How do I create a Helm chart?
Icon
Deploying a Helm chart
Icon
Customizing a public Helm chart
Icon
Summary
23
Chapter 18: Resource Management
Icon
Chapter 18: Resource Management
Icon
How to apply resource limits and quotas to a Pod
Icon
How namespace limits/quotas are calculated
Icon
How to use tools such as Kubecost to track usage and cost over time
Icon
Summary
Icon
Why subscribe?
24
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Packt is searching for authors like you
Icon
Share Your Thoughts

Install steps (RKE)

Once you have created cluster.yaml, you have RKE create a cluster for you. This is done by running the rke up --config cluster.yaml command. RKE will look for the cluster.rkestate file. If it cannot find that file, RKE will assume that you are creating a new cluster, which causes RKE to create a new root CA certificate called kube-ca along with all the other certificates needed in the cluster. RKE will verify that all are valid and rotate and create the certificates for the different Kubernetes components as required if the cluster already has certificates. RKE then verifies the dialer has access to all the nodes in the cluster. The dialer will create an SSH tunnel to each node and bind to the Docker socket file. RKE will then use a file-deployer container to push the certificates to each node in the /etc/kubernetes/ssl directory.

RKE will then check if any etcd nodes are being added or removed from the cluster. Suppose RKE detects that the downtime settings...

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Rancher Deep Dive
End of Section 6
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon